def login():
if request.method == 'POST':
username = request.form['username']
pwd = request.form['password']
user = User(request.form)
status = user._login()
if status:
message='login success'
session['username']=username
return redirect('/index')
else:
return render_template('login.html',message='Bad username or password')
else:
return redirect('/')
