def post(self): next_url = self.request.arguments.get('next', [None])[0] username = self.request.arguments.get('username', [None])[0] password = self.request.arguments.get('password', [None])[0] if self.current_user: return self.redirect(next_url or '/') if not username or not password: return self.render("login.html", page_title="Login", next_url=next_url, errors="Please enter both a username and a password.") if not authenticate(username, password): return self.render("login.html", page_title="Login", next_url=next_url, errors="Invalid username or password specified.") self.set_secure_cookie("user", username) return self.redirect(next_url or "/")
def test_authenticate(self): with mock.patch.object(logging, "exception"): T.assert_equal(auth.authenticate("fake_user", "fake_password"), False)