def get(self,id):
user=User.get_by_id(id)
if not user:
self.redirect('/user')
login_user=self.get_current_user()
if login_user.leves!=1:
self.redirect('/user')
if login_user ==user:
self.redirect('/user')
user.status=1
try:
db_session.commit()
self.redirect('/user')
except:
db_session.rollback()
self.redirect('/user')
def post(self, id):
self.user = User.get_by_id(id)
password = self.get_body_argument('yuanmima')
xinmima = self.get_body_argument('newpass')
querenmima = self.get_body_argument('newpass_que')
if not (xinmima and querenmima):
self.render('person.html',
user=self.user,
error_message='请输入修改密码!')
if encrypt(password) != self.user.password:
self.render('person.html', user=self.user, error_message='原密码有误!')
if xinmima != querenmima:
self.render('person.html',
user=self.user,
error_message='新密码输入不一致!')
self.user.password = encrypt(xinmima)
db_session.commit()
self.redirect('/logout')
def get(self, id):
self.user = User.get_by_id(id)
self.render('person.html', user=self.user, error_message=None)
def get_current_user(self):
user_id = self.get_secure_cookie('user_id')
if not user_id:
return None
return User.get_by_id(int(user_id))