def login(): if request.method == 'POST': username = request.form['username'] pwd = request.form['password'] user = User(request.form) status = user._login() if status: message='login success' session['username']=username return redirect('/index') else: return render_template('login.html',message='Bad username or password') else: return redirect('/')