def update_pw_form(): if request.method == 'POST': if 'email' in request.form: session['email'] = request.form['email'] session['secret_code'] = str(reset_password(session['email'])) return render_template('reset_password.html', error=False, code='no_code') if 'code' in request.form: code = request.form['code'] if session['secret_code'] == code: return render_template('reset_password.html', error=False, code='no_error') else: session.pop('secret_code', None) session.pop('email', None) return render_template('reset_password.html', error=False, code='error') if 'password' in request.form: password = request.form['password'] password_confirm = request.form['password_confirm'] if password == password_confirm: update_password(session['email'], password) name = check_user(session['email'], password) session.pop('secret_code', None) session.pop('email', None) session['account'] = name return redirect('/users/' + name) else: return render_template('reset_password.html', error=False, code='no_error', confirm_password_error=True) return render_template('reset_password.html', error=True)
def reset(): username = str(request.form['username']) password = str(request.form['password']) update_password(username, password) flash('Password changed!') return render_template('login.html')
def update_p(): if 'username' in session: if request.method == 'POST': dbHandler.update_password(request) return redirect(url_for('main')) else: return render_template('update_p.html') else: msg = "user dont exists" return render_template("error.html", msg=msg)
def passwordreset(): form = PasswordResetForm() if request.method == 'POST': if form.validate() == False: return render_template('passwordreset.html', form=form) else: test = User.query.filter_by(Members_Email = form.Members_Email.data).first() test.Members_Passhash = update_password(form.Members_Password.data) usertempdelete = UserReset.query.filter_by(Members_Email = form.Members_Email.data).first() db.session.add(test) db.session.delete(usertempdelete) db.session.commit() return redirect(url_for('profile')) elif request.method == 'GET': return render_template('passwordreset.html', form=form)
def changepassword(): form = ChangePasswordForm() if 'Members_Email' not in session: return redirect(url_for('signin')) if request.method == 'POST': if form.validate() == False: return render_template('changepassword.html', form=form) else: test = User.query.filter_by(Members_Email = session['Members_Email']).first() test.Members_Passhash = update_password(form.Members_Password.data) db.session.add(test) db.session.commit() return redirect(url_for('profile')) elif request.method == 'GET': return render_template('changepassword.html', form=form)