def login(): username = '' if request.method == 'POST': username = get_str('name') password = get_str('password') if username and password: user = User.query.filter_by(name=username).first() if user and password_verify(password, user.password): session['user'] = user.id return redirect(url_for('cms_page2')) return render_template('user/login.html', username=username)
def logout(): # remove the username from the session if it's there session.pop('user', None) session.clear() return redirect(url_for('cms_page2'))