def index(self, name=None, password = None, referer=None): if name: # submitting user = User.query.filter_by(username = name).first() if user and user.password == userinfo.md5pass(password, user.password): if user.auth == 1: userinfo.set_login_sesion_info(user) if referer: controller.http_redirect(referer) else: controller.http_redirect(controller.base_url()+'/welcome/') else: return template.render("login.html" , error_reason = "auth" , referer = referer ) else: return template.render("login.html" , error_reason = "failed" , referer = referer ) else: referer = controller.get_header('Referer') if not referer: referer = controller.base_url()+"/welcome/" return template.render("login.html" , hide_login_register = True , referer = referer , error_reason = None)
def index(self, user = None, key = None): if not user or not key: return "Direct access is not allowed" user = User.query.filter_by(username = user, authkey = key).first() if user: user.auth = 1 user.authkey = None userinfo.set_login_sesion_info(user) controller.http_redirect(controller.base_url()+ "/welcome/") return "Auth key or user are no longer valid!"