def newpassword(token):
if current_user.is_authenticated:
flash("Operation already performed", 'info')
return redirect(url_for('page.home'))
form = NewPasswordForm()
if form.validate_on_submit():
user = User.confirm_reset_token(token)
if user is None:
flash('Your reset token has expired or invalid', 'danger')
return redirect(url_for('user.requestpasswordreset'))
user.password = form.password.data
db.session.add(user)
db.session.commit()
flash('Your password has been reset successfully.', 'success')
return redirect(url_for('user.login'))
return render_template('user/newpassword.html', form=form)
def test_confirm_reset_token(self, token_reset):
user = User.confirm_reset_token(token_reset)
assert user == 1
