def new(self, name, pw, email): password = make_pw_hash(name, pw) usr = Transaction(USERDB).set_new(password = password, name = name, email = email) self.usr = usr usr.commit() thing = Thing(usr.obj()) for t in USER_THINGS_DEFAULT: setattr(thing, t, USER_THINGS_DEFAULT[t]) self.thing = thing self.thing.commit() return self
def post(self): usr = self.verify_user_cookie() pw = self.request.get('password') new_pw = self.request.get('new_password') new_pw_confirm = self.request.get('new_pw_confirm') if pw == INIT_PW and new_pw == new_pw_confirm and usr: admin = User().new('#admin', make_pw_hash('#admin', new_pw),'') Group().new('#root', 'admin') usr.isAdmin = True usr.commit() admin.isAdmin = True admin.commit() ADMIN_IP = self.request.remote_addr self.set_admin_cookie('#admin') self.redirect('/admin/console') return self.redirect('/')
def post(self): error_flag = False username = self.request.get('username') password = self.request.get('password') verify = self.request.get('verify') email = self.request.get('email') args = dict(username = username) #Double quotes are used when ' is present to avoid escaping. if not utils.valid_username(username): args['error_name'] = "That's not a valid username." error_flag = True dbo = userdb.User.all().filter('username', username) if dbo.get(): args['error_name'] = 'The user already exists.' error_flag = True if not utils.valid_password(password): args['error_pass'] = "******" error_flag = True if not password == verify: args['error_verify'] = "Your passwords didn't match." error_flag = True if email != '' and not utils.valid_email(email): args['error_email'] = "That's not a valid email." error_flag = True if error_flag: self.render('signup.html', **args) else: args['password'] = utils.make_pw_hash(username, password) if email: args['email'] = email user = userdb.User(**args) user.put() self.login(user) self.redirect("/")
def post(self): username = self.request.get('username') password = self.request.get('password') password2 = self.request.get('verify') email = self.request.get('email') errors = 0 params = dict(username=username, email=email) # form input validation if not utils.valid_username(username): params['username_error'] = "That's not a valid username." errors += 1 if not utils.valid_password(password): params['password_error'] = "That's not a valid password." errors += 1 if not utils.password_match(password, password2): params['password_match_error'] = "Passwords do not match." errors += 1 if email and not utils.valid_email(email): params['email_error'] = "That's not a valid email." errors += 1 # check if user exists already u = query.get_user(username) if u: params['username_error'] = "User already exists" errors += 1 if errors > 0: self.render('signup.html', **params) else: pw_hash = utils.make_pw_hash(username, password) u = query.create_user(username, pw_hash, email) # add cookie self.login(u) self.redirect('/')
def register(cls, name, pw, email=None): pw_hash = utils.make_pw_hash(name, pw) return cls(name=name, password_hash=pw_hash, email=email)
def register(cls, name, pw, email = None): pw_hash = make_pw_hash(name, pw) return User(parent = users_key(), name = name, pw_hash = pw_hash, email = email)
def validate_pw(self, pw): pwsalt = self.usr.password.split('|')[1] return make_pw_hash(self.usr.name, pw, pwsalt) == self.usr.password
def register(cls, username, password, email=None): pw_hash = u.make_pw_hash(username, password) return cls(name=username, pw_hash=pw_hash, email=email)
def new(self, name, pw, email): password = make_pw_hash(name, pw) self.key = Transaction(USERDB).set(name = name, password = password, email = email) self._things = Thing(self.key).new(deepcopy(USER_THINGS_DEFAULT)) self._properties = {'name':name, 'password':password, 'email':email} return self
def register(cls, name, pw, email=None): pw_hash = make_pw_hash(name, pw) return User(parent=users_key(), name=name, pw_hash=pw_hash, email=email)