def login(): errors = None form = AdminLoginForm(request.form) if request.method == 'POST' and form.validate(): admin = get_admin(g.db, form.email.data) if valid_login(admin, form.email.data, form.password.data): login_user(admin) return redirect(url_for('hunts')) flash('Invalid email and password combination') else: errors = form.errors return make_response( render_template('homepage.html', form=form, display_login_link=True))
def login(): errors = None form = AdminLoginForm(request.form) if request.method == 'POST' and form.validate(): admin = get_admin(g.db, form.email.data) if valid_login(admin, form.email.data, form.password.data): login_user(admin) return redirect(url_for('hunts')) flash('Invalid email and password combination') else: errors = form.errors return make_response(render_template( 'homepage.html', form=form, display_login_link=True))
def admin_login(): form = AdminLoginForm() if "admin" in session: return redirect(url_for("admin")) if request.method == "POST": if form.validate() == False: flash("invalid credentials") return render_template("admin/login.html", form=form) else: session["admin"] = form.email.data flash("Anda sudah berhasil masuk, selamat!", category="info") return redirect(request.args.get("next") or url_for("admin")) elif request.method == "GET": return render_template("/admin/login.html", form=form)
def admin_login(): form = AdminLoginForm(request.form) if request.method == 'POST': if form.validate(): username = form.name.data.title() password = form.password.data user = User.query.filter_by(name=username).first() if current_user.name == username: if password == 'adminuser': if user.is_admin is False or user.is_admin is None: user.is_admin = True db.session.commit() login_user(user) return redirect(url_for('admin')) else: # TODO: ERROR MESSAGE return 'admin password fail' # TODO: ERROR MESSAGE return 'please logout and try again' else: return 'invalid data, please retry' name = current_user.name return render_template('adminLogin.html', form=form, name=name)