def api_signup():
email = request.json.get('email')
password = request.json.get('password')
code = request.json.get('code')
if email is None or password is None:
print('None...')
abort(400)
code = Code.objects(value=code).first()
if not code:
return jsonify({
'code': 0,
'tip': "wrong code"
})
if User.objects(email=email).first() is not None:
return jsonify({
'code': 0,
'tip': "email already registered"
})
try:
user = User(email=email)
user.set_password(password)
user.save()
code.delete()
return jsonify({
'code': 1,
'data': {'id': str(user.id),
'email': user.email}
})
except db.errors.ValidationError:
return jsonify({
'code': 0,
'tip': 'wrong email'
})
def api_signin():
print(request.data)
print(request.content_type)
if not request.json:
email = request.form['email']
password = request.form['password']
else:
email = request.json.get('email')
password = request.json.get('password')
user = User.objects(email=email).first()
if not user or not user.check_password(password):
return jsonify({
'code': 0,
'data': {},
'tip': 'wrong email or wrong password'
})
elif user.group == Group.block or user.group == Group.delete:
return jsonify({
'code': 0,
'data': {},
'tip': 'no right access'
})
else:
token = user.generate_token()
data = jsonify({
'code': 1,
'data': {'id': str(user.id),
'email': user.email,
'token': token}
})
response = current_app.make_response(data)
response.set_cookie("token", token, httponly=True)
return response
def api_delete_user(uid):
if g.user.group != Group.admin:
abort(400)
try:
user = User.objects(id=uid).first()
if not user:
abort(400)
user.delete()
return jsonify({
'code': 1,
})
except db.errors.ValidationError:
return jsonify({
'code': 0,
'tip': 'wrong id'
})
