def settings():
form = AccountForm(obj=current_user)
# Set new labels
form.password.label.text = 'New password'
form.confirm_pass.label.text = 'Confirm New Password'
if form.validate_on_submit():
current_user.first_name = request.form.get('first_name')
current_user.last_name = request.form.get('last_name')
current_user.username = request.form.get('username')
current_user.mobile = request.form.get('mobile')
old_pass = request.form.get('old_password')
new_pass = request.form.get('password')
if old_pass != '' and new_pass != '' and password_decrypt(
old_pass, current_user.password):
current_user.password = password_encrypt(new_pass)
db.session.commit()
flash('Account settings modified', 'success')
return redirect(url_for('main.settings_page'))
else:
flash('Account settings not modified', 'danger')
return render_template('pages/settings.html', form=form)
def reset_password(username):
account = Account.find_account(username)
account.password = password_encrypt(request.form.get('generated_password'))
db.session.commit()
flash(
'Password for {0} has been reset: {1}'.format(
account.username, request.form.get('generated_password')),
'success')
return redirect(url_for('it.edit_page', username=username))
def reset_password(reset_token):
account = Account.deserialize_token(reset_token)
form = AccountForm(obj=account)
if account and form.validate_on_submit():
account.password = password_encrypt(request.form.get('password'))
account.save()
flash('Password has been reset', 'success')
return redirect(url_for('main.login_page'))
flash('An error occurred', 'danger')
return redirect(url_for('main.login_page'))
def change_password():
form = AccountForm(obj=current_user)
if form.validate_on_submit():
if password_decrypt(request.form.get('old_password'), current_user.password):
current_user.password = password_encrypt(request.form.get('password'))
current_user.save()
flash('Password changed succesfully', 'success')
else:
flash('Entered password does not match your current password', 'danger')
else:
flash('Password was not changed', 'danger')
return redirect(url_for('main.profile'))
def signup():
if(current_user.is_authenticated and current_user.is_active):
return redirect(url_for('main.home'))
form = AccountForm(request.form)
if form.validate_on_submit():
account = Account()
form.populate_obj(account)
account.password = password_encrypt(account.password)
account.save()
if login_user(account) and account.is_active():
account.update_activity_tracking(request.remote_addr)
return redirect(url_for('main.home'))
return render_template('/pages/signup.html', form=form)
from app.config import db
from app.models import Account
from lib import password_encrypt
db.drop_all()
db.create_all()
account1 = Account(first_name='Kristopher Matthew',
last_name='De Jesus',
username='******',
email='*****@*****.**',
mobile='09167312622',
password=password_encrypt('kristopher@23'),
role='it')
account2 = Account(first_name='Katherine',
last_name='Domingo',
username='******',
email='*****@*****.**',
mobile='09174167279',
password=password_encrypt('Homestuck1998'),
role='admin')
db.session.add(account1)
db.session.add(account2)
db.session.commit()