def login(): from form import loginForm from toDB import get_user_list, get_user_passwd from hashlib import md5 form = loginForm() if form.validate_on_submit(): phone = form.phone.data user_list = get_user_list() if phone not in user_list: flash('用户不存在') print( time.strftime("%Y-%m-%d %H:%M:%S", time.localtime()) + '用户' + phone + '尝试登陆:错误的用户名') else: passwd = md5(form.password.data.encode()).hexdigest() ck_passwd = get_user_passwd(phone) if passwd == ck_passwd: auto_login = form.remember_me.data user = User() user.id = phone login_user(user, auto_login) print( time.strftime("%Y-%m-%d %H:%M:%S", time.localtime()) + '用户' + phone + '登陆成功') return redirect(url_for('index')) print( time.strftime("%Y-%m-%d %H:%M:%S", time.localtime()) + '用户' + phone + '尝试登陆:密码错误') flash('密码错误') return render_template('login.html', Form=form)
def user_loader(username): from toDB import get_user_list user_list = get_user_list() if username not in user_list: return None user = User() user.id = username return user
def request_loader(request): from hashlib import md5 from toDB import get_user_list, get_user_passwd user_list = get_user_list() username = request.form.get('loginname') if username not in user_list: return None user = User() user.id = username user.is_authenticated = md5( request.form['password'].encode()).hexdigest() == get_user_passwd( username) return user
def changePassword(): from form import change_password_fields from toDB import get_user_list, get_user_passwd, changePassWord from hashlib import md5 form = change_password_fields() form.phone.data = current_user.get_id() if form.validate_on_submit(): # 校验旧密码 phone = form.phone.data user_list = get_user_list() if phone not in user_list: flash('用户不存在') else: passwordOld = md5(form.passwordOld.data.encode()).hexdigest() ck_passwd = get_user_passwd(phone) if passwordOld == ck_passwd: passwd = md5(form.passwordNew.data.encode()).hexdigest() t = changePassWord(phone, passwd) flash(t) flash('密码错误') return render_template('changePassword.html', Form=form)