def update_email(): validate_form(request.form, ['old_email', 'new_email', 'password']) user = User.pull_by_email(request.form['old_email']) if (not user): raise UnauthorizedError user.update_email(request.form['new_email'], request.form['password']) return empty_ok()
def delete_user(): validate_form(request.form, ['email', 'password']) user = User.pull_by_email(request.form['email']) if (not user): raise UnauthorizedError() user.delete(request.form['password']) return empty_ok(204)
def update_goal(): validate_form(request.form, ['id']) goal = Goal.pull_by_id(request.form['id']) if (not goal): raise NotFoundError() if (goal.user != current_user.get_id()): raise UnauthorizedError() goal.update(request.form) return empty_ok()
def update(): validate_form(request.form, ['email', 'password']) user = User.pull_by_email(request.form['email']) if (not user): raise UnauthorizedError if (not user.check_password(request.form['password'])): raise UnauthorizedError user.update(request.form) return empty_ok()
def login(): validate_form(request.form, ['email', 'password']) email = request.form['email'] password = request.form['password'] remember_user = False if (request.form.has_key('remember')): remember_user = request.form['remember'] registered_user = User.query.filter_by(email=email).first() if not registered_user: raise AuthenticationFailed(email + " is not a registered user email") if not registered_user.check_password(password): raise AuthenticationFailed("Incorrect password") login_user(registered_user, remember=remember_user) return empty_ok(201)
def delete_goal(): validate_form(request.form, ['id']) Goal.delete(current_user.get_id(), request.form['id']) return empty_ok(204)
def logout(): logout_user() return empty_ok(204)