routes.py 1.97 KB
from functools import wraps

from flask_login import current_user
from flask import render_template, request, redirect, url_for, flash
from flask_login import login_user, logout_user

from app.auth.models import User
from app.auth import bp


#
# Decorator used to protect routes by role
# inspired from https://flask.palletsprojects.com/en/master/patterns/viewdecorators/
#
def role_required(role):
    def decorator(f):
        @wraps(f)
        def decorated_function(*args, **kwargs):
            # first check use is logged in
            if not current_user or not current_user.is_authenticated:
                flash("Vous devez vous authentifier", 'warning')
                return redirect(url_for('auth.login'))
            # then check role status
            try:
                is_authorised = current_user.has_role_or_higher(role)
            except ValueError:
                raise Exception("Unknowk role provided %s" % role)
            if not is_authorised:
                flash("Vous n'avez pas les autorisations pour accéder à cette page", 'dark')
                return redirect(url_for('main.index'))
            return f(*args, **kwargs)

        return decorated_function

    return decorator


@bp.route('/login')
def login():
    return render_template('login.html', title="Login")


@bp.route('/login', methods=['POST'])
def login_post():
    user_login = request.form.get('login')
    user_password = request.form.get('password')
    # user_remember = request.form.get('remember')
    user = User.query.filter_by(login=user_login).one_or_none()
    if user and user.password == user_password:
        login_user(user)
        flash("Connection Réussie !", 'success')
        return redirect(url_for('main.index'))
    else:
        flash("Mauvais login ou mot de passe.", 'warning')
        return redirect(url_for('auth.login'))


@bp.route('/logout')
def logout():
    logout_user()
    flash("Vous êtes maintenant déconnecté", 'info')
    return redirect(url_for('main.index'))