1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
|
from app import app, db
from flask import render_template, redirect, request, url_for, flash
from flask_login import current_user, login_user, login_required, logout_user
from forms import LoginForm, RegisterForm
from tables import User
@app.route("/login", methods=['GET', 'POST'])
def login():
form = LoginForm()
username = form.username.data
password = form.password.data
if form.validate_on_submit():
# Valid submission
user = User.query.filter_by(username=username).first()
# TODO: show user if login succeeded
if user and user.verify_password(password):
login_user(user)
return redirect(url_for('home'))
else:
flash("Invalid username or password", "danger")
return render_template('user/login.html', form=form)
@app.route("/logout", methods=['GET', 'POST'])
@login_required
def logout():
logout_user()
return redirect('/')
@app.route("/register", methods=['GET', 'POST'])
def register():
form = RegisterForm()
# Load data from form
username = form.username.data
password = form.password.data
email = form.email.data
if form.validate_on_submit():
# Valid submission
user = User.query.filter_by(username=username).first()
if not user:
# No user with this username
user = User(username, password, email)
db.session.add(user)
db.session.commit()
return redirect(url_for('login'))
else:
flash("User already exists", "danger")
return render_template('user/register.html', form=form)
|
