def login():
if request.method == 'GET':
return render_template('login.html')
session = Session()
username = request.json.get('username', '')
password = request.json.get('password', '')
registered_user = (session.query(User)
.filter(and_(User.username==username)).first())
if (registered_user is None or not
check_password_hash(registered_user.password, password)):
Session.remove()
return jsonify(success=False)
login_user(registered_user)
flash('Logged in successfully')
Session.remove()
user = current_user.__dict__.copy()
user.pop('_sa_instance_state', None)
return jsonify(success=True, isAdmin=current_user.is_admin(), **user)
评论列表
文章目录
