def login():
# 如果已登录,重定向回到主页
if current_user.is_authenticated:
return redirect(url_for('blog.index'))
form = LoginForm()
if form.validate_on_submit():
username = form.username.data
password = form.password.data
remember = form.remember.data
admin = Admin.query.filter(
Admin.username == username).first() # 返回查询的第一条记录
if admin:
if admin.validate_password(password):
login_user(admin, remember) # 登入用户
ls_message = "欢迎回来"
if current_user.is_superadmin:
ls_message = ls_message + (",超级管理员:%s" % current_user.name)
elif current_user.is_admin:
ls_message = ls_message + (",管理员:%s" % current_user.name)
else:
ls_message = ls_message + (",用户:%s" % current_user.name)
flash(ls_message, 'info')
return redirect_back()
flash("密码错误", 'warning')
else:
flash("用户名错误")
return render_template('login/login.html', form=form)
def approve_comment(comment_id):
comment = Comment.query.get_or_404(comment_id)
post = Post.query.filter_by(id=comment.post_id_r).first()
comment.reviewed = True
comment.post = post
db.session.commit()
flash('评论已通过.', 'success')
return redirect_back()
def set_comment(post_id):
post = Post.query.get_or_404(post_id)
if post.can_comment:
post.can_comment = False
flash('已关闭评论.', 'success')
else:
post.can_comment = True
flash('已打开评论.', 'success')
db.session.commit()
return redirect_back()
def login():
if current_user.is_authenticated:
return redirect(url_for('blog.index'))
form = LoginForm()
if form.validate_on_submit():
password = form.password.data
remember = form.remember.data
admin = Admin.query.filter_by(email=form.email.data.lower()).first()
if admin:
if admin.validate_password(password):
login_user(admin, remember)
flash('欢迎回来.', 'info')
return redirect_back()
flash('密码不正确.', 'warning')
else:
flash('无此用户.', 'warning')
return render_template('auth/login.html', form=form)
def register():
form = RegisterForm()
if form.validate_on_submit():
if not Admin.query.filter_by(username=form.username.data).first(
) or not Admin.query.filter_by(name=form.name.data).first():
admin = Admin(
username=form.username.data,
name=form.name.data,
blog_sub_title=form.blog_sub_title.data,
blog_title=form.blog_title.data,
)
admin.set_password(form.password.data)
admin.set_password(form.superword.data)
db.session.add(admin)
db.session.commit()
flash("注册成功", "success")
else:
flash("用户名或昵称已被占用", "info")
return redirect_back()
return render_template("login/register.html", form=form)
def login():
# 如果已登录,重定向回到主页
if current_user.is_authenticated:
return redirect(url_for('blog.index'))
form = LoginForm()
if form.validate_on_submit():
username = form.username.data
password = form.password.data
remember = form.remember.data
admin = Admin.query.first() # 返回查询的第一条记录
if admin:
if username == admin.username and admin.validate_password(
password):
login_user(admin, remember) # 登入用户
flash('欢迎回来!', 'info')
return redirect_back()
flash("用户名或密码错误", 'warning')
else:
flash("没有管理员账户")
return render_template('login/login.html', form=form)
def logout():
logout_user()
flash('注销成功!', 'info')
return redirect_back()
def delete_comments(comment_id):
comment = Comment.query.get_or_404(comment_id)
db.session.delete(comment)
db.session.commit()
flash('评论已删除.', 'success')
return redirect_back()
def approve_comments(comment_id):
comment = Comment.query.get_or_404(comment_id)
comment.reviewed = True
db.session.commit()
flash('评论已读', 'success')
return redirect_back()
def delete_post(post_id):
post = Post.query.get_or_404(post_id)
db.session.delete(post)
db.session.commit()
flash('文章已删除.', 'success')
return redirect_back()