def login(): mobile = request.form.get('mobile') passwd = request.form.get('passwd') user = UserInfo().query.filter_by(mobile=mobile).first() if user and user.check_pwd(passwd): session['user_id'] = user.id return jsonify(res=2, nick_name=user.nick_name, avatar=user.avatar) return jsonify(res=1)
def user_pass_info(): if request.method == 'GET': return render_template('news/user_pass_info.html') passwd_old = request.form.get('passwd_old') passwd_new = request.form.get('passwd_new') user_id = session.get('user_id') user = UserInfo().query.get(user_id) if user.check_pwd(passwd_old): user.password = passwd_new db.session.commit() del session['user_id'] return jsonify(res=1) return jsonify(res=2)