def post(self):
next_url = self.request.arguments.get('next', [None])[0]
username = self.request.arguments.get('username', [None])[0]
password = self.request.arguments.get('password', [None])[0]
if self.current_user:
return self.redirect(next_url or '/')
if not username or not password:
return self.render("login.html", page_title="Login", next_url=next_url,
errors="Please enter both a username and a password.")
if not authenticate(username, password):
return self.render("login.html", page_title="Login", next_url=next_url,
errors="Invalid username or password specified.")
self.set_secure_cookie("user", username)
return self.redirect(next_url or "/")
def post(self):
next_url = self.request.arguments.get('next', [None])[0]
username = self.request.arguments.get('username', [None])[0]
password = self.request.arguments.get('password', [None])[0]
if self.current_user:
return self.redirect(next_url or '/')
if not username or not password:
return self.render("login.html", page_title="Login", next_url=next_url,
errors="Please enter both a username and a password.")
if not authenticate(username, password):
return self.render("login.html", page_title="Login", next_url=next_url,
errors="Invalid username or password specified.")
self.set_secure_cookie("user", username)
return self.redirect(next_url or "/")
def test_authenticate(self):
with mock.patch.object(logging, "exception"):
T.assert_equal(auth.authenticate("fake_user", "fake_password"), False)
