def settings(): loggedin_user = get_user() user, allplayers, leaders = get_leaderboard(loggedin_user) form = PasswordResetForm(request.form) deleteform = DeleteAccountForm(request.form) title = "{}'s account settings".format(user.name) if request.method == "POST" and form.validate(): if form.old_password.data == user.password: flash("Your password has been reset.") user.password = form.new_password.data db.session.commit() password_reset_email(user) return redirect(url_for("user")) else: flash("Your old password was incorrect. Please try again.") return redirect(url_for("settings")) elif request.method == "POST" and not form.validate(): flash("Something went wrong; please try again.") return redirect(url_for("settings")) else: return render_template( "settings.html", title=title, loggedin_user=loggedin_user, user=user, form=form, deleteform=deleteform )
def settings(): loggedin_user = get_user() user, allplayers, leaders = get_leaderboard(loggedin_user) form = PasswordResetForm(request.form) deleteform = DeleteAccountForm(request.form) title = "{}'s account settings".format(user.name) if request.method == 'POST' and form.validate(): if form.old_password.data == user.password: flash("Your password has been reset.") user.password = form.new_password.data db.session.commit() password_reset_email(user) return redirect(url_for('user')) else: flash("Your old password was incorrect. Please try again.") return redirect(url_for('settings')) elif request.method == 'POST' and not form.validate(): flash("Something went wrong; please try again.") return redirect(url_for('settings')) else: return render_template('settings.html', title=title, loggedin_user=loggedin_user, user=user, form=form, deleteform=deleteform)
def put(self): data = ImmutableMultiDict(request.json) reset_password_form = PasswordResetForm(data, csrf_enabled=False) if reset_password_form.validate(): reset_password_form.save() return {"status": "success", "message": "Password reset done"} return reset_password_form.errors
def passwordreset(): form = PasswordResetForm() if request.method == 'POST': if form.validate() == False: return render_template('passwordreset.html', form=form) else: test = User.query.filter_by(Members_Email = form.Members_Email.data).first() test.Members_Passhash = update_password(form.Members_Password.data) usertempdelete = UserReset.query.filter_by(Members_Email = form.Members_Email.data).first() db.session.add(test) db.session.delete(usertempdelete) db.session.commit() return redirect(url_for('profile')) elif request.method == 'GET': return render_template('passwordreset.html', form=form)