def loginSubmit():
user = User()
email = request.form["email"]
password = request.form["password"]
cursor = db.cursor()
cursor.execute('SELECT * FROM users WHERE email = %s', (email))
result = cursor.fetchone()
if result:
password_hash = result[4]
check_hash = user.checkPasswordHash(password_hash, password)
if check_hash:
return redirect("/home")
else:
raise Exception ("Incorrect password")
else:
raise Exception ("Incorrect email or password", 400)
