def post(self, *args, **kwargs):
data = json.loads(self.request.body)
account = data.get("account")
pwd = data.get("pwd")
user = User()
try:
token = user.login(account, pwd)
except Exception as e:
logging.error("------登录异常:{}-------".format(e.message))
self.write_resp400(ErrMsg)
if not token:
return self.write_resp400(user.login_err_msg)
self.session[token] = {"account": account}
self.set_cookie("token", token)
return self.write_resp200(token)
def user():
"""
exposes:
http://..../[app]/default/user/login
http://..../[app]/default/user/logout
http://..../[app]/default/user/register
http://..../[app]/default/user/profile
http://..../[app]/default/user/retrieve_password
http://..../[app]/default/user/change_password
use @auth.requires_login()
@auth.requires_membership('group name')
@auth.requires_permission('read','table name',record_id)
to decorate functions that need access control
"""
from handlers.user import User
user = User()
return dict(auth=user.auth, form=user.auth())
def user():
from handlers.user import User
user = User()
return dict(auth=user.auth, form=user.auth())
def user():
from handlers.user import User
user = User()
return dict(auth=user.auth, form=user.auth())
