I am stuck ..
Tried without accepts , i tried this way , and still not working..
def user():
form = auth()
if request.args(0)=='login':
if auth.is_logged_in():
SESSION.flash="Logged In successfully"
redirect('/sExtract/default/index')
return dict( loginform = form )
The {{=loginform}} works
But below this wont work:
<div class="ez-box statusbar-v2">
{{print auth.is_logged_in()}}
{{if not auth.is_logged_in():}}
<form action="/{{=request.application}}/default/user/login"
enctype="multipart/form-data" method="post">
Username: <input id="auth_user_username" name="username"
type="text" value="" />
Password: <input id="auth_user_password" name="password"
type="password" value="" />
<input type="submit" value="Login" />
<div class="hidden">
<input name="_next" type="hidden"
value="/sExtract/default/index" />
<input name="_formkey" type="hidden"
value="4ae3a7ab-73ab-4d2e-8032-ad525bf88e65" />
<input name="_formname" type="hidden" value="login" />
</div>
</form>
{{else:}}
{{=T('Welcome %s',auth.user.first_name)}} [
{{=A(T('logout'),_href=URL(r=request,c='default',f='user/logout'))}}]
{{pass}}
</div>
On Sat, Jul 10, 2010 at 10:40 PM, Phyo Arkar <[email protected]>wrote:
> SO thats not possible to customize using HTML forms ??
>
>
>
>
> On Sat, Jul 10, 2010 at 10:26 PM, mdipierro <[email protected]>wrote:
>
>> You cannot do this:
>>
>> form = auth()
>> if form.accepts( request.vars, formname = 'login'):
>>
>> because there already an accept into auth()
>>
>> On 10 Lug, 11:35, Phyo Arkar <[email protected]> wrote:
>> > Thanks alot Massimo!
>> >
>> > Still there is one problem.
>> >
>> > When tried to login . It do not try to authenticate , instead IT
>> INSERTS A
>> > NEW RECORD!!! am i doing wrong ? OR is that a Serious Security Flaw???
>> >
>> > here is my new code at layout.html :
>> >
>> > <div class="ez-box statusbar-v2">
>> >
>> > {{if not auth.user:}}
>> > <form action="/{{=request.application}}/default/user/login"
>> > enctype="multipart/form-data" method="post">
>> > Username: <input id="auth_user_username"
>> name="username"
>> > type="text" value="" />
>> > Password: <input id="auth_user_password"
>> name="password"
>> > type="password" value="" />
>> > <input type="submit" value="Login" />
>> > <div class="hidden">
>> > <input name="_next" type="hidden"
>> > value="/sExtract/default/index" />
>> > <input name="_formkey" type="hidden"
>> > value="4ae3a7ab-73ab-4d2e-8032-ad525bf88e65" />
>> > <input name="_formname" type="hidden" value="login"
>> />
>> > </div>
>> > </form>
>> > {{else:}}
>> > {{=T('Welcome %s',auth.user.first_name)}} [
>> >
>> > {{=A(T('logout'),_href=URL(r=request,c='default',f='user/logout'))}}]
>> > {{pass}}
>> > </div>
>> >
>> > in controller/default :
>> >
>> > def user():
>> >
>> > form = auth()
>> > if form.accepts( request.vars, formname = 'login'):
>> >
>> > """
>> > exposes:
>> > http://..../[app]/default/user/login
>> > http://..../[app]/default/user/logout
>> > http://..../[app]/default/user/register
>> > http://..../[app]/default/user/profile
>> > http://..../[app]/default/user/retrieve_password
>> > http://..../[app]/default/user/change_password
>> > use @auth.requires_login()
>> > @auth.requires_membership('group name')
>> > @auth.requires_permission('read','table name',record_id)
>> > to decorate functions that need access control
>> > """
>> > return
>> > return dict( loginform = form )
>> >
>> > HERE .. auth_user table is inserted!!!
>> >
>> > 1 selected auth_user.id<
>> http://localhost:8080/sExtract/appadmin/select/db?orderby=auth_user.id>
>> > auth_user.first_name<
>> http://localhost:8080/sExtract/appadmin/select/db?orderby=auth_user.f...>
>> > auth_user.last_name<
>> http://localhost:8080/sExtract/appadmin/select/db?orderby=auth_user.l...>
>> > auth_user.username<
>> http://localhost:8080/sExtract/appadmin/select/db?orderby=auth_user.u...>
>> > auth_user.email<
>> http://localhost:8080/sExtract/appadmin/select/db?orderby=auth_user.e...>
>> > auth_user.password<
>> http://localhost:8080/sExtract/appadmin/select/db?orderby=auth_user.p...>
>> > auth_user.registration_key<
>> http://localhost:8080/sExtract/appadmin/select/db?orderby=auth_user.r...>
>> > 6 <http://localhost:8080/sExtract/appadmin/update/db/auth_user/6>
>> >
>> > admin
>> > e32a0ac290738947df73643d5bb73de9
>> >
>> > Help!!
>> >
>> > On Sat, Jul 10, 2010 at 7:34 AM, mdipierro <[email protected]>
>> wrote:
>> > > you still need
>> >
>> > > auth.define_tables()
>> >
>> > > after you define the custom tables.
>> >
>> > > On 9 Lug, 22:59, Phyo Arkar <[email protected]> wrote:
>> > > > Hello Web2py
>> >
>> > > > I am having trouble with Auth form. As described in Web2py book , i
>> added
>> > > > this :
>> >
>> > > > in Model db.py:
>> >
>> > > > from gluon.tools import Auth
>> >
>> > > > auth = Auth(globals(),db) #
>> > > > authentication/authorization
>> >
>> > > > auth.settings.hmac_key = 'mwpk120409' # before define_tables()
>> >
>> > > > auth_table = db.define_table(
>> > > > auth.settings.table_user_name,
>> > > > Field('first_name', length=128, default=""),
>> > > > Field('last_name', length=128, default=""),
>> > > > Field('username', length=128, default="",unique=True),
>> > > > Field('email', length=128, default="", unique=True),
>> > > > Field('password', 'password', length=128,
>> > > > readable=False, label='Password'),
>> > > > Field('registration_key', length=128, default= "",
>> > > > writable=False, readable=False))
>> >
>> > > > auth_table.first_name.requires = \
>> > > > IS_NOT_EMPTY(error_message=auth.messages.is_empty)
>> > > > auth_table.last_name.requires = \
>> > > > IS_NOT_EMPTY(error_message=auth.messages.is_empty)
>> > > > auth_table.password.requires = [IS_STRONG(), CRYPT()]
>> > > > auth_table.email.requires = [
>> > > > IS_EMAIL(error_message=auth.messages.invalid_email),
>> > > > IS_NOT_IN_DB(db, auth_table.email)]
>> > > > auth_table.username.requires = IS_NOT_IN_DB(db, auth_table.username)
>> > > > auth.settings.table_user = auth_table
>> >
>> > > > auth.settings.actions_disabled.append('register')
>> > > > #auth.settings.actions_disabled.append('change_password')
>> > > > auth.settings.actions_disabled.append('verify_email')
>> > > > auth.settings.actions_disabled.append('retrieve_username')
>> > > > auth.settings.actions_disabled.append('retrieve_password')
>> > > > auth.settings.actions_disabled.append('impersonate')
>> > > > auth.settings.actions_disabled.append('groups')
>> >
>> > > > In Controller :
>> >
>> > > > def user():
>> >
>> > > > form = auth()
>> > > > if form.accepts( request.vars, formname = 'login'):
>> >
>> > > > """
>> > > > exposes:
>> > > > http://..../[app]/default/user/login
>> > > > http://..../[app]/default/user/logout
>> > > > http://..../[app]/default/user/register
>> > > > http://..../[app]/default/user/profile
>> > > > http://..../[app]/default/user/retrieve_password
>> > > > http://..../[app]/default/user/change_password
>> > > > use @auth.requires_login()
>> > > > @auth.requires_membership('group name')
>> > > > @auth.requires_permission('read','table name',record_id)
>> > > > to decorate functions that need access control
>> > > > """
>> > > > return
>> > > > return dict( loginform = form )
>> >
>> > > > In View- layout.html (i did a custom form to fit it in status bar):
>> >
>> > > > <div class="ez-box statusbar-v2">
>> > > > <form action="" enctype="multipart/form-data" method="post">
>> > > > Username: <input id="auth_user_username"
>> name="username"
>> > > > type="text" value="" />
>> > > > Password: <input id="auth_user_password"
>> name="password"
>> > > > type="password" value="" />
>> > > > <input type="submit" value="Login" />
>> > > > <div class="hidden">
>> > > > <input name="_next" type="hidden"
>> > > > value="/sExtract/default/index" />
>> > > > <input name="_formkey" type="hidden"
>> > > > value="4ae3a7ab-73ab-4d2e-8032-ad525bf88e65" />
>> > > > <input name="_formname" type="hidden" value="login"
>> />
>> > > > </div>
>> > > > </form>
>> > > > </div>
>> >
>> > > > Then when i tried to Login
>> >
>> > > > Traceback (most recent call last):
>> >
>> > > > File "/home/v3ss/workspace-bbb/web2py-clone/gluon/restricted.py",
>> > > > line 178, in restricted
>> >
>> > > > exec ccode in environment
>> > > > File
>> > >
>> "/home/v3ss/workspace-bbb/web2py-clone/applications/sExtract/controllers/default.py"
>> > > > <
>> > >
>> http://localhost:8080/admin/default/edit/sExtract/controllers/default.py
>> >,
>> > > > line 286, in <module>
>> >
>> > > > File "/home/v3ss/workspace-bbb/web2py-clone/gluon/globals.py",
>> line
>> > > > 96, in <lambda>
>> >
>> > > > self._caller = lambda f: f()
>> >
>> > > > File
>> > >
>> "/home/v3ss/workspace-bbb/web2py-clone/applications/sExtract/controllers/default.py"
>> > > > <
>> > >
>> http://localhost:8080/admin/default/edit/sExtract/controllers/default.py
>> >,
>> > > > line 185, in user
>> >
>> > > > form = auth()
>> > > > File "/home/v3ss/workspace-bbb/web2py-clone/gluon/tools.py", line
>> > > > 962, in __call__
>> >
>> > > > return self.login()
>> > > > File "/home/v3ss/workspace-bbb/web2py-clone/gluon/tools.py", line
>> > > > 1394, in login
>> >
>> > > > self.log_event(log % self.user)
>> >
>> > > > File "/home/v3ss/workspace-bbb/web2py-clone/gluon/tools.py", line
>> > > > 1154, in log_event
>> >
>> > > > self.settings.table_event.insert(description=description,
>> > > > AttributeError: 'NoneType' object has no attribute 'insert'
>>
>
>
