def mkuser():
un = request.form.get('username')
pw = request.form.get('password')
pw2 = request.form.get('password2')
em = request.form.get('email')
if not un or not pw or not pw2:
flash('all fields are required')
return redirect(url_for('splash'))
if pw != pw2:
flash('passwords must match')
return redirect(url_for('splash'))
if users.find_one({'name':un}):
flash('user already exists')
return redirect(url_for('splash'))
if users.find_one({'email':em}):
flash('email isn\'t unique')
return redirect(url_for('splash'))
#should check for email validity here.
#otherwise we're here.
#usually we're going to ask for more information on a second page,
# real name, payment, etc. but for now just create the user and forward
# to the viewer page.
users.insert({'name':un,
'password':bcrypt.generate_password_hash(pw),
'friends':None, 'feeds':None})
session['username'] = un
session['logged_in'] = True
return ''
def logout():
session.pop('logged_in', None)
flash('You have been logged out.')
return redirect(url_for('splash'))
