def view(request):
if request.unauthenticated_userid is not None:
request.session.flash("Already logged in, log out first", 'warning')
return HTTPFound(location=request.route_url('home'))
if "ok" in request.params:
session = DBSession()
view_params = {}
for field_name in ("user_id", "user_name", "user_email"):
if field_name in request.params:
view_params[field_name] = request.params[field_name]
# check all fields are correct
uid = request.params["user_id"]
if len(uid) == 0 or not is_good_id(uid):
request.session.flash("User id is not a valid id", 'warning')
return view_params
name = request.params["user_name"]
if len(name) == 0 or not is_good_name(name):
request.session.flash("Name given is not valid", 'warning')
return view_params
email = request.params["user_email"]
if len(email) == 0 or not is_good_email(email):
request.session.flash("Email given is not valid", 'warning')
return view_params
# check user does not exist already
# as a user
user = User.get(session, uid)
if user is not None:
request.session.flash("User %s already exists" % uid, 'warning')
return view_params
# as a team
team = Team.get(session, uid)
if team is not None:
msg = "User %s already exists as a team name" % uid
request.session.flash(msg, 'warning')
return view_params
# register new user
User.create(session, uid, name, email)
return log_user_in(request, uid, True)
else:
return {}
def view(request):
if request.unauthenticated_userid is not None:
request.session.flash("Already logged in, log out first", 'warning')
return HTTPFound(location=request.route_url('home'))
if "ok" in request.params:
session = DBSession()
uid = request.params["user_id"]
user = User.get(session, uid)
if user is None:
msg = "No such user! <a href='%s'>Register?</a>" % request.route_url('user_register')
request.session.flash(Markup(msg), 'warning')
return HTTPFound(location=request.current_route_url())
pwd = request.params["password"]
# check password
if check_password(session, user, pwd):
return log_user_in(request, uid)
else:
request.session.flash("Invalid password", 'warning')
return HTTPFound(location=request.current_route_url())
else:
return {}
