def reauth():
form = ReauthForm(next=request.args.get('next'))
if request.method == 'POST':
user, authenticated = User.authenticate(current_user.name,
form.password.data)
if user and authenticated:
confirm_login()
current_app.logger.debug('reauth: %s' % session['_fresh'])
flash(_('Reauthenticated.'), 'success')
return redirect('/change_password')
flash(_('Password is wrong.'), 'error')
return render_template('reauth.html', form=form)
def auth():
remember_me = False
if request.method == 'POST':
user, authenticated = User.authenticate(db.session.query,
request.form['username'], request.form['password'])
if 'remember' in request.form:
remember_me = True
if authenticated:
login_user(user, remember = remember_me)
##flash('You were logged in')
return redirect(url_for('index', name=user.uname))
else:
flash(gettext('Invalid username or password'))
return render_template('login.html')
def login():
form = LoginForm(login=request.args.get('login', None),
next=request.args.get('next', None))
if form.validate_on_submit():
user, authenticated = User.authenticate(form.login.data,
form.password.data)
if user and authenticated:
remember = request.form.get('remember') == 'y'
if login_user(user, remember=remember):
flash("Logged in!", 'success')
return redirect(form.next.data or url_for('search.index'))
else:
flash(_('Sorry, invalid login'), 'error')
return render_template('login.html', form=form)
