def post(self, args):
email = args['email']
password = args['password']
# Check the info!
user_from_db = users.User.query.filter_by(email=email).first()
if user_from_db is None:
# FIXME: bad message
flask_restful.abort(401, message={'error': 'failed login'})
elif flask_security.utils.verify_password(password,
user_from_db.password):
return {
'access_token': create_access_token(identity=email),
}
else:
# FIXME: terrible message.
flask_restful.abort(401, message={'error': 'incorrect email/pass'})
评论列表
文章目录