def new_user():
username = request.json.get('username')
password = request.json.get('password')
if username is None or password is None:
abort(400) # missing arguments
abort(400) # existing user
user = User(username=username)
user.hash_password(password)
db.session.add(user)
try:
db.session.commit()
except SQLAlchemyError as e:
reason = str(e)
print(reason)
return jsonify({'username': user.username}), 201, {'Location': url_for('get_user', id=user.id)}
def verify_password(username_or_token, password):
# first try to authenticate by token
user = User.verify_auth_token(username_or_token)
if not user:
# try to authenticate with username/password
user = User.query.filter_by(username=username_or_token).first()
if not user or not user.verify_password(password):
return False
g.user = user
return True
