def login(): if current_user.is_authenticated: return redirect(request.args.get('next', '/')) form = LoginForm() if 'last_logins' not in flask_session: flask_session['last_logins'] = TEMPLATE_REMEMBER_USERS if form.validate_on_submit(): login = form.login.data.strip() password = form.password.data.strip() user = session.query(User).filter(User.login == login).first() if user and user.check_password(password): if login in flask_session['last_logins']: flask_session['last_logins'].remove(login) flask_session['last_logins'].append(login) flask_session['last_logins'] = flask_session['last_logins'][ -COUNT_SAVED_LOGINS:] flask_session.modified = True login_user(user, remember=REMEMBER_USER) return redirect(request.args.get('next', '/')) return render_template('login.html', message="Неправильный логин или пароль", form=form) login = request.args.get('login', '') form.login.data = login last_logins = flask_session['last_logins'][::-1] return render_template('login.html', form=form, login=login, last_logins=last_logins)
def login(): if not session.get('logged_in'): loginForm = LoginForm(request.form) registrationForm = RegistrationForm(request.form) if request.method == 'POST': username = request.form['username'].lower() password = request.form['password'] if loginForm.validate(): if credentials_valid(username, password): session['logged_in'] = True session['username'] = username return jsonify({ "message": "success", "status": 200, "username": username, }) return jsonify({ "message": "success", "status": 200, }) return jsonify({ "message": "invalid username or password", "status": 200, }) return jsonify({ "message": "both fields required", "status": 200, }) return render_template('landing.html', form=registrationForm) return redirect(url_for('home.home'))
def login(): if current_user.is_authenticated: return redirect(url_for('web_interface.projects_view')) form = LoginForm() if request.method == 'POST': if form.validate_on_submit(): db_sess = db_session.create_session() email = request.form.get('email') password = request.form.get('password') user = db_sess.query(User).filter_by(email=email).first() if user is None or not check_password_hash(user.hashed_password, password): return render_template( "form.html", form=form, action=url_for('auth.login', next=request.endpoint), title=lazy_gettext("Login"), error=lazy_gettext("Wrong credentials data")) login_user(user, remember=True) return redirect_dest("/projects") k = {} if request.endpoint != "auth.login": k["next"] = request.endpoint return render_template("form.html", form=form, action=url_for('auth.login', **k), title=lazy_gettext("Login"))
def login(): form = LoginForm(request.form) if not form.validate_on_submit(): form = LoginForm() return render_template("login.html", form=form, msg="Form not valid") user = dict() # data and make sure to strip any accidental blank spaces. # Courteous and simple user['username'] = request.form['username'].lstrip().rstrip() user['password'] = request.form['password'].lstrip().rstrip() # if user is valid, log him in # of course anyone could access that page but sessions are not in the scope of this # assignment if user['username'] not in _TRIES: _TRIES[user['username']] = {'timestamp': datetime.datetime.now(), 'tries': 0} if _TRIES[user['username']]['timestamp'] < (datetime.datetime.now()-datetime.timedelta(minutes=5)): _TRIES[user['username']]['tries'] = 0 _TRIES[user['username']]['timestamp'] = datetime.datetime.now() if _TRIES[user['username']]['tries'] >= 30: return render_template("login.html", msg="Too many attempts in past 5 minutes, " "try again later", form=form) if check_user(user): _TRIES[user['username']]['tries'] = 0 session['username'] = request.form['username'].lstrip().rstrip() return redirect(url_for(".logged_in_page")) else: _TRIES[user['username']]['tries'] += 1 return render_template("login.html", msg="Invalid user name or password", form=form)
def login(): form = LoginForm(request.form) if request.method == "POST" and form.validate(): username = form.username.data password = form.password.data result = get_user(username) if result: if sha256_crypt.verify(password, result.password): flash("Giriş İşlemi Başarılı", "success") session["logged_in"] = True session["id"] = result.id session["username"] = username session["name_lastname"] = f"{result.name} {result.last_name}" return redirect(url_for("index")) else: flash("Girilen Şifre Hatalı", "danger") return redirect(url_for("login")) else: flash("Kullanıcı Adı ve Şifre Hatalı", "danger") return redirect(url_for("login")) else: return render_template("login.html", form=form)
def post(self, request): login_form = LoginForm(request.POST) if not login_form.is_valid(): return render(request, self.template_name, {"form": login_form}) login = login_form.cleaned_data['username'] conn = cx_Oracle.connect(dbset.URL) cursor = conn.cursor() cursor.execute("SELECT api.get_user_id('{}') FROM DUAL".format(login)) id = cursor.fetchone()[0] cursor.execute("SELECT api.is_admin('{}') FROM DUAL".format(login)) is_admin = cursor.fetchone()[0] cursor.close() conn.close() request.session['user_id'] = id request.session['is_admin'] = is_admin request.session['username'] = login return redirect(self.success_url)
def login_page(): """"Login using email and password Check correctness login and password After that, redirect to home(/) """ # login form form = LoginForm() # random background image 1 of 5 bg_index = randint(0, 4) # submit button if form.validate_on_submit(): db_sess = db_session.create_session() # user search user = db_sess.query(UserLogin).filter(UserLogin.email == form.email.data).first() # check password if user and user.check_password(form.password.data): login_user(user, remember=form.remember_me.data) # go home return redirect("/profile") # user error return render_template('login.html', message="Неправильный логин или пароль", form=form, bg_index=bg_index) # return template return render_template('login.html', title='Авторизация', form=form, bg_index=bg_index)
def login(): def check_login(form): session = create_session() if not session.query(Users).filter( Users.email == form.email.data).first(): return 'Нет такого email' else: return 'Неправильный пароль' if current_user.is_authenticated: return redirect('/') form = LoginForm() form.hidden_tag() if form.validate_on_submit(): session = create_session() user = session.query(Users).filter( Users.email == form.email.data).first() if user and check_password(user.password, form.password.data): login_user(user, remember=form.remember_me.data) return redirect('/') return render_template('login_form.html', form=form, message=check_login(form)) return render_template('login_form.html', form=form)
def login(): form = LoginForm(request.form) if form.validate(): user = User.objects.get(email=request.form['email']) password = request.form['password'] if isinstance(password, list): password = ''.join([str(i) for i in password]) logger.debug('user: {0} password (actual): {1} password (attempted): {2} length diff: {3}'.format(user.email, user.hashed_password, password, len(user.hashed_password) - len(password))) #logger.debug('logging in {0} with pw {1}'.format(user.email, password)) if user.try_login(request.form['password']): logger.debug('logging in user: {0}'.format(user.email)) print 'login_user', login_user(user) flask.flash('Logged in successfully.') # user is now logged in so a redirect will suffice return redirect('home') else: logger.debug('invalid user creds for {0}'.format(user.email)) else: logger.error('invalid form') return render_template('index.html', form=form)
def signin(): form = LoginForm() if form.validate_on_submit(): if form.email.data == '*****@*****.**' and form.password.data == 'adminpwd': return redirect(url_for('watermark')) return render_template('signin.html', form=form)
def login(): # Determine initial welcome message (bonus point) register_redirect = request.args.get('register_redirect') if register_redirect is not None: login_message = register_redirect else: login_message = LOGIN_MESSAGE # Main logic login_form = LoginForm(request.form) if request.method == 'POST': if login_form.validate(): username = request.form['username'] password = request.form['password'] validated_user = login_validation(username, password) if validated_user: login_user(validated_user) return redirect(url_for('dashboard_page.dashboard')) else: return render_template( 'login.html', form=login_form, error_message=LOGIN_FAILURE, ) else: return render_template( 'login.html', form=login_form, error_message=FORM_INVALID, ) else: return render_template( 'login.html', form=login_form, register_redirect=login_message, )
def login(): # login form form = LoginForm() # submit button if form.validate_on_submit(): db_sess = db_session.create_session() # поиск пользователя в базе данных sotrudnik_inf = db_sess.query(User).filter(User.email == form.email.data, User.status == 'Сотрудник').first() potreb_inf = db_sess.query(User).filter(User.email == form.email.data, User.status == 'Потребитель').first() # если пользователь сотрудник и пороль совпадает, отправляет в лк сотрудника if sotrudnik_inf and sotrudnik_inf.check_password(form.password.data): login_user(sotrudnik_inf) # go home return redirect("/sotrudnik") # если пользователь потребитель и пороль совпадает, отправляет в лк потребителя if potreb_inf and potreb_inf.check_password(form.password.data): login_user(potreb_inf) # go home return redirect("/potreb") # user error return render_template('login.html', message="Неправильный логин или пароль", form=form) # return template return render_template('login.html', form=form)
def api_login(): if not session.get('logged_in'): loginForm = LoginForm(request.form) if request.method == 'POST': print("LOGIN request.data", request.data) print("LOGIN is_json", request.is_json) if "username" in request.form: username = request.form['username'].lower() password = request.form['password'] if loginForm.validate(): if credentials_valid(username, password): session['logged_in'] = True session['username'] = username return jsonify({ "message": "success", "status": 200, "username": username, "source": "api", "isAuthenticated": True }) return json.dumps({'status': 'Invalid user/pass'}) elif request.is_json is True: json_data = request.get_json() username = json_data["username"] password = json_data["password"] if credentials_valid(username, password): session['logged_in'] = True session['username'] = username # return json.dumps({'status': 'success', "username": username, "source": "api"}) return jsonify({ "message": "success", "status": 200, "source": "api", "isAuthenticated": True }) return jsonify({ "message": "invalid username or password", "status": 200, "isAuthenticated": False }) return jsonify({ "message": "both field required", "status": 200, "isAuthenticated": False }) user = get_user() return jsonify({ "message": "success", "status": 200, "source": "api", "isAuthenticated": True })
def login(): login_form = LoginForm() if login_form.validate_on_submit(): users = User.query.filter_by(name=login_form.name.data).all() if len(users) > 0 and compare_password(login_form.password.data, users[0].password_hash, users[0].salt): login_user(users[0]) return redirect(url_for('dashboard')) else: print('Not Validated') return render_template('login.html', form=login_form)
def login(): loggedInUser = getLoggedUser(getUserSessionId(request)) if loggedInUser != None: return redirect('/') form = LoginForm() if request.method == 'POST': if not form.validate(): return render_template('login_form.html', isUserLoggedIn=False, form=form, form_name="Login", action="login", method='POST') else: username = form.username.data password_hash = getPasswordHash(form.password.data) db = PostgresDb() response = db.sqlalchemy_session.query(Users).filter( Users.username == username).filter( Users.password_hash == password_hash).all() if len(response) != 1: return render_template('login_form.html', isUserLoggedIn=False, form=form, form_name="Login", action="login", method='POST') user_id = response[0].user_id new_uuid = str(uuid.uuid4()) new_session = UserSessions(user_id=user_id, session_id=new_uuid) db.sqlalchemy_session.add(new_session) try: db.sqlalchemy_session.commit() except DatabaseError as e: db.sqlalchemy_session.rollback() print(e) response = make_response(redirect('/')) response.set_cookie(session_id_key, new_uuid) return response return render_template('login_form.html', isUserLoggedIn=False, form=form, form_name="Login", action="login", method='POST')
def login(): form = LoginForm() if form.validate_on_submit(): user = get_user_by_email(form.email.data) if user and user.check_password(form.password.data): login_user(user, remember=form.remember_me.data) return redirect('/') return render_template('login.html', message="Wrong login or password", form=form) return render_template('login.html', title='Authorization', form=form)
def login(): form = LoginForm() if form.validate_on_submit(): if not db_ops.checklogin(form.username.data, form.password.data, form.remember.data, login_user, session, sess): return render_template('login.html', form=form, error='Invalid username or password') return redirect(url_for('upload')) return render_template('login.html', form=form)
def post(self): form = LoginForm() if form.validate_on_submit(): user = User.query.filter_by(username=form.username.data).first() if user is None: return redirect(url_for('login')) elif check_password_hash(user.password, form.password.data): session['username'] = user.username print("Logged in") return redirect(url_for('index')) else: return redirect(url_for('login'))
def login(): form = LoginForm() if form.validate_on_submit(): db_sess = db_session.create_session() user = db_sess.query(User).filter(User.email == form.email.data).first() if user and user.check_password(form.password.data): login_user(user, remember=form.remember_me.data) return redirect("/") return render_template('login.html', message="Неправильный логин или пароль", form=form) return render_template('login.html', title='Авторизация', form=form)
def login(): form = LoginForm() if form.validate_on_submit(): user = User.query.filter( and_(User.username == form.username.data, User.password == hashlib.sha1( form.password.data).hexdigest())).first() if user: login_user(user=user, remember=form.remember_me.data) return redirect('/panel') return render_template('login.html', form=form)
def login(): form = LoginForm() if form.validate_on_submit(): # POST user = server.get_user_by_name(form.name.data) if user and user.check_password(form.password.data): login_user(user) next_uri = request.args.get("next") or url_for("welcome") return redirect(next_uri) # GET return render_template("login.html", form=form)
def login(): if current_user.is_authenticated: return redirect(url_for('index')) form = LoginForm() if form.validate_on_submit(): if not user_service.exists_by_name(form.username.data): flash('Nama pengguna tidak ditemukan') if not user_service.check_password(form.username.data, form.password.data): flash('Kata sandi yang dimasukkan salah') user = user_service.get_user_by_username(form.username.data) login_user(user) return redirect(url_for('index')) return render_template('login.html', login_form=form)
def login(): form = LoginForm() if form.validate_on_submit(): db_sess = db_session.create_session() user = db_sess.query(User).filter( User.email == form.email.data).first() if user and user.check_password(form.password.data): login_user(user, remember=form.remember_me.data) return redirect("/") return render_template('login2.html', message="Wrong login or password", form=form) return render_template('login2.html', title='Authorization', form=form)
def login(): ava = stay_ava() form = LoginForm() params = return_files(ava=ava, form=form) if form.validate_on_submit(): db_sess = db_session.create_session() user = db_sess.query(User).filter(User.email == form.email.data).first() if user and user.check_password(form.password.data): login_user(user, remember=form.remember_me.data) return redirect("/") return render_template('login.html', message="Неправильный логин или пароль", **params) return render_template('login.html', **params)
def login(): form = LoginForm() if form.validate_on_submit(): db_sess = db_session.create_session() user = db_sess.query(Users).filter( Users.login == form.login.data).first() if user and user.check_password(form.password.data): login_user(user, remember=form.is_remember_me.data) return redirect("/") return render_template('login.html', message='Неверный логин или пароль!', form=form, title='Вход') return render_template('login.html', title='Вход', form=form)
def signin(): form = LoginForm() if form.validate_on_submit(): flag = 0 for user in db.session.query(Users).all(): password_hash = user.password if form.email.data == user.email and check_password_hash( password_hash, form.password.data): flag = 1 login_user(user) return redirect(url_for('index')) if flag == 0: flash("邮箱或密码错误,请重新登录!") return redirect(url_for('signin')) return render_template('signin.html', form=form)
def login(): form = LoginForm() if get_current_user() is None: error = None db = MongoInit().initialize() if request.method == 'POST': user = UserService(db).load_user_by_login(request.form['login']) if user is None: error = 'Invalid username or password' elif user.password != request.form['password']: error = 'Invalid username or password' else: login_user(user) set_current_user(user) return redirect(url_for('index')) return render_template('login.html', error=error, form=form) return redirect(url_for('index'))
def login(): """Router for login page.""" if current_user.is_authenticated: return redirect(url_for('home')) form = LoginForm() if form.validate_on_submit(): user = Users.query.filter_by(email=form.email.data).first() if user and bcrypt.check_password_hash(user.password, form.password.data): login_user(user, remember=form.remember.data) next_page = request.args.get('next') return redirect(next_page) if next_page else redirect( url_for('home')) else: flash('Ошибка! Проверьте электронную почту или пароль.', 'danger') return render_template('login.html', title='Вход', form=form)
def get_main_page(request): """pokaż stronę główną z formularzem logowania""" if 'user_id' in request.session: return HttpResponseRedirect("/me") if request.method == 'POST': form = LoginForm(request.POST) if form.is_valid(): # do sprawdzania czy zalogowany request.session['user_id'] = form.cleaned_data['id'] request.session['user_name'] = form.cleaned_data['name'] # login return HttpResponseRedirect("/me") else: form = LoginForm() # jak formularz niepoprawny to go też zwraca, bo tam jest wyjęty, i dane # są wpisane jakie były! return render(request, 'main_page.html', {'form': form})
def render_login_page(): login_form = LoginForm() if request.method == 'POST' and login_form.validate_on_submit(): login = login_form.email.data password = login_form.password.data remember = login_form.remember.data user_service = UserService(current_app) registered_user = user_service.get_by_login(login) if registered_user is not None: if user_service.check_password_hash(registered_user.password, password): login_user(registered_user, remember=remember) return redirect('/') # return render_template("user/login.html", form=login_form) return (WebSiteHtmlView("main_blocks/main_template.html").set_title( 'Вход на сайт').set_content('user/login.html').render(form=login_form))
def login(): form = LoginForm() if form.validate_on_submit(): procced_user_fio = validation_user_fio(form.username.data) procced_user_snils = validation_user_snils(form.password.data) if procced_user_fio and procced_user_snils: if verification(procced_user_fio, procced_user_snils): return redirect('/home') return render_template("login.html", message="Неверный логин или пароль", form=form) return render_template("login.html", message="Неверный логин или пароль", form=form) return render_template( "login.html", title='Электронная регистратура Воронежской области', form=form)
def login(): """Страница входа в аккаунт пользователя.""" if current_user.is_authenticated: return redirect('/logout') form = LoginForm() if form.validate_on_submit(): session = db_session.create_session() user = session.query(User).filter( User.login == form.login.data).first() if user and user.check_password(form.password.data): login_user(user, remember=form.remember_me.data) next_url = request.args.get('next') return redirect(next_url or '/news') return render_template('login.html', title='Авторизация', message='Неправильный логин или пароль', form=form) return render_template('login.html', title='Авторизация', form=form)
def login(): LOGGER.info("Entering Login") form = LoginForm() if form.validate_on_submit(): user_name = form.user_name.data user_password = form.user_password.data if User().already_exists(user_name, user_password): user = User().find_one_user(user_name, user_password) session['userId'] = user['id'] print "******* Session user id : " + str(session['userId']) return render_template('user.html', title=MAIN_TITLE) else: error = unicode("Unknow user, please retry") return render_template('index.html', title=MAIN_TITLE, form=SignInForm(), error=error) else: return render_template('login.html', title=MAIN_TITLE, form=LoginForm())