-# Create your views here.
-from django.core.context_processors import csrf
-from django.template import RequestContext
-from django.shortcuts import render_to_response
-from django.contrib.auth import authenticate, login
+from django.contrib.auth import logout
+from django.http import HttpResponseRedirect
-def login_user(request):
- state = "Please log in below..."
- username = password = ''
- if request.POST:
- username = request.POST.get('username')
- password = request.POST.get('password')
+# hard question : where should we redirect requests to logout if user is not logged in ?
+def logout_user (request):
+ # check that we're indeed logged in
+ if not request.user.is_authenticated():
+ return HttpResponseRedirect ('/')
+ print "LOGGING OUT"
+ logout(request)
+ return HttpResponseRedirect ('/')
+
- user = authenticate(username=username, password=password)
- if user is not None:
- if user.is_active:
- login(request, user)
- state = "You're successfully logged in!"
- else:
- state = "Your account is not active, please contact the site admin."
- else:
- state = "Your username and/or password were incorrect."
-
- return render_to_response('login-view.html',{'state':state, 'username': username},
- context_instance=RequestContext(request))