def api_token_request():
username = request.form.get('email')
password = request.form.get('password')
token = request.form.get('token')
if len([x for x in [username,password,token] if x == None]) > 1:
return Response(response=jfail("missing required parameters"), status=200)
user = User(username)
if user.is_valid():
if password:
if user.check_pass_hash(password):
return Response(response=jsuccess_with_token(user.get_token()), status=200)
else:
return Response(response=jfail("incorrect password"), status=200)
else:
checked = user.check_token(token)
if checked == 1:
return Response(response=jsuccess(), status=200)
elif checked == 0:
return Response(response=jfail("expired token"), status=200)
else:
return Response(response=jfail("invalid token"), status=200)
else:
return Response(response=jfail("user does not exist"), status=200)
