def editPassword():
#change password, verify old password, check new password
if session.get('logged_in'):
if request.method=="POST": #ready to change?
if idea_box.signInVerify(session['username'],request.form['oldPassword'])==1: #a bunch of checks
if request.form['newPassword']==request.form['newPasswordConfirm']:
if idea_box.changePassword(session['username'],request.form['newPassword']):
flash("Password change successful!")
return redirect(url_for('welcome'))
else: flash("Password length incorrect!")
else: flash("Passwords do not match!")
else: flash("Password incorrect")
return render_template('editPassword.html')
else: return redirect(url_for('welcome'))
def login():
#allows for user login
if request.method=='POST':
#check for valid log in
val=idea_box.signInVerify(request.form['username'].lower(),request.form['password'])
if val==1:
session['username']=request.form['username']
session['logged_in']=True
flash("Welcome %s!!"%session['username'])
if session['username']=='admin':
#logged in as admin, redirect to admin's page
return redirect(url_for('admin'))
else:
#not admin, redirect elsewhere
return redirect(url_for('addIdea'))
else:
flash(val) #val is either 1, or an error message
return render_template("welcome.html")
