def editPassword(): #change password, verify old password, check new password if session.get('logged_in'): if request.method=="POST": #ready to change? if idea_box.signInVerify(session['username'],request.form['oldPassword'])==1: #a bunch of checks if request.form['newPassword']==request.form['newPasswordConfirm']: if idea_box.changePassword(session['username'],request.form['newPassword']): flash("Password change successful!") return redirect(url_for('welcome')) else: flash("Password length incorrect!") else: flash("Passwords do not match!") else: flash("Password incorrect") return render_template('editPassword.html') else: return redirect(url_for('welcome'))
def login(): #allows for user login if request.method=='POST': #check for valid log in val=idea_box.signInVerify(request.form['username'].lower(),request.form['password']) if val==1: session['username']=request.form['username'] session['logged_in']=True flash("Welcome %s!!"%session['username']) if session['username']=='admin': #logged in as admin, redirect to admin's page return redirect(url_for('admin')) else: #not admin, redirect elsewhere return redirect(url_for('addIdea')) else: flash(val) #val is either 1, or an error message return render_template("welcome.html")