def login_user():
if request.method == 'POST':
username = request.form['username']
password = request.form['password']
user = UserModel.find_by_username(username)
try:
#if user and safe_str_cmp(password, user.password):
if user and Utils.check_hashed_password(password, user.password):
session['username'] = user.username
if user.username in current_app.config.get('ADMIN',
'').split(','):
session['admin'] = True
else:
session['admin'] = None
return redirect(url_for("webmodels.index"))
else:
session['username'] = None
session['admin'] = None
return "Invalid credentials! please try again."
except:
session['username'] = None
session['admin'] = None
return "Invalid credentials! please try again."
return render_template("users/login.html")
def authenticate(username, password):
user = UserModel.find_by_username(username) # PostgrsqlDB User Model
userDynamoDB = UserModelDynamoDB.find_by_username(
username) # aws Dynamo DB User Model
# user = username_mapping.get(username, None)
if userDynamoDB and userDynamoDB.password == password:
return userDynamoDB
def identity(payload):
'''
Used by JWT to check if a user is already authenticated
users send the token in the header which is decoded and
returned as payload (stateless)
'''
user_id = payload['identity']
return UserModel.find_by_id(user_id)
def authenticate(username, password):
#.get() gets values of te key 'username'; useful for setting a default value
#username_mapping['username'] <-- similar to .get without having a default
#user = username_mapping.get(username, None) #replacing userid_mapping with database
user = UserModel.find_by_username(username)
if user and safe_str_cmp(user.password, password):
return user
def authenticate(username, password):
user = UserModel.find_by_username(username)
print("coba ya")
if user and safe_str_cmp(
user.password, password
): # this is simple way for not using safe_str_cmp"if user and user.password == password :"******"bisa nih")
return user
def authenticate(
username, password
): ## This is used at the beginning that is when authenticating initially
#user=username_mapping.get(username,None) # if there is no key for this username, it would return None
user = UserModel.find_by_username(username)
if user and safe_str_cmp(user.password, password):
#safe_str_cmp(a,b) takes care of different encoding schemes used by a and b and compares them
return user
def authenticate(username, password):
# user = username_mapping.get(username)
# .get will return a value from a dictionary, and "None" is a default value, if
# there is no user returned
user = UserModel.find_by_username(username)
if user and safe_str_cmp(
user.password,
password): # was before: user.password == password:
return user
def test_register_user(self):
with self.app() as client:
with self.app_context():
response = client.post('/register',
data={
'username': '******',
'password': '******'
})
self.assertEqual(response.status_code, 201)
self.assertIsNotNone(UserModel.find_by_username('test'))
self.assertDictEqual({'message': 'User created successfully.'},
json.loads(response.data))
def register_user():
if request.method == 'POST':
username = request.form['username']
password = request.form['password']
#email = request.form['email']
if UserModel.find_by_username(username):
return "Username already exists! Try with another name."
else:
hashed_password=Utils.hash_password(password)
user = UserSchema().load({"username":username, "password":hashed_password})
user.save_to_db()
session['username'] = user.username
return redirect(url_for("webmodels.index"))
return render_template("users/register.html")
def create_tables():
db.create_all()
try:
# verify whether there is any registered category
category = CategoryModel.find_category_by_id(_id=1)
print(category.id)
except:
# id_user = 1 --> admin
us = UserModel(username='******', password='******')
db.session.add(us)
me = CategoryModel('Park', id_user=1)
db.session.add(me)
me = CategoryModel('Museum', id_user=1)
db.session.add(me)
me = CategoryModel('Theater', id_user=1)
db.session.add(me)
me = CategoryModel('Monument', id_user=1)
db.session.add(me)
db.session.commit()
def authenticate(username, password):
user = UserModel.find_by_username(username)
print(f'I am calling in authentication of {username}')
print(user)
if user and user.password == password:
return user
def authenticate(username, password):
user = UserModel.find_by_username(
username) #if username_mapping finds nothing, we return None
if user and safe_str_cmp(user.password, password):
return user
def identity(payload):
print(f'payload for identity : {payload}')
user_id = payload['identity']
print(f'I am calling for identify {user_id}')
return UserModel.find_by_id(user_id)
def identity(payload):
# payload is content of JWT
user_id = payload['identity']
# if user_id not exist return default value None
return UserModel.find_by_id(user_id)
def authenticate(email, password):
print()
user = UserModel.find_by_email(email)
if user and user.password == password:
return user
def identity(payload):
# payload is the content of JWT token
user_id = payload['identity']
return UserModel.find_by_id(user_id) # instructor sugestion
def authenticate(username,password):
user = UserModel.find_by_username(username)
# in this case, we are using the Model, not the Resource
if user and safe_str_cmp(user.password, password):
# to avoid problems in different characters sets or python version
return user
def authenticate(username, password):
user = UserModel.find_by_username(username)
# print(f'username: {username}, password: {password}')
# if user and safe_str_cmp(user.password, password):
if user and user.password == password:
return user
def identity(payload):
user_id = payload["identity"]
return UserModel.find_by_id(user_id)
def identity(payload):
uid = payload['identity']
return UserModel.find_by_id(uid)
def authenticate(username, password):
user = UserModel.find_by_username(username)
if user and user.password == password:
return user
def authenticate(username, password):
# user = username_mapping.get(username, None)
user = UserModel.find_by_username(username)
if user is not None and safe_str_cmp(user.password, password):
return user
def authenticate(username: str, password: str) -> Optional[UserModel]:
user = UserModel.find_by_username(username)
if user and safe_str_cmp(password.encode('utf-8'), user.password.encode('utf-8')):
return user
else:
return None
def identity(payload: Dict) -> Optional[UserModel]:
user_id = payload['identity']
return UserModel.find_by_id(user_id)
def identity(payload):
userid = payload['identity']
return UserModel.find_userid(userid)
def authenticate(username, password):
# getting username from database
user = UserModel.find_by_username(username)
if user and safe_str_cmp(user.password, password):
return user
def authenticate(username, password):
user = UserModel.find_by_username(username)
if user and safe_str_cmp(user.password, password):
return user
def identity(payload): # "payload" is the content of JWT token
user_id = payload['identity']
# return userid_mapping.get(user_id, None) # "None" is the default if not found
return UserModel.find_by_id(user_id)
def add_claims_to_jwt(identity):
user = UserModel.find_by_id(identity)
return {'is_admin': user.is_admin}
def authenticate(username, password):
user = UserModel.find_by_username(
username) #using the Class.method(argument)
if user and safe_str_cmp(user.password, password):
return user