def post(self):
self.set_header("Content-Type", "application/json")
oldPassword = self.get_argument("oldPassword", '')
newPassword = self.get_argument("newPassword", '')
newPassword2 = self.get_argument("newPassword2", '')
if oldPassword and newPassword and newPassword2:
if newPassword == newPassword2:
username = self.get_secure_cookie('username')
old_user = Users.get_by_name_or_email(username)
oldPassword = md5(
oldPassword.encode('utf-8') +
old_user.salt.encode('utf-8')).hexdigest()
if oldPassword == old_user.password:
Users.update(username, None, newPassword)
user = Users.get(old_user.id)
self.set_secure_cookie('userpw',
user.password,
expires_days=1)
self.write(escape.json.dumps("OK"))
return
else:
self.write(escape.json.dumps("更新用户失败!"))
pass
self.write(escape.json.dumps("请认真填写必填项!"))
return
def post(self):
self.set_header("Content-Type", "application/json")
oldPassword = self.get_argument("oldPassword", '')
newPassword = self.get_argument("newPassword", '')
newPassword2 = self.get_argument("newPassword2", '')
if oldPassword and newPassword and newPassword2:
if newPassword == newPassword2:
username = self.get_secure_cookie('username')
old_user = Users.get_by_name_or_email(username)
oldPassword = md5(oldPassword.encode('utf-8') + old_user.salt.encode('utf-8')).hexdigest()
if oldPassword == old_user.password:
Users.update(username, None, newPassword)
user = Users.get(old_user.id)
self.set_secure_cookie('userpw', user.password, expires_days=1)
self.write(escape.json.dumps("OK"))
return
else:
self.write(escape.json.dumps("更新用户失败!"))
pass
self.write(escape.json.dumps("请认真填写必填项!"))
return
def post(self):
self.set_header("Content-Type", "application/json")
try:
name_or_email = self.get_argument("name_or_email").encode('utf-8')
password = self.get_argument("password").encode('utf-8')
captcha = self.get_argument("captcha").encode('utf-8')
except:
self.write(json.dumps("用户名、密码、验证码均为必填项!"))
return
if self.get_secure_cookie("captcha") != captcha:
self.write(json.dumps("验证码填写错误或用户不存在!"))
return
has_user = Users.get_by_name_or_email(name_or_email)
if has_user and has_user.status == 1 and has_user.deleted == 0:
password += has_user.salt
password = md5(password.encode('utf-8')).hexdigest()
if password == has_user.password:
self.set_secure_cookie('username',
has_user.user_name,
expires_days=365)
self.set_secure_cookie('user_id',
str(has_user.user_id),
expires_days=365)
self.set_secure_cookie('email',
has_user.email,
expires_days=365)
self.set_secure_cookie('password', password, expires_days=365)
self.write(json.dumps("OK"))
return
else:
self.write(json.dumps("权限验证失败或帐户不可用!"))
return
else:
self.write(json.dumps("验证码填写错误或用户不存在!"))
return
