def delete_session(db, username): """ Remove all sessions for a user """ cursor = db.cursor() query = "DELETE FROM sessions WHERE username = ?" cursor.execute(query, (username,)) db.commit() session_id = request.get_cookie(COOKIE) response.set_cookie(COOKIE, session_id, expires=0)
def get_session(db): """ Attempt to retrieve user if an active session exists. Retur None if there is no valid session """ session_id = request.get_cookie(COOKIE) cursor = db.cursor() query = "SELECT username FROM sessions WHERE sessionid = ?" cursor.execute(query, (session_id,)) user = cursor.fetchone() if user: return user[0] return None