def register():
form = RegisterForm(request.form)
if form.validate_on_submit():
user = mongodb.get_user(form.username.data)
if user:
return jsonify(error(30006))
mongodb.add_user(form.fullname.data, form.email.data, form.address.data,
form.username.data, md5(form.password.data))
return jsonify(ok('/admin/'))
else:
return jsonify(error(30004))
def login():
form = LoginForm(request.form)
forget_form = ForgetForm(request.form)
reg_form = RegisterForm(request.form)
form_type = convert_str2int(request.values.get('form_type', 0))
if request.method == 'POST':
if form.validate_on_submit():
user = mongodb.get_user(form.username.data)
if user:
if user['password'] == md5(form.password.data):
# session保存登录用户名和头像
session[LOGIN_USER_ID] = str(user['_id'])
session[LOGIN_USERNAME] = form.username.data
session[LOGIN_USER_HEADER_IMAGE] = user['header_img']
return jsonify(ok('/admin/'))
else:
return jsonify(error(30001))
else:
return jsonify(error(30002))
else:
return jsonify(error(30003))
return render_template('admin/login.html', form=form, forget_form=forget_form,
reg_form=reg_form, form_type=form_type)