def authenticate(self): try: username = request.params['username'] password = request.params['password'] password = User.hash(password) user = Session.query(User).filter(User.username == username).\ filter(User.password == password).\ one() except: session['flash'] = 'Authentication Failed' session.save() return redirect('/login') session['user'] = { 'id': 'user.id', 'username': '******' } session['flash'] = 'Successfully logged in' session.save() if session.get('path_before_login'): return redirect(session['path_before_login']) else: return redirect('/')
def add_metadata(self, environ, identity): username = identity.get('repoze.who.userid') user = User.get(username) if user is not None: identity['user'] = user