def signup(): form = SignupForm() if request.method == 'GET': return render_template('signup.html', form=form) elif request.method == 'POST': if form.validate_on_submit(): if User.query.filter_by(username=form.username.data).first(): return "Username already exists" else: newuser = User(username=form.username.data, email=form.email.data, password=form.password.data) db.session.add(newuser) db.session.commit() flash("Your account has been successfully created!") return redirect('/') else: return "Form didn't validate"
def signin(): form = SignupForm() if request.method == "GET": return render_template("signin.html", form=form) elif request.method == "POST": if form.validate_on_submit(): user = User.query.filter_by(username=form.username.data).first() if user: if user.salt_tasting(form.password.data): login_user(user) flash("We have successfully signed you in!") return redirect(f'/users/{user.id}') else: flash("Wrong password, access denied") return redirect(request.referrer) else: flash("User does not exist") return redirect(request.referrer) else: flash("Form not validated") return redirect(request.referrer)