def post(self, *args, **kwargs): data = json.loads(self.request.body) account = data.get("account") pwd = data.get("pwd") user = User() try: token = user.login(account, pwd) except Exception as e: logging.error("------登录异常:{}-------".format(e.message)) self.write_resp400(ErrMsg) if not token: return self.write_resp400(user.login_err_msg) self.session[token] = {"account": account} self.set_cookie("token", token) return self.write_resp200(token)
def user(): """ exposes: http://..../[app]/default/user/login http://..../[app]/default/user/logout http://..../[app]/default/user/register http://..../[app]/default/user/profile http://..../[app]/default/user/retrieve_password http://..../[app]/default/user/change_password use @auth.requires_login() @auth.requires_membership('group name') @auth.requires_permission('read','table name',record_id) to decorate functions that need access control """ from handlers.user import User user = User() return dict(auth=user.auth, form=user.auth())
def user(): from handlers.user import User user = User() return dict(auth=user.auth, form=user.auth())