Пример #1
0
def new_user():
    """
    a client can register a new user with a POST request to /api/users. The
    body of the request needs to be a JSON object that has username and
    password fields
    """
    username = request.json.get('username')
    password = request.json.get('password')
    if username is None or password is None:
        abort(400)    # missing arguments
    if User.query.filter_by(username=username).first() is not None:
        abort(400)    # existing user
    user = User(username=username)
    user.hash_password(password)
    db.session.add(user)
    db.session.commit()
    return (jsonify({'username': user.username}), 201,
            {'Location': url_for('api.get_user', id=user.id, _external=True)})
Пример #2
0
def new_user():
    """
    a client can register a new user with a POST request to /api/users. The
    body of the request needs to be a JSON object that has username and
    password fields
    """
    username = request.json.get('username')
    password = request.json.get('password')
    if username is None or password is None:
        abort(400)  # missing arguments
    if User.query.filter_by(username=username).first() is not None:
        abort(400)  # existing user
    user = User(username=username)
    user.hash_password(password)
    db.session.add(user)
    db.session.commit()
    return (jsonify({'username': user.username}), 201, {
        'Location': url_for('api.get_user', id=user.id, _external=True)
    })
Пример #3
0
def verify_password(username_or_token, password):
    """
    takes a plain password as argument and returns True if the password is
    correct or False if not
    """
    # first try to authenticate by token
    user = User.verify_auth_token(username_or_token)
    if not user:
        # try to authenticate with username/password
        user = User.query.filter_by(username=username_or_token).first()
        if not user or not user.verify_password(password):
            return False
    g.user = user
    return True
Пример #4
0
def verify_password(username_or_token, password):
    """
    takes a plain password as argument and returns True if the password is
    correct or False if not
    """
    # first try to authenticate by token
    user = User.verify_auth_token(username_or_token)
    if not user:
        # try to authenticate with username/password
        user = User.query.filter_by(username=username_or_token).first()
        if not user or not user.verify_password(password):
            return False
    g.user = user
    return True