def add_admin():
if 'id' in session and 'username' in session and 'superAdmin' in session:
if session['superAdmin'] != True:
return redirect(url_for('admin'))
if request.is_xhr:
if (request.form is not None
and request.form['username'].strip() != ""
and request.form['password'].strip() != ""):
m = hashlib.md5()
result = {}
username = request.form['username']
m.update(request.form['password'].encode('utf-8'))
password = m.hexdigest()
superAdmin = True if request.form[
'superAdmin'] == '1' else False
try:
admin = Admin(username=username,
password=password,
superAdmin=superAdmin)
database = models.models.Session()
database.add(admin)
database.commit()
result['message'] = 'success'
result['username'] = request.form['username']
except sqlalchemy.exc.IntegrityError:
result['message'] = 'username already axist'
return jsonify(result)
return render_template('admin_page/add.html')
return redirect(url_for('login'))
def AddAdmin(name, password, email):
# TODO: Validate the fields (check valid, no-duplicates).
pw_hash = hashes.make_pw_hash(name, password)
a = Admin(name=name, pw_hash=pw_hash, email=email)
a.active = True
a.put()
