def delete_user():
return_value = success('The user was deleted.')
payload = get_payload(request)
if not g.user or g.user.id != payload.get('id'):
user = User.filter(User.id == payload.get('id')).first()
if user:
user.delete()
safe_commit()
else:
return_value = failure('That user does not exist.')
else:
return_value = failure('You cannot delete the current user.')
return jsonify(return_value)
def delete_user():
return_value = success('The user was deleted.')
payload = get_payload(request)
if not g.user or g.user.id != payload.get('id'):
user = User.filter(User.id == payload.get('id')).first()
if user:
user.active = False
user.insert()
safe_commit()
else:
return_value = failure('That user does not exist.')
else:
return_value = failure('You cannot delete the current user.')
return jsonify(return_value)
def post_login():
payload = get_payload(request)
user = User.filter(User.email == payload.get('email')).first()
if user:
if check_password_hash(user.password, payload['password']):
session['userid'] = user.id
next_url = request.args.get('next', '')
if next_url:
return redirect(next_url)
else:
return redirect(url_for('admin'))
else:
flash("Incorrect password")
else:
flash("Invalid user")
return redirect(url_for('login'))
def admin_users_list():
users = User.filter(User.active == True).all()
return render_admin('users_list.html', users=users, content_type="Pages")
