def create(): email = request.form.get('email') email_taken = Employee.get_or_none(Employee.email == email) if email_taken: flash('Email already taken.', 'danger') return redirect(url_for('employees.new')) username = request.form.get('username') username_taken = Employee.get_or_none(Employee.username == username) if username_taken: flash('Username already taken', 'danger') return redirect(url_for('employees.new')) password = request.form.get('password') hashed_password = generate_password_hash(password) signup = Employee(email=email, username=username, password=hashed_password) try: signup.save() flash('Employee successfully signed up', 'success') employee = Employee.get_or_none(Employee.username == username) login_user(employee) return redirect(url_for('events.index')) except: flash('Error creating Employee', 'danger') return redirect(url_for('employees.new'))
def loggin(): if current_user.is_authenticated: return redirect(url_for('home')) password_to_check = request.form.get('password') username = request.form.get('username') user = Employee.get_or_none(Employee.username == username) if not user: flash( "We don't seem to have you in our system. Please doublecheck your name." ) return redirect(url_for('sessions.new')) hashed_password = user.password if not check_password_hash(hashed_password, password_to_check): flash("That password is incorrect") return redirect(url_for('sessions.new')) login_user(user) flash('Login Successful', 'success') return redirect(url_for('home'))