def post_login():
if not config.auth:
return "ERROR: authorization disabled. Change auth setting in config.py to enable"
s = request.environ.get('beaker.session')
row = users(user=request.forms.get('user').lower())
pw = request.forms.passwd
err = "<p>Login failed: wrong username or password</p>"
# if password matches, set the USER_ID_SESSION_KEY
hashpw = hashlib.sha256(pw).hexdigest()
try:
if hashpw == row.passwd:
# set session key
s[USER_ID_SESSION_KEY] = row.user.lower()
s.save()
else:
return err
except:
exc_type, exc_value, exc_traceback = sys.exc_info()
print traceback.print_exception(exc_type, exc_value, exc_traceback)
return err
# if referred to login from another page redirect to referring page
referrer = request.forms.referrer
if referrer: redirect('/'+referrer)
else: redirect('/myapps')
评论列表
文章目录
