def login(): # 如果已登录,重定向回到主页 if current_user.is_authenticated: return redirect(url_for('blog.index')) form = LoginForm() if form.validate_on_submit(): username = form.username.data password = form.password.data remember = form.remember.data admin = Admin.query.filter( Admin.username == username).first() # 返回查询的第一条记录 if admin: if admin.validate_password(password): login_user(admin, remember) # 登入用户 ls_message = "欢迎回来" if current_user.is_superadmin: ls_message = ls_message + (",超级管理员:%s" % current_user.name) elif current_user.is_admin: ls_message = ls_message + (",管理员:%s" % current_user.name) else: ls_message = ls_message + (",用户:%s" % current_user.name) flash(ls_message, 'info') return redirect_back() flash("密码错误", 'warning') else: flash("用户名错误") return render_template('login/login.html', form=form)
def approve_comment(comment_id): comment = Comment.query.get_or_404(comment_id) post = Post.query.filter_by(id=comment.post_id_r).first() comment.reviewed = True comment.post = post db.session.commit() flash('评论已通过.', 'success') return redirect_back()
def set_comment(post_id): post = Post.query.get_or_404(post_id) if post.can_comment: post.can_comment = False flash('已关闭评论.', 'success') else: post.can_comment = True flash('已打开评论.', 'success') db.session.commit() return redirect_back()
def login(): if current_user.is_authenticated: return redirect(url_for('blog.index')) form = LoginForm() if form.validate_on_submit(): password = form.password.data remember = form.remember.data admin = Admin.query.filter_by(email=form.email.data.lower()).first() if admin: if admin.validate_password(password): login_user(admin, remember) flash('欢迎回来.', 'info') return redirect_back() flash('密码不正确.', 'warning') else: flash('无此用户.', 'warning') return render_template('auth/login.html', form=form)
def register(): form = RegisterForm() if form.validate_on_submit(): if not Admin.query.filter_by(username=form.username.data).first( ) or not Admin.query.filter_by(name=form.name.data).first(): admin = Admin( username=form.username.data, name=form.name.data, blog_sub_title=form.blog_sub_title.data, blog_title=form.blog_title.data, ) admin.set_password(form.password.data) admin.set_password(form.superword.data) db.session.add(admin) db.session.commit() flash("注册成功", "success") else: flash("用户名或昵称已被占用", "info") return redirect_back() return render_template("login/register.html", form=form)
def login(): # 如果已登录,重定向回到主页 if current_user.is_authenticated: return redirect(url_for('blog.index')) form = LoginForm() if form.validate_on_submit(): username = form.username.data password = form.password.data remember = form.remember.data admin = Admin.query.first() # 返回查询的第一条记录 if admin: if username == admin.username and admin.validate_password( password): login_user(admin, remember) # 登入用户 flash('欢迎回来!', 'info') return redirect_back() flash("用户名或密码错误", 'warning') else: flash("没有管理员账户") return render_template('login/login.html', form=form)
def logout(): logout_user() flash('注销成功!', 'info') return redirect_back()
def delete_comments(comment_id): comment = Comment.query.get_or_404(comment_id) db.session.delete(comment) db.session.commit() flash('评论已删除.', 'success') return redirect_back()
def approve_comments(comment_id): comment = Comment.query.get_or_404(comment_id) comment.reviewed = True db.session.commit() flash('评论已读', 'success') return redirect_back()
def delete_post(post_id): post = Post.query.get_or_404(post_id) db.session.delete(post) db.session.commit() flash('文章已删除.', 'success') return redirect_back()