def signup():
form = SignupForm()
if request.method == 'GET':
return render_template('signup.html', form=form)
elif request.method == 'POST':
if form.validate_on_submit():
if User.query.filter_by(username=form.username.data).first():
return "Username already exists"
else:
newuser = User(username=form.username.data,
email=form.email.data,
password=form.password.data)
db.session.add(newuser)
db.session.commit()
flash("Your account has been successfully created!")
return redirect('/')
else:
return "Form didn't validate"
def signin():
form = SignupForm()
if request.method == "GET":
return render_template("signin.html", form=form)
elif request.method == "POST":
if form.validate_on_submit():
user = User.query.filter_by(username=form.username.data).first()
if user:
if user.salt_tasting(form.password.data):
login_user(user)
flash("We have successfully signed you in!")
return redirect(f'/users/{user.id}')
else:
flash("Wrong password, access denied")
return redirect(request.referrer)
else:
flash("User does not exist")
return redirect(request.referrer)
else:
flash("Form not validated")
return redirect(request.referrer)
