def post(self): username = self.request.get('username') password = self.request.get('password') params = dict(username = username) user_key = db.Key.from_path('User', '{0}'.format(username)) check = db.get(user_key) if check == None: params['error_username'] = "******" self.render('login-form.html', **params) else: if security.valid_pw(username, password, check.password): self.response.headers.add_header('Set-Cookie', 'username={0}; Path=/' .format(security.make_user_cookie(username))) self.redirect('/welcome') else: params['error_username'] = "******" self.render('login-form.html', **params)
def post(self): have_error = False username = self.request.get('username') password = self.request.get('password') verify = self.request.get('verify') email = self.request.get('email') params = dict(username = username, email = email) if not functs.valid_username(username): params['error_username'] = "******" have_error = True if not functs.valid_password(password): params['error_password'] = "******" have_error = True elif password != verify: params['error_verify'] = "Your passwords didn't match." have_error = True if not functs.valid_email(email): params['error_email'] = "That's not a valid email." have_error = True if have_error: self.render('signup-form.html', **params) else: key = db.Key.from_path('User', '{0}'.format(username)) check = db.get(key) if check != None: params['error_username'] = "******" self.render('signup-form.html', **params) else: new_user = User(key_name= username, password= (security.make_pw_hash(username, password)), email= email) new_user.put() self.response.headers.add_header('Set-Cookie', 'username={0}; Path=/' .format(security.make_user_cookie(username))) self.redirect('/welcome')