def login():
if session.get("logged_in"):
return redirect("/")
form = LoginForm(request.form)
form.validate()
if request.method == 'POST':
f = open('data/blog_info.json')
infoJSON = json.load(f)
pw = infoJSON['password']
username = infoJSON['username']
f.close()
if username == request.form['username']:
if (verify_password(pw, request.form['password'])):
session["logged_in"] = True
return redirect("/")
else:
return render_template('login.html', form=form, errorMessage="invalid password")
else:
return render_template('login.html', form=form, errorMessage="invalid user")
else:
return render_template('login.html', form=form)
def post(self):
loginform = LoginForm(request.form)
callback = request.form.get('callback','/')
if loginform.validate():
# add login session
print u'Successfully logged in as %s' % loginform.user.username
login_user(loginform.user, remember=loginform.remember.data)
return redirect(callback)
else:
# return error
return render_template('login.html', **locals())
def post(self):
form = LoginForm(self.request.arguments)
if form.validate():
email = form.data['email']
pwd = form.data['password']
user = yield User.objects.filter(email=email).find_all()
if not user or (not user[0].check_password(pwd)):
self.render('/login.html', errors="Invalid email or password")
return
if form.data['remeber_me']:
self.set_secure_cookie("user_id", str(user[0]._id))
self.redirect(self.get_argument('next', '/'))
else:
self.render('/login.html', errors="Invalid email or password")
return
def login():
form = LoginForm(request.form)
error = None
if request.method == 'POST' and form.validate():
member = Member.query.filter(Member.name == form.name.data).first()
if member:
if member.password == form.password.data:
session['Id'] = member.Id
session['name'] = member.name
session['role'] = member.role
return redirect('/')
else:
member = None
if not member:
error = "帳號、密碼或身分不正確"
return render_template('login.html', form=form, error=error)
def login(request):
"""If the user came from this page and has submitted the form, try to log
them in. Otherwise, give them the login page.
"""
login_url = request.route_url('login')
referrer = request.url
if login_url == referrer:
referrer = '/'
form = LoginForm(request.POST)
if form.came_from.data:
came_from = form.came_from.data
else:
came_from = referrer
if request.POST and form.validate():
username = form.username.data
password = form.password.data
if verify_password(username, password):
headers = remember(request, username)
return HTTPFound(location=came_from, headers=headers)
else:
message = 'Incorrect login information.'
return {'message': message,
'username': username,
'form': form,
'came_from': came_from,
'url': request.route_url('login')
}
else:
return {'message': '',
'username': '',
'form': form,
'came_from': came_from,
'url': request.route_url('login')
}
