def login():
form = LoginForm()
if form.validate_on_submit():
name = form.username.data
password = form.password.data
admin = Admin.query.filter_by(name=name).first()
if admin and admin.verify_password(password):
# session信息的保存
session['admin_id'] = admin.id
session['admin'] = admin.name
flash("管理员%s登录成功" % (admin.name))
remote_ip = request.remote_addr
# 将登录信息写到日志中;
adminlog = Adminlog(admin_id=admin.id,
ip=remote_ip,
area='xxx内网IP')
db.session.add(adminlog)
db.session.commit()
# 从index蓝图里面寻找index函数;
return redirect(url_for('admin.index'))
else:
flash("管理员登录失败")
return redirect(url_for('admin.login'))
return render_template('admin/login.html', form=form)
def login():
form = LoginForm()
print('开始登陆-验证:')
print(form.validate_on_submit())
if form.validate_on_submit():
name = form.username.data
password = form.password.data
admin = Admin.query.filter_by(name=name).first()
if admin and admin.verify_password(password):
# 存储 session 信息
session['admin_id'] = admin.id
session['admin'] = admin.name
remote_ip = request.remote_addr
# 存储登录信息到登录日志
adminlog = AdminLog(admin_name=admin.name, ip=remote_ip)
db.session.add(adminlog)
db.session.commit()
print('管理员登录成功!')
return redirect(url_for('admin.index'))
else:
flash('帐号或密码错误')
print(form.errors)
return render_template('admin/login.html', form=form)
def pwd():
form = PwdForm()
if form.validate_on_submit():
# 获取当前登录用户的密码
admin = Admin.query.filter_by(name=session.get('admin')).first()
# 判断用户的旧密码是否正确
if admin.verify_password(form.old_pwd.data):
# ********数据库里面的是password
admin.password = generate_password_hash(form.new_pwd.data)
db.session.add(admin)
db.session.commit()
flash("密码更新成功")
else:
flash("旧密码错误, 请重新输入")
return redirect(url_for('admin.pwd'))
return render_template('admin/pwd.html', form=form)