def newpassword(token): if current_user.is_authenticated: flash("Operation already performed", 'info') return redirect(url_for('page.home')) form = NewPasswordForm() if form.validate_on_submit(): user = User.confirm_reset_token(token) if user is None: flash('Your reset token has expired or invalid', 'danger') return redirect(url_for('user.requestpasswordreset')) user.password = form.password.data db.session.add(user) db.session.commit() flash('Your password has been reset successfully.', 'success') return redirect(url_for('user.login')) return render_template('user/newpassword.html', form=form)
def test_confirm_reset_token(self, token_reset): user = User.confirm_reset_token(token_reset) assert user == 1