def change_password(): identity = get_jwt_identity() user = User.query.filter_by(Email=identity).first() form = ChangePasswordForm() if not user.check_password(form.old_password.data): return {'error': 'Old password does not match.'}, 403 if not form.validate_on_submit(): return {'errors': form.errors}, 400 user.set_password(form.new_password.data) db.session.commit() return {}, 204