def login():
""" Authenticates administrator login, redirects to login page if authentication fails. """
if request.method == 'POST':
username = request.values["username"]
password = request.values["password"]
if Researcher.check_password(username, password):
admin_authentication.log_in_admin(username)
return redirect("/choose_study")
else:
flash("Incorrect username & password combination; try again.", 'danger')
return redirect("/")
def reset_admin_password():
username = session['admin_username']
current_password = request.values['current_password']
new_password = request.values['new_password']
confirm_new_password = request.values['confirm_new_password']
if not Researcher.check_password(username, current_password):
flash("The Current Password you have entered is invalid", 'danger')
return redirect('/manage_credentials')
if not check_password_requirements(new_password, flash_message=True):
return redirect("/manage_credentials")
if new_password != confirm_new_password:
flash("New Password does not match Confirm New Password", 'danger')
return redirect('/manage_credentials')
Researcher.objects.get(username=username).set_password(new_password)
flash("Your password has been reset!", 'success')
return redirect('/manage_credentials')