def login(): if request.method == "POST": user, pw = request.form["username"], request.form["password"] if has_valid_credentials(user, pw): session["username"] = user return redirect(url_for("calc")) return render_template("login.html", login_style="active", error="Incorrect Username or Password! Please double check them and try again.") else: return render_template("login.html", login_style="active")
def login(): if request.method == "POST": user, pw = request.form["username"], request.form["password"] if has_valid_credentials(user, pw): #Set the username in the session. Apparently flask protects this from being tampered with #via crypto sig session["username"] = user return redirect(url_for("allcall")) return render_template("login.html", error="Incorrect Username or Password! Please double check them and try again.") else: return render_template("login.html")