WMGZON/controllers/web/endpoints.py

68 lines
2.0 KiB
Python

from . import blueprint
from flask import render_template, redirect, request, session
from controllers.database.user import UserController
from models.users.customer import Customer
from hashlib import sha512
# Function responsible for displaying the main landing page of the site
@blueprint.route('/')
def welcome_page():
return render_template('index.html', content="content.html", user = session.get('user'))
### LOGIN FUNCTIONALITY
# Function responsible for delivering the Login page for the site
@blueprint.route('/login')
def display_login():
return render_template('index.html', content="login.html", user = session.get('user'))
# Function responsible for handling logins to the site
@blueprint.post('/login')
def login():
database = UserController()
user = database.read(request.form['username'])
# No user found
if user == None:
return redirect("/login")
# Incorrect Password
if sha512(request.form['password'].encode()).hexdigest() != user.password:
return redirect("/login")
session['user'] = user.username
return redirect("/")
### SIGNUP FUNCTIONALITY
# Function responsible for delivering the Signup page for the site
@blueprint.route('/signup')
def display_signup():
return render_template('index.html', content="signup.html", user = session.get('user'))
# Function responsible for handling signups to the site
@blueprint.post('/signup')
def signup():
database = UserController()
database.create(Customer(
0,
request.form['username'],
sha512(request.form['password'].encode()).hexdigest(), # Hashed as soon as it is recieved on the backend
request.form['firstname'],
request.form['lastname'],
request.form['email'],
"123",
"Customer"
))
# Code 307 Preserves the original request (POST)
return redirect("/login", code=307)
# Function responsible for handling logouts from the site
@blueprint.route('/logout')
def logout():
session.pop('user')
return redirect("/")