This is what I would have done. Some caveats:
1) Use a SQLFORM.factory and not a SQLFORM because you do not want the
value of the password field to be stored in db
2) You can validate the password using validators (I think)
Field('password','passwrod',requires=(IS_CRYPT(),IS_EQUAL_TO((db.auth_user[user_id].password,None))))
On Saturday, 10 August 2013 00:24:18 UTC-5, Mark Li wrote:
>
> For anyone else wondering how to do this, I decided to add a "password"
> field and have onvalidation check the password.
>
> This link gave me the idea for checking the text password against the
> encrypted pw:
> https://groups.google.com/forum/#!msg/web2py/eqbXmseZ6XA/abnGIMevI6wJ
>
> On Wednesday, August 7, 2013 10:18:17 PM UTC-7, Mark Li wrote:
>>
>> I currently have a "settings" page, where a form created by
>> auth.profile() is displayed. I want to force the user to re-enter his/her
>> password in order to save any changes they make to their profile (such as
>> email, username, etc).
>>
>> Not really sure the best way to go about this, all the authentication
>> stuff I've dealt with involves logging the user in with both email and pw.
>> In this case, the user is already logged in, but I just want them to
>> reenter their password before changing important profile information.
>>
>
--
---
You received this message because you are subscribed to the Google Groups
"web2py-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to web2py+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
