WP6
/
expub_compendium
Прати 1
Волим 0
Креирај огранак 0
Код Дискусије 0 Захтеви за спајање 0 Издања 0 Вики Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6 Комити
3 Гране
Дрво: cfb960b29b
Гране Ознаке
${ item.name }
Create branch ${ searchTerm }
from 'cfb960b29b'
${ noResults }
expub_compendium/web/app/auth.py

auth.py 2.2KB
Датотека Normal View Историја

Initial commit
пре 3 година
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. from flask import Blueprint, render_template, redirect, url_for, request, flash

  2. from werkzeug.security import generate_password_hash, check_password_hash

  3. from flask_login import login_user, logout_user, login_required

  4. from .models import User

  5. from . import db

  6. 

  7. auth = Blueprint('auth', __name__)

  8. 

  9. @auth.route('/login')

  10. def login():

  11.     return render_template('login.html')

  12. 

  13. @auth.route('/login', methods=['POST'])

  14. def login_post():

  15.     email = request.form.get('email')

  16.     password = request.form.get('password')

  17.     remember = True if request.form.get('remember') else False

  18. 

  19.     user = User.query.filter_by(email=email).first()

  20. 

  21.     # check if the user actually exists

  22.     # take the user-supplied password, hash it, and compare it to the hashed password in the database

  23.     if not user or not check_password_hash(user.password, password):

  24.         flash('Please check your login details and try again.')

  25.         return redirect(url_for('auth.login')) # if the user doesn't exist or password is wrong, reload the page

  26. 

  27.     # if the above check passes, then we know the user has the right credentials

  28.     login_user(user, remember=remember)

  29.     return redirect(url_for('main.profile'))

  30. 

  31. @auth.route('/signup')

  32. def signup():

  33.     return render_template('signup.html')

  34. 

  35. @auth.route('/signup', methods=['POST'])

  36. def signup_post():

  37.     email = request.form.get('email')

  38.     name = request.form.get('name')

  39.     password = request.form.get('password')

  40. 

  41.     user = User.query.filter_by(email=email).first() # if this returns a user, then the email already exists in database

  42. 

  43.     if user: # if a user is found, we want to redirect back to signup page so user can try again

  44.         flash('Email address already exists')

  45.         return redirect(url_for('auth.signup'))

  46. 

  47.     # create a new user with the form data. Hash the password so the plaintext version isn't saved.

  48.     new_user = User(email=email, name=name, password=generate_password_hash(password, method='sha256'))

  49. 

  50.     # add the new user to the database

  51.     db.session.add(new_user)

  52.     db.session.commit()

  53. 

  54.     return redirect(url_for('auth.login'))

  55. 

  56. @auth.route('/logout')

  57. @login_required

  58. def logout():

  59.     logout_user()

  60.     return redirect(url_for('main.index'))