def update_account(account_id, nickname, des, old_password, new_password, confirm, token=None):
if token is None or not (is_admin(token) or is_self(account_id, token)):
return abort(403)
account = Account.objects(id=account_id).first()
if account is None or account.username == 'root':
return abort(403)
if des is None:
des = ""
password = account.password
if new_password or confirm:
if new_password == confirm:
if Account.check_password(account, old_password):
password = Account.create_password(new_password)
else:
return {
'success': 0,
'message': 'wrong password'
}
else:
return {
'success': 0,
'message': 'pwd != confirm'
}
account.update(
nickname=nickname,
description=des,
password=password,
)
account.save()
return {
'success': 1,
'id': account_id,
'message': 'user\'s profile update successfully!'
}
def update_account(account_id,
nickname,
des,
old_password,
new_password,
confirm,
token=None):
if token is None or not (is_admin(token) or is_self(account_id, token)):
return abort(403)
account = Account.objects(id=account_id).first()
if account is None or account.username == 'root':
return abort(403)
if des is None:
des = ""
password = account.password
if new_password or confirm:
if new_password == confirm:
if Account.check_password(account, old_password):
password = Account.create_password(new_password)
else:
return {'success': 0, 'message': 'wrong password'}
else:
return {'success': 0, 'message': 'pwd != confirm'}
account.update(
nickname=nickname,
description=des,
password=password,
)
account.save()
return {
'success': 1,
'id': account_id,
'message': 'user\'s profile update successfully!'
}
def create_account(username, password, confirm, role, nickname, token=None):
if token is None or not is_admin(token):
return abort(403)
if password != confirm:
return {
"message": "password not conformity"
}
if Account.objects(username=username).first() is not None:
return {
"message": "username has been register"
}
if str(role) == '1':
role = 'admin'
else:
role = 'stuff'
account = Account(
username=username,
nickname=nickname,
password=Account.create_password(password),
role=role,
).save()
token = Token(
user_id=str(account.id),
token=create_token(),
).save()
return {
'id': account.id,
'success': 1,
'token': token.token
}
def create_account(username, password, confirm, role, nickname, token=None):
if token is None or not is_admin(token):
return abort(403)
if password != confirm:
return {"message": "password not conformity"}
if Account.objects(username=username).first() is not None:
return {"message": "username has been register"}
if str(role) == '1':
role = 'admin'
else:
role = 'stuff'
account = Account(
username=username,
nickname=nickname,
password=Account.create_password(password),
role=role,
).save()
token = Token(
user_id=str(account.id),
token=create_token(),
).save()
return {'id': account.id, 'success': 1, 'token': token.token}
