def create_session(data):
user = User.find_by_email_or_username(data['username'])
if not (user and user.password == data['password']):
return make_error_response('Invalid username/password combination', 401)
session = Session(user=user)
# TODO can this be made more accurate?
session.ip_address = request.remote_addr
if request.user_agent:
session.user_agent = request.user_agent.string
# Denormalize user agent
session.platform = request.user_agent.platform
session.browser = request.user_agent.browser
db.session.add(session)
db.session.commit()
return session
评论列表
文章目录
