def admin_login(): # get email and password : IN OTHER ITERATIONS WE CAN GET POST from hidden ajax login form email = request.form['email'] password = request.form['password'] admincode = request.form['admincode'] # if POST used properly passed through Ajax created form in process_login.js .done() function if request.method == 'POST': # if login_valid method in user.py class returns TRUE if Admin.login_valid(email=email, password=password): # check on admincode code verification HERE if admincode == '11111': # start session in admin.py class Admin.login(email) return render_template('admin_profile.html', email=session['email']) return render_template('login_error.html', error='The email or password credentials do not match.')
def login_template(): if request.method == 'GET': return render_template("log_in.html", acc="Account", display="none") else: email = request.form['email-zone'] password = request.form['password-zone'] remember = request.form['remember'] if User.login_valid(email, password): user = User.get_by_email(email) uri = uuid.uuid4().hex if user.status == "*": if Admin.login_valid(email, password): resp = make_response( redirect( "https://kcbootcampers-api-heroku.herokuapp.com/admin/hub/" + uri)) resp.set_cookie('login_id', uri, expires=datetime.datetime.now() + datetime.timedelta(days=1)) return resp else: return render_template("log_in.html", acc="Account", display="block") elif remember == "on": resp = make_response( redirect( "https://kcbootcampers-api-heroku.herokuapp.com/hub")) resp.set_cookie('login', email, expires=datetime.datetime.now() + datetime.timedelta(days=365)) return resp else: resp = make_response( redirect( "https://kcbootcampers-api-heroku.herokuapp.com/hub")) resp.set_cookie('login', "", expires=0) return resp else: user = User.get_by_email(email) if user is not None: if not user.active: return render_template("login_failed.html", acc="Account") return render_template("log_in.html", acc="Account", display="block")