def index(): if request.method == "GET": return render_template('index.html') username = request.form["username"] password = request.form["password"] if not (utils.isUsernameValid(username) and utils.isPasswordValid(password)): return render_template("index.html", Alert="Usuario y/o contraseña incorrectas.") user = CRUD.buscar_un_usuario(username) if user is None: flash("Usuario y/o contraseña incorrectas.") return render_template("index.html", Alert="Usuario y/o contraseña incorrectas.") elif user[1] == username and check_password_hash(user[3], password): if user[5] == 1 or user[5] == 'True': create_session(user) resp = None if user[6] == 'True' or user[6] == 1: resp = make_response(redirect(url_for('admin'))) else: resp = make_response(redirect(url_for('cashier'))) resp.set_cookie('username', username) userID = str(user[0]) resp.set_cookie('userID', userID) return resp return render_template( "index.html", Alert="Usuario deshabilitado, contacte al administrador.") return render_template("index.html", Alert="Usuario y/o contraseña incorrectas.")
def get_modify_users(): if request.method == 'GET': users = CRUD.leer_usuarios() return render_template("admin-panel-users-edit.html", users=users, user="") else: user = CRUD.buscar_un_usuario(request.form['username']) return render_template("admin-panel-users-edit.html", users="", user=user)