def login():
if request.method == "POST":
user, pw = request.form["username"], request.form["password"]
if has_valid_credentials(user, pw):
session["username"] = user
return redirect(url_for("calc"))
return render_template("login.html", login_style="active", error="Incorrect Username or Password! Please double check them and try again.")
else:
return render_template("login.html", login_style="active")
def login():
if request.method == "POST":
user, pw = request.form["username"], request.form["password"]
if has_valid_credentials(user, pw):
#Set the username in the session. Apparently flask protects this from being tampered with
#via crypto sig
session["username"] = user
return redirect(url_for("allcall"))
return render_template("login.html", error="Incorrect Username or Password! Please double check them and try again.")
else:
return render_template("login.html")
