def login(): form = LoginForm() if form.validate_on_submit(): name = form.username.data password = form.password.data admin = Admin.query.filter_by(name=name).first() if admin and admin.verify_password(password): # session信息的保存 session['admin_id'] = admin.id session['admin'] = admin.name flash("管理员%s登录成功" % (admin.name)) remote_ip = request.remote_addr # 将登录信息写到日志中; adminlog = Adminlog(admin_id=admin.id, ip=remote_ip, area='xxx内网IP') db.session.add(adminlog) db.session.commit() # 从index蓝图里面寻找index函数; return redirect(url_for('admin.index')) else: flash("管理员登录失败") return redirect(url_for('admin.login')) return render_template('admin/login.html', form=form)
def login(): form = LoginForm() print('开始登陆-验证:') print(form.validate_on_submit()) if form.validate_on_submit(): name = form.username.data password = form.password.data admin = Admin.query.filter_by(name=name).first() if admin and admin.verify_password(password): # 存储 session 信息 session['admin_id'] = admin.id session['admin'] = admin.name remote_ip = request.remote_addr # 存储登录信息到登录日志 adminlog = AdminLog(admin_name=admin.name, ip=remote_ip) db.session.add(adminlog) db.session.commit() print('管理员登录成功!') return redirect(url_for('admin.index')) else: flash('帐号或密码错误') print(form.errors) return render_template('admin/login.html', form=form)
def pwd(): form = PwdForm() if form.validate_on_submit(): # 获取当前登录用户的密码 admin = Admin.query.filter_by(name=session.get('admin')).first() # 判断用户的旧密码是否正确 if admin.verify_password(form.old_pwd.data): # ********数据库里面的是password admin.password = generate_password_hash(form.new_pwd.data) db.session.add(admin) db.session.commit() flash("密码更新成功") else: flash("旧密码错误, 请重新输入") return redirect(url_for('admin.pwd')) return render_template('admin/pwd.html', form=form)