def login():
form = LoginUser(CSRF_ENABLED = True)
if form.validate_on_submit():
email = form.email.data
logged_user = Users.query.filter_by(email=email).first()
if logged_user == None:
flash('Email provided is not registered')
return redirect(url_for('public_view.login'))
password = form.password.data
if check_password_hash(logged_user.password, password):
remember = form.remember.data
login_user(logged_user, remember=remember)
return redirect(url_for('user_view.profile'))
else :
flash('Password incorrect')
return redirect(url_for('public_view.login'))
return render_template('public/login.html', form=form)
def oauth_callback(provider):
if g.user is not None and g.user.is_authenticated:
return redirect(url_for('index'))
oauth = OAuthSignIn.get_provider(provider)
social_id, username, email = oauth.callback()
if social_id is None:
flash('Authentication failed.')
return redirect(url_for('index'))
user = User.query.filter_by(social_id=social_id).first()
if not user:
# this is to be modified later on as the systems becomes sugestive not
# generative
nickname = username
username = User.make_unique_username(username)
user = User(social_id=social_id,
username=username,
nickname=nickname,
email=email)
db.session.add(user)
db.session.commit()
# make the user follow him/herself
db.session.add(user.follow(user))
db.session.commit()
login_user(user, True)
return redirect(url_for('index'))
def login():
if request.method == 'GET':
return render_template('login.html')
nombreusuario = request.form['nombreusuario']
contrasena = request.form['contrasena']
registered_user = User.query.filter_by(nombreusuario=nombreusuario,contrasena=contrasena).first()
if registered_user is None:
return redirect(url_for('login'))
if registered_user.nombreusuario == 'berta':
login_user(registered_user)
return redirect(request.args.get('next') or url_for('index'))
login_user(registered_user)
return redirect(request.args.get('next') or url_for('index'))
def login():
if current_user.is_authenticated == True:
return redirect(url_for('auth.dashboard'))
form = LoginForm()
if request.method == 'POST':
if form.validate():
check_user = User.objects(username=form.username.data).first()
if check_user:
if check_password_hash(check_user['password'], form.password.data):
login_user(check_user)
return redirect(url_for('auth.dashboard'))
return render_template('auth/login.html', form=form)
def access(nome, password):
engine = db.create_engine('sqlite:///easyFindDB.db')
connection = engine.connect()
metadata = db.MetaData()
emp = db.Table('venditore', metadata, autoload=True, autoload_with=engine)
query = db.select([emp.columns.nome, emp.columns.password
]).where(db.and_(emp.columns.nome == nome.upper()))
ResultProxy = connection.execute(query)
ResultSet = ResultProxy.fetchall()
if (len(ResultSet) == 1):
if app.hashing.check_value(ResultSet[0][1], password, salt='geo'):
app.login_user(app.User(nome))
return redirect('/Home_page')
return render_template('index.html', error={'value': 'error_login'})
def register():
form = RegisterForm()
if request.method == 'POST':
if form.validate():
existing_user = User.objects(username=form.username.data).first()
if existing_user is None:
username = form.username.data
debt = 0.0
own = 0.0
hashpass = generate_password_hash(form.password.data, method='sha256')
user = User(username=username, password=hashpass, own=own, debt=debt)
user.save()
login_user(user)
return redirect(url_for('auth.dashboard'))
return render_template('auth/register.html', form=form)
def index():
forms = LoginForm()
if forms.validate_on_submit():
print(forms.email.data, forms.senha.data)
user = User.query.filter_by(email=forms.email.data).first()
if user is None or not user.verifica_senha(forms.senha.data):
flash("Verifique email ou senha!!!", 'danger')
return redirect(url_for('.index'))
print(user.nome)
login_user(user, remember=True)
return redirect(url_for('form.listar'))
else:
print(forms.errors)
return render_template('login.html', form=forms)
def login():
if request.method =='POST':
user = Admin.query.filter_by(username = request.form['username']).first()
password = request.form['password']
if user:
if check_password_hash(user.password , password):
login_user(user)
return redirect("/admin")
else:
flash('Invalid Username or Password.')
return redirect("/login")
else:
flash('Invalid Username or Password.')
return redirect("/login")
else:
return render_template('/admin/login.html')
def login():
if request.method == 'GET':
return render_template('login.html')
else:
email = request.form.get('email')
password = request.form.get('password')
remember = True
user = models.Client.query.filter_by(email=email).first()
if not user and not check_password_hash(user.password, password):
# flash('Please check your login details and try again.')
return redirect(url_for('login'))
login_user(user, remember=remember)
return redirect(url_for('index'))
def login():
next = request.args.get('next')
if current_user is not None and current_user.is_authenticated:
return redirect(next or url_for('index'))
form = LoginForm()
if form.validate_on_submit():
user = User.query.filter(User.email==form.email.data).first()
if user is not None and bcrypt.check_password_hash(user.password, form.password.data):
login_user(user)
identity_changed.send(current_app._get_current_object(),
identity=Identity(user.get_id()))
flash('Logged in successfully', 'info')
return redirect(next or url_for('index'))
else:
flash('Email and/or password are incorrect', 'danger')
return render_template('login.jade', form=form)
return render_template('login.jade', form=form)
def Login():
if current_user.is_authenticated:
return redirect(url_for('main.Home'))
form = LoginForm(request.form)
if form.validate():
try:
user = User.query.filter_by(username=form.username.data).first()
if user and bcrypt.check_password_hash(user.password,
form.password.data):
login_user(user)
return redirect(url_for("main.Home"))
else:
flash("Invalid Password or Username, Try Again", "danger")
return redirect(url_for("User.Login"))
except:
flash(
"Invalid Credentials, Please either register or Retry with Correct Credentials",
"danger")
return render_template("login.html", form=form)
def login():
if not request.json:
abort(500) # bad request
if not 'email' in request.json:
abort(500) # bad request
if not 'password' in request.json:
abort(500) # bad request
email = request.json.get('email')
password = request.json.get('password')
user = User.query.filter_by(email=email, password=password).first()
if user is None:
return jsonify({'code': 403})
app.logger.debug(user)
login_user(user)
return jsonify({'code': 200})
def login():
redirect_if_logged_in()
form = LoginForm()
if request.method == 'POST':
if form.validate():
user = User.get_or_none(User.email == form.data['email'])
if user and check_password_hash(user.password,
form.data['password']):
# login_user(user, remember=form.remember.data)
login_user(user)
next_page = request.args.get('next')
flash("You've been logged in!", "success")
if next_page:
return redirect(url_for(next_page))
else:
return redirect(url_for('users.index', current_user=user))
else:
flash("Login unsuccessful, Please check email and password",
"danger")
return render_template('login.html', login_form=form)
def insert(nome, password, citta, indirizzo, lat, long):
engine = db.create_engine('sqlite:///easyFindDB.db')
connection = engine.connect()
metadata = db.MetaData()
emp = db.Table('venditore', metadata, autoload=True, autoload_with=engine)
query = db.select([emp.columns.nome
]).where(emp.columns.nome == nome.upper())
ResultProxy = connection.execute(query)
ResultSet = ResultProxy.fetchall()
if (len(ResultSet) > 0):
return render_template('index.html', error={'value': 'error_register'})
val_hash = app.hashing.hash_value(password, salt='geo')
query2 = db.insert(emp).values(nome=nome.upper(),
password=val_hash,
citta=citta.upper(),
indirizzo=indirizzo.upper(),
lat=lat,
long=long)
connection.execute(query2)
app.login_user(app.User(nome))
return redirect('/Home_page')
def login():
form = LoginForm()
if request.method == "POST":
if form.validate_on_submit():
e_mail = form.email.data
password = form.password.data
registered_user = Users.query.filter_by(email=e_mail,
password=password).first()
if registered_user is None:
err = "Email or Password is invalid"
rendered_html = render_template("login.html",
err=err,
form=form,
title='Register')
return html_minify(rendered_html)
session['logged_in'] = True
session['user'] = email
login_user(registered_user, remember=form.remember.data)
return redirect(request.args.get('next') or url_for('home'))
rendered_html = render_template("login.html", form=form, title='Register')
return html_minify(rendered_html)
def signup():
form = AddUser(CSRF_ENABLED = True)
if form.validate_on_submit():
name = form.name.data
surname = form.surname.data
email = form.email.data
password = generate_password_hash(form.password.data, method='sha256')
image_filename = photos.save(form.image.data)
image_url = 'profile_images/{}'.format(image_filename)
chk_email = Users.query.filter_by(email=email).first()
if chk_email:
flash('Email already used!')
return redirect(url_for('public_view.signup'))
newUser = Users(name, surname, email, password, image_url, role=0)
db.session.add(newUser)
db.session.commit()
login_user(newUser)
return redirect(url_for('user_view.profile'))
return render_template('public/signup.html', form=form)
def student_login():
if request.method == "POST":
student_id = request.form['student_id']
student_password = request.form['student_password']
user = Students_data.query.filter_by(student_id=student_id).first()
subject = user.subjects
splitted_subjects = subject.split(",")
sub = len(splitted_subjects)
print(sub)
if user and bcrypt.check_password_hash(user.student_password,
student_password):
if user.payment_status is True:
login_user(user)
payment_status = user.payment_status
msg = flash('You are now logged in..', 'success')
return redirect(
url_for('student_dashboard', msg=msg, user=user, sub=sub))
elif sub == 2:
login_user(user)
msg = flash(
'Your payment is pending, please pay for accessing videos',
'danger')
return redirect(url_for('thankyou2', msg=msg, user=user))
else:
login_user(user)
msg = flash(
'Your payment is pending, please pay for accessing videos',
'danger')
return redirect(url_for('thankyou1', msg=msg, user=user))
else:
flash('Login Unsuccessful. Please check Student_id and password',
'danger')
return render_template('student_login.html')
def test_login_user_invalid_email(self):
"""Test login user with invalid email fails"""
app.register_user('ton1', '*****@*****.**', 'pass')
with self.assertRaises(ValueError) as error:
app.login_user('*****@*****.**', 'invalidpass')
self.assertEqual('User does not exist', str(error.exception))
def test_login_user_invalid_password(self):
"""Test user login with invalid password fails"""
app.register_user('ton', '*****@*****.**', 'pass')
with self.assertRaises(ValueError) as error:
app.login_user('*****@*****.**', 'invalidpass')
self.assertEqual('Invalid credentials', str(error.exception))
def test_login_user(self):
"""Test user login"""
new_user = app.register_user('tony2', '*****@*****.**', 'pass')
app.login_user('*****@*****.**', 'pass')
self.assertTrue(new_user.authenticated)
def make_main():
app.connect_to_db()
email_addy = request.args.get("email")
current_user = app.login_user(email_addy)
html = render_template("main_page.html", user=current_user)
return html
def login():
form = LoginForm()
if request.method == 'POST':
if g.user is not None and g.user.is_authenticated:
return redirect(url_for('index'))
if form:
username = form.username.data
password = form.password.data
remember_me = form.remember_me.data
try:
userObj = db.session.query(
models.User).filter_by(username=username).first()
passval = userObj.check_password(password)
if passval:
app.logger.info("User %s logged in" % userObj.username)
login_user(userObj, remember=remember_me)
g.current_user = userObj
flash('You have logged in successfully')
return redirect(url_for('index'))
except AttributeError:
''' If LDAP auth is enabled, check the directory '''
try:
dn = search_ldap(basedn=config.ldap_base_dn,
username=username)
if dn:
sesh = db.session()
check_credentials(user=dn, plaintext_pw=password)
try:
user_object = login_from_dn(sesh, dn)
login_user(user_object)
except AttributeError:
flash(
"You entered correct LDAP credentials, "
"but this user is not authorized to access any pages. "
"Check your LDAP group membership and MADST configuration."
)
return render_template(
'login.html',
title='Sign In',
version_number=version_number,
form=form)
g.current_user = user_object
flash("Directory Login successful.")
return redirect(url_for('index'))
except LdapBindError:
flash("Incorrect username or password.")
app.logger.info(
"User {} attempted domain login with incorrect information."
.format(username))
except LdapConnectError:
flash(
"The Directory server failed to respond, please contact your administrator."
)
app.logger.info(
"User {} loookup on directory server {} failed.".
format(username, config.ldap_server))
flash("Account information not found or password incorrect.")
return render_template('login.html',
title='Sign In',
version_number=version_number,
form=form)
# app.logger.info('User {0} attempted to login with incorrect password'.format(form.username.data))
# flash("Incorrect password")
else:
app.logger.info(
'User attempted to login with unknown username {0}'.format(
form.username.data))
elif request.method == 'GET':
return render_template('login.html',
title='Sign In',
version_number=version_number,
form=form)
