001177e85fe09a3a2fd4c30600a42b92902b3d43,doudizhu/apps/account/views.py,LoginHandler,post,#LoginHandler#,42

Before Change

        self.set_header("Content-Type", "application/json")
        if password == account.get("password"):
            self.set_current_user(account.get("id"), account.get("username"))
            self.redirect(self.get_argument("next", "/"))


class LogoutHandler(BaseHandler):

After Change

        password = self.get_body_argument("password")

        account = await self.db.fetchone("SELECT id, username, password FROM account WHERE email=%s", email)
        if not account:
            self.send_error(401, reason="This email address does not exist.")
            return

        verify_pass = await self.run_in_executor(bcrypt.checkpw, password.encode("utf8"),
                                                 account.get("password").encode("utf8"))
        if not verify_pass:
            self.send_error(401, reason="Incorrect username or password.")

        uid, username = account.get("id"), account.get("username")
        self.set_secure_cookie("user", json_encode({"uid": uid, "username": username}))
        token = self.jwt_encode({"uid": uid})
        self.write({"token": token, "username": username})


class SignupHandler(RestfulHandler, JwtMixin):

Instances