def validate_account(id): user = User.by_id(id) if user is not None and user.validation_token == request.args.get('token'): user.validated = True db.session.commit() login_user(user, remember=True) return redirect('/')
def update(id): user = obj_or_404(User.by_id(id)) authz.require(user.id == current_user.id or authz.system_manage()) user.update(request_data()) db.session.commit() return jsonify(user)
def view(id): authz.require(authz.system_read()) user = obj_or_404(User.by_id(id)) data = user.to_dict() return jsonify(data)