def check_token(*args, **kwargs): if 'ACCESS_TOKEN' not in session: # Deny if not authorized return redirect(url_for('logged_out_bp.main_page')) else: api_token = session['ACCESS_TOKEN'] # Check if authorized - 1 if yes; Rest is no valid_login = User.decode_token(api_token) if not isinstance(valid_login,int): session.pop('ACCESS_TOKEN', None) session.pop('username', None) session.pop("DO_NOT_REMEMBER", None) return redirect(url_for('logged_out_bp.main_page')) # Pass whatever arrived if authorized return func(*args, **kwargs)