# -*- coding: utf-8 -*- import hashlib from flask import abort, request, render_template, flash, g, session, redirect, url_for, jsonify from flask.ext.login import login_user, logout_user, current_user, login_required from werkzeug import check_password_hash, generate_password_hash from cave import cave, db, lgm from cave.forms import HomeForm, RegisterForm from cave.models import User from cave.decorators import no_login @lgm.user_loader def load_user(id): return User.query.get(int(id)) @cave.before_request def before_request(): g.user = current_user if g.user.is_authenticated(): db.session.add(g.user) db.session.commit() @cave.route('/', methods=['GET']) def index(): if g.user.is_authenticated(): return redirect(url_for('me')) logform = HomeForm() return render_template('index.html', form=logform, title='Home') @cave.route('/login', methods=['GET', 'POST']) def login(): if request.method == 'GET': return redirect(url_for('index') + '#login') if g.user.is_authenticated(): return redirect(url_for('index')) form = LoginForm(request.form) if form.validate_on_submit(): user = User.query.filter_by(username=form.login_username.data).first() if user and user.password == hashlib.md5(form.login_password.data).hexdigest(): login_user(user) flash('Welcome back, %s!' % user.username) return redirect(url_for('me')) flash('Invalid username or password.') return render_template('index.html', form=form, title='Home') @cave.route('/register', methods=['GET', 'POST']) def register(): if request.method == 'GET': return redirect(url_for('index') + '#register') if g.user.is_authenticated(): return redirect(url_for('index')) form = HomeForm(request.form) if form.validate_on_submit(): pass return render_template('index.html', form=form, title='Home') @cave.route('/me', methods=['GET']) def me(): if not g.user.is_authenticated(): return redirect(url_for('index')) return render_template('layout.html', title='Me') @cave.route('/logout', methods=['POST']) def logout(): logout_user() flash('You were logged out successfully.') return redirect(url_for('index')) @cave.route('/api/update_motto', methods=['POST']) def api_update_motto(): if not g.user.is_authenticated(): return abort(403) new_motto = request.form['new_motto'] if len(new_motto) > cave.config['MAX_MOTTO_LENGTH']: return jsonify({'error': 'Your new motto is too long.'}), 400 try: g.user.motto = new_motto db.session.commit() except: return jsonify({'error': 'Something went wrong. Try again later.'}), 500 return jsonify({'message': 'Your motto was set successfully.'}) @cave.route('/api/user_info', methods=['POST']) def api_user_info(): if not g.user.is_authenticated(): return abort(403) return jsonify({'credits': g.user.credits, 'motto': g.user.motto, 'look': g.user.look}) @cave.route('/api/get_news', methods=['POST']) def api_get_news(): if not g.user.is_authenticated(): return abort(403) return jsonify({'content_title': 'News'})