def delete_user(): return_value = success('The user was deleted.') payload = get_payload(request) if not g.user or g.user.id != payload.get('id'): user = User.filter(User.id == payload.get('id')).first() if user: user.delete() safe_commit() else: return_value = failure('That user does not exist.') else: return_value = failure('You cannot delete the current user.') return jsonify(return_value)
def delete_user(): return_value = success('The user was deleted.') payload = get_payload(request) if not g.user or g.user.id != payload.get('id'): user = User.filter(User.id == payload.get('id')).first() if user: user.active = False user.insert() safe_commit() else: return_value = failure('That user does not exist.') else: return_value = failure('You cannot delete the current user.') return jsonify(return_value)
def post_login(): payload = get_payload(request) user = User.filter(User.email == payload.get('email')).first() if user: if check_password_hash(user.password, payload['password']): session['userid'] = user.id next_url = request.args.get('next', '') if next_url: return redirect(next_url) else: return redirect(url_for('admin')) else: flash("Incorrect password") else: flash("Invalid user") return redirect(url_for('login'))
def admin_users_list(): users = User.filter(User.active == True).all() return render_admin('users_list.html', users=users, content_type="Pages")