def index():
if request.method == "GET":
return render_template('index.html')
username = request.form["username"]
password = request.form["password"]
if not (utils.isUsernameValid(username)
and utils.isPasswordValid(password)):
return render_template("index.html",
Alert="Usuario y/o contraseña incorrectas.")
user = CRUD.buscar_un_usuario(username)
if user is None:
flash("Usuario y/o contraseña incorrectas.")
return render_template("index.html",
Alert="Usuario y/o contraseña incorrectas.")
elif user[1] == username and check_password_hash(user[3], password):
if user[5] == 1 or user[5] == 'True':
create_session(user)
resp = None
if user[6] == 'True' or user[6] == 1:
resp = make_response(redirect(url_for('admin')))
else:
resp = make_response(redirect(url_for('cashier')))
resp.set_cookie('username', username)
userID = str(user[0])
resp.set_cookie('userID', userID)
return resp
return render_template(
"index.html",
Alert="Usuario deshabilitado, contacte al administrador.")
return render_template("index.html",
Alert="Usuario y/o contraseña incorrectas.")
def get_modify_users():
if request.method == 'GET':
users = CRUD.leer_usuarios()
return render_template("admin-panel-users-edit.html",
users=users,
user="")
else:
user = CRUD.buscar_un_usuario(request.form['username'])
return render_template("admin-panel-users-edit.html",
users="",
user=user)
