def change_password():
identity = get_jwt_identity()
user = User.query.filter_by(Email=identity).first()
form = ChangePasswordForm()
if not user.check_password(form.old_password.data):
return {'error': 'Old password does not match.'}, 403
if not form.validate_on_submit():
return {'errors': form.errors}, 400
user.set_password(form.new_password.data)
db.session.commit()
return {}, 204
