def login():
errors = None
form = AdminLoginForm(request.form)
if request.method == 'POST' and form.validate():
admin = get_admin(g.db, form.email.data)
if valid_login(admin, form.email.data, form.password.data):
login_user(admin)
return redirect(url_for('hunts'))
flash('Invalid email and password combination')
else:
errors = form.errors
return make_response(
render_template('homepage.html', form=form, display_login_link=True))
def login():
errors = None
form = AdminLoginForm(request.form)
if request.method == 'POST' and form.validate():
admin = get_admin(g.db, form.email.data)
if valid_login(admin, form.email.data, form.password.data):
login_user(admin)
return redirect(url_for('hunts'))
flash('Invalid email and password combination')
else:
errors = form.errors
return make_response(render_template(
'homepage.html', form=form, display_login_link=True))
def admin_login():
form = AdminLoginForm()
if "admin" in session:
return redirect(url_for("admin"))
if request.method == "POST":
if form.validate() == False:
flash("invalid credentials")
return render_template("admin/login.html", form=form)
else:
session["admin"] = form.email.data
flash("Anda sudah berhasil masuk, selamat!", category="info")
return redirect(request.args.get("next") or url_for("admin"))
elif request.method == "GET":
return render_template("/admin/login.html", form=form)
def admin_login():
form = AdminLoginForm(request.form)
if request.method == 'POST':
if form.validate():
username = form.name.data.title()
password = form.password.data
user = User.query.filter_by(name=username).first()
if current_user.name == username:
if password == 'adminuser':
if user.is_admin is False or user.is_admin is None:
user.is_admin = True
db.session.commit()
login_user(user)
return redirect(url_for('admin'))
else:
# TODO: ERROR MESSAGE
return 'admin password fail'
# TODO: ERROR MESSAGE
return 'please logout and try again'
else:
return 'invalid data, please retry'
name = current_user.name
return render_template('adminLogin.html', form=form, name=name)
