def authenticate(self):
try:
username = request.params['username']
password = request.params['password']
password = User.hash(password)
user = Session.query(User).filter(User.username == username).\
filter(User.password == password).\
one()
except:
session['flash'] = 'Authentication Failed'
session.save()
return redirect('/login')
session['user'] = {
'id': 'user.id',
'username': '******'
}
session['flash'] = 'Successfully logged in'
session.save()
if session.get('path_before_login'):
return redirect(session['path_before_login'])
else:
return redirect('/')
def add_metadata(self, environ, identity):
username = identity.get('repoze.who.userid')
user = User.get(username)
if user is not None:
identity['user'] = user
