def join():
    meeting_id = request.params.get("meeting_id")
    username = request.get_cookie("username", settings.cookie_secret)
    password = request.get_cookie("password", settings.cookie_secret)
    ok = api.check(username, password)
    if ok:
        url = api.join_meeting(username, password, meeting_id)
        if url:
            redirect(url)
    redirect("/start?message=permission+denied")
def create():
    username = request.get_cookie("username", settings.cookie_secret)
    password = request.get_cookie("password", settings.cookie_secret)

    ok = api.check(username, password)
    if ok:
        name = request.params.get("name")
        if not api.is_valid(name):
            return "Choose other name"

        attendee_users = request.params.get("to_users").split(",")
        attendee_users.remove("")  # remove last comma ","
        moderator_users = [username.lower()]
        meeting_id = api.create_meeting(name, attendee_users, moderator_users)
        if meeting_id:
            url = api.join_meeting(username, password, meeting_id)
            redirect(url)
    redirect("/start")