def login():
if request.method == 'GET':
return render_template('login.html')
if request.method == 'POST':
form_username = request.form.get('username', "")
form_password = request.form.get('password', "")
if form_username == "" or form_password == "":
return "Error! You have to pass username and password! \n"
result, success = database.get_user(form_username)
if not success:
return "Login failed! \n"
if result is None:
return "Login failed! \n"
password = Password(form_password, form_username, result[2])
if not password.validate_password(result[0]):
return "Login failed! \n"
cookie_dic = {"permissao": result[1], "username": form_username}
cookie = json.dumps(cookie_dic)
hash_cookie = hashlib.sha256(cookie.encode('utf-8')).hexdigest()
cookie_done = '.'.join([cookie, hash_cookie])
cookie_done = base64.b64encode(str(cookie_done).encode("utf-8"))
resp = make_response("Logged in!")
resp.set_cookie("sessionId", cookie_done)
return resp
def login():
if request.method == 'POST':
username = request.form.get('username').encode('utf-8')
psw = Password(request.form.get('password').encode('utf-8'))
user_password, success = database.get_user_password(username)
if not success or user_password == None or not psw.validate_password(str(user_password[0])):
flash("Usuario ou senha incorretos", "danger")
return render_template('login.html')
session['username'] = username
return redirect('/home')
else:
return render_template('login.html')
def login():
if request.method == 'POST':
username = request.form.get('username')
psw = Password(request.form.get('password').encode('utf-8'))
user_password, success = database.get_user_password(username)
if not success or user_password == None or not psw.validate_password(
user_password[0]):
error('gossip', 'User not found or wrong password',
session.get('username'))
flash('User not found or wrong password', 'danger')
return render_template('login.html')
session['username'] = username
return redirect('/gossip')
else:
return render_template('login.html')
def login():
if request.method == 'POST':
form_username = request.form.get('username')
form_password = request.form.get('password')
result, success = database.get_user(form_username)
if not success:
return "Login falhou!"
if result == None:
return "Login falhou!"
password = Password(form_password, form_username, result[2])
if not password.validate_password(result[0]):
return "Login falhou!"
cookie_dic = {"permissao": result[1], "username": form_username}
cookie = json.dumps(cookie_dic)
hash_cookie = hashlib.sha256(cookie.encode('utf-8')).hexdigest()
cookie_done = '.'.join([cookie, hash_cookie])
cookie_done = base64.b64encode(str(cookie_done).encode("utf-8"))
resp = make_response(redirect("/user"))
resp.set_cookie("sessionId", cookie_done)
return resp
