def validate_account(id):
user = User.by_id(id)
if user is not None and user.validation_token == request.args.get('token'):
user.validated = True
db.session.commit()
login_user(user, remember=True)
return redirect('/')
def update(id):
user = obj_or_404(User.by_id(id))
authz.require(user.id == current_user.id or authz.system_manage())
user.update(request_data())
db.session.commit()
return jsonify(user)
def view(id):
authz.require(authz.system_read())
user = obj_or_404(User.by_id(id))
data = user.to_dict()
return jsonify(data)
