def get(self,id): user=User.get_by_id(id) if not user: self.redirect('/user') login_user=self.get_current_user() if login_user.leves!=1: self.redirect('/user') if login_user ==user: self.redirect('/user') user.status=1 try: db_session.commit() self.redirect('/user') except: db_session.rollback() self.redirect('/user')
def post(self, id): self.user = User.get_by_id(id) password = self.get_body_argument('yuanmima') xinmima = self.get_body_argument('newpass') querenmima = self.get_body_argument('newpass_que') if not (xinmima and querenmima): self.render('person.html', user=self.user, error_message='请输入修改密码!') if encrypt(password) != self.user.password: self.render('person.html', user=self.user, error_message='原密码有误!') if xinmima != querenmima: self.render('person.html', user=self.user, error_message='新密码输入不一致!') self.user.password = encrypt(xinmima) db_session.commit() self.redirect('/logout')
def get(self, id): self.user = User.get_by_id(id) self.render('person.html', user=self.user, error_message=None)
def get_current_user(self): user_id = self.get_secure_cookie('user_id') if not user_id: return None return User.get_by_id(int(user_id))