def reset_token(token):
if current_user.is_authenticated:
return redirect(url_for('index'))
user = User.verify_reset_token(token)
if user is None:
flash('That token is invalid or expires', 'warning')
return redirect(url_for('reset_request'))
form = ResetPasswordForm()
if form.validate_on_submit():
password_hash = generate_password_hash(form.password.data)
user.password_hash = password_hash
db.session.commit()
flash("Your password has been updated! You can now login")
return redirect(url_for('login'))
return render_template('reset_token.html',
title="Reset Password",
form=form)
def reset_token(token):
if current_user.is_authenticated:
return redirect(url_for('home'))
user = User.verify_reset_token(token)
if user is None:
flash('That is an invalid or expired token', 'warning')
return redirect(url_for('reset_request'))
form = ResetPasswordForm()
if form.validate_on_submit():
hashed_password = bcrypt.generate_password_hash(
form.password.data).decode('utf-8')
user.password = hashed_password
db.session.commit()
flash('Your password has been updated! You are now able to log in',
'success')
return redirect(url_for('login'))
return render_template('reset_token.html',
title='Reset Password',
form=form)
