Hello mate,
In my application I have this functionality that allow the users to
change their email address and in order to do so they need to provide
their password for authentication....
Since the password is encrypted in the DB... How can I decrypt it for
verification ?
Here is my controller:
@auth.requires_login()
def changeEmail():
current_email = auth.db(db.auth_user.id ==
session.auth.user.id).select()[0].email
from gluon.sqlhtml import form_factory
chgEmailform = form_factory(
SQLField('email',label='Old
Email',requires=IS_NOT_EMPTY(), default="%s"%current_email),
SQLField('newEmail',label='New
email',requires=IS_NOT_EMPTY(), default=''),
SQLField
('password',label='password',requires=CRYPT(),type='password'),)
if chgEmailform.accepts(request.vars, session, keepvalues=True,
formname='email'):
users = auth.db((db.auth_user.id == session.auth.user.id)&
(db.auth_user.email == request.vars.email))\
.select()
print users
if users:
user = users[0]
if user['password'] != request.vars.get('password',''):
session.flash = 'Password not valid Please Try again'
else:
db(db.auth_user.id == session.auth.user.id).update
(email=request.vars.newEmail)
return dict(form = chgEmailform)
Thanks for your help,
Cheers,
Yannick P.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"web2py Web Framework" group.
To post to this group, send email to web2py@googlegroups.com
To unsubscribe from this group, send email to
web2py+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/web2py?hl=en
-~----------~----~----~----~------~----~------~--~---
