def newuser():
message = ""
if request.method == "POST":
username = request.form["login"]
password = request.form["password"]
password_confirmation = request.form["passwordconfirmation"]
role = request.form["role"]
if password != password_confirmation:
message = "error: password and password confirmation don't match"
else:
user = User.newUser(username, role, password, SESSION)
if user == None:
message = "error: username already in use"
else:
session["username"] = user.name
if "admin" in user.role:
session["admin"] = True
else:
session["admin"] = False
return redirect(url_for("index"))
return render_template("newuser_modern.html", error=message)
