本文整理汇总了Python中werkzeug.security.check_password_hash函数的典型用法代码示例。如果您正苦于以下问题:Python check_password_hash函数的具体用法?Python check_password_hash怎么用?Python check_password_hash使用的例子?那么恭喜您, 这里精选的函数代码示例或许可以为您提供帮助。
在下文中一共展示了check_password_hash函数的15个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的Python代码示例。
示例1: login
def login(page = 1):
form = LoginForm()
user = g.user
if user is not None and user.is_authenticated():
return redirect(url_for('index'))
if form.validate_on_submit():
#checks if form is left empty
if form.username.data == None or form.password.data == None:
return redirect(url_for('index'))
#allows user to login with email
if form.username.data.find('@') != -1:
username = form.username.data.split('@')[0]
else:
username = form.username.data
user = models.User.query.filter_by(username=username).first()
#if username cannot be found
if user == None:
flash('User not found.')
return redirect(url_for('index'))
#checks if passwords match
if check_password_hash(user.password,form.password.data):
login_user(user)
if form.password.data and form.username.data and check_password_hash(user.password,form.password.data):
return render_template('yourposts.html',
title = user.username,
user = user,
posts = user.posts.order_by("timestamp desc").paginate(page, POSTS_PER_PAGE, False),
)
else:
flash('Incorrect password')
return render_template('index.html',
loginform = form,
registerform = RegisterForm()
)示例2: validate
def validate(self):
''' validate the form '''
rv = Form.validate(self)
if not rv:
return False
if self.who.data == "shipper":
user = Shipper.query.filter_by(
email=self.email.data
).first()
if user is None:
self.email.errors.append(u"This email not registered")
return False
if not check_password_hash(
user.passwd,
self.passwd.data
):
self.passwd.errors.append(u"Username and password don't match")
return False
else:
user = Deliverer.query.filter_by(
email=self.email.data
).first()
if user is None:
self.email.errors.append(u"This email not registered")
return False
if not check_password_hash(
user.passwd,
self.passwd.data
):
self.passwd.errors.append(u"Username and password don't match")
return False
self.user = user
return True示例3: login
def login():
if current_user.is_authenticated():
return redirect("/index")
form = LoginForm()
if form.validate_on_submit():
username=form.username.data
password=form.password.data
remember=bool(form.rememberme.data)
c=sqlite3.connect('test.db')
passcheck=False
pa=c.execute("SELECT password,email,confirm from users where username=(?)",[username])
for x in pa:
passcheck=check_password_hash(x[0],password)
email=x[1]
password=x[0]
confirm=x[2]
if not passcheck:
pa=c.execute("SELECT password,username,confirm from users where email=(?)",[username])
for x in pa:
passcheck=check_password_hash(x[0],password)
email=username
username=x[1]
password=x[0]
confirm=x[2]
ruser=None
if passcheck:
ruser=User(username,password,email,confirm)
if ruser is None:
return render_template('login.html',title='sign in error',form=form,error='incorrect username or password')
login_user(ruser,remember)
return redirect(request.args.get('next') or '/index')
return render_template('login.html',
title='Sign In',
form=form)
return render_template('login.html',title='sign in',form=form)示例4: verify_password
def verify_password(self, password):
if not AccountPolicy.LOCKOUT_POLICY_ENABLED:
if check_password_hash(self.password_hash, password):
return True
else:
LogEvent.incorrect_password(self)
return False
if self.locked or not self.enabled:
if not check_password_hash(self.password_hash, password):
LogEvent.incorrect_password(self)
if self.locked:
LogEvent.login_attempt_while_account_locked(self)
if not self.enabled:
LogEvent.login_attempt_while_account_disabled(self)
return False
if check_password_hash(self.password_hash, password):
self.last_failed_login_attempt = None
self.failed_login_attempts = 0
return True
LogEvent.incorrect_password(self)
if self.last_failed_login_attempt:
if ((datetime.utcnow() - self.last_failed_login_attempt) >
AccountPolicy.RESET_THRESHOLD_AFTER):
self.failed_login_attempts = 0
self.last_failed_login_attempt = datetime.utcnow()
self.failed_login_attempts += 1
if self.failed_login_attempts == AccountPolicy.LOCKOUT_THRESHOLD:
self.locked = True
LogEvent.account_locked_by_failed_logins(self)
return False示例5: test_check_password
def test_check_password(self):
"""Ensure given password is correct after un-hashing"""
author = UserAccount.query.filter_by(email='[email protected]').first()
self.assertFalse(author.verify_password('admin'))
self.assertFalse(author.verify_password('another_admin'))
self.assertTrue(check_password_hash(author.get_password, "password"))
self.assertFalse(check_password_hash(author.get_password, "foobar"))示例6: login
def login():
error = None
if not session.get('logged_in'):
if request.method == 'POST':
if request.form['username'] == 'admin':
if check_password_hash(app.config['adminPassword'], request.form['password']):
session['logged_in'] = True
log("admin logged in" + time.time())
return redirect(url_for('admin'))
else:
flash('Incorrect Username/password')
return render_template('login.html')
else:
try:
hashed_password = ''.join(select('SELECT Password FROM Users WHERE Username=\'%s\'' % request.form['username'])[0])
if check_password_hash(hashed_password, request.form['password']):
session['logged_in'] = True
log(request.form['username']+" logged in "+str(time.time()))
return redirect(url_for('addtrans'))
else:
flash(hashed_password)
return render_template('login.html')
except:
flash('no such username')
return render_template('login.html')
return render_template('login.html')
return redirect(url_for('addtrans'))示例7: authenticate
def authenticate(cls, login, password):
"""A classmethod for authenticating users.
It returns the user object if the user/password combination is ok.
If the user has entered too often a wrong password, he will be locked
out of his account for a specified time.
:param login: This can be either a username or a email address.
:param password: The password that is connected to username and email.
"""
user = cls.query.filter(db.or_(User.username == login,
User.email == login)).first()
if user is not None:
if user.check_password(password):
# reset them after a successful login attempt
user.login_attempts = 0
user.save()
return user
# user exists, wrong password
# never had a bad login before
if user.login_attempts is None:
user.login_attempts = 1
else:
user.login_attempts += 1
user.last_failed_login = time_utcnow()
user.save()
# protection against account enumeration timing attacks
check_password_hash("dummy password", password)
raise AuthenticationError示例8: checkAuthenticationCredentials
def checkAuthenticationCredentials(email, passw):
"""Validates user access credentials"""
user = userData.getUserByEmail(email)
print "---------------->", user.password
print "---------------->", check_password_hash( user.password, passw )
if user and check_password_hash( user.password, passw ):
return user
return False示例9: test_edit_user
def test_edit_user(self):
user = models.User.create('marv', 'pass')
assert check_password_hash(user.password, 'pass')
models.User.edit(user.id, username='marv2', password='pass2')
user = models.User.get(user.id)
assert not check_password_hash(user.password, 'pass')
assert check_password_hash(user.password, 'pass2'), user.password
assert user.username == 'marv2'示例10: test_password_hash
def test_password_hash(self):
"""Test password hasher."""
from werkzeug.security import check_password_hash,\
generate_password_hash
p = 'passwd'
h = generate_password_hash(p)
self.assertTrue(check_password_hash(h, p))
self.assertFalse(check_password_hash(h, p + '1'))示例11: test_password_hashing
def test_password_hashing():
hash0 = generate_password_hash('default')
assert check_password_hash(hash0, 'default')
assert hash0.startswith('pbkdf2:sha256:50000$')
hash1 = generate_password_hash('default', 'sha1')
hash2 = generate_password_hash(u'default', method='sha1')
assert hash1 != hash2
assert check_password_hash(hash1, 'default')
assert check_password_hash(hash2, 'default')
assert hash1.startswith('sha1$')
assert hash2.startswith('sha1$')
with pytest.raises(ValueError):
check_password_hash('$made$up$', 'default')
with pytest.raises(ValueError):
generate_password_hash('default', 'sha1', salt_length=0)
fakehash = generate_password_hash('default', method='plain')
assert fakehash == 'plain$$default'
assert check_password_hash(fakehash, 'default')
mhash = generate_password_hash(u'default', method='md5')
assert mhash.startswith('md5$')
assert check_password_hash(mhash, 'default')
legacy = 'md5$$c21f969b5f03d33d43e04f8f136e7682'
assert check_password_hash(legacy, 'default')
legacy = u'md5$$c21f969b5f03d33d43e04f8f136e7682'
assert check_password_hash(legacy, 'default')示例12: login
def login(username, password):
user = UserQueries.get_by_login(username)
if user is not None: # cool, we found a user.
if check_password_hash(user.password, password): # does the password match.
login_user(user)
return True
else:
check_password_hash(password, password) # Say no timing attacks.
return False示例13: check_login
def check_login(username, password):
user = get_user(username)
print "user: " + str(user)
if user == None:
return False
print "password to be checked: " + password
print "current password hash: " + user['password']
print check_password_hash(user['password'], password)
if check_password_hash(user['password'], password):
return True
return False示例14: check_login
def check_login(user_name, password):
print user_name + " : " + password
user = User.query.filter(User.user_name == user_name).first()
if not user:
return None
print check_password_hash(user.password, password)
if check_password_hash(user.password, password):
print "logged"
return user
return None示例15: testSetPassword
def testSetPassword(self):
'''
Test password hashing.
'''
user = User('username', 'password', True)
# Check the hash comparer.
correct = check_password_hash(user.password_hash, 'password')
self.assertTrue(correct)
incorrect = check_password_hash(user.password_hash, 'wrong')
self.assertFalse(incorrect)