def reset_token(): if request.method == "POST": token = request.form.get("token") if token != current_user.auth_token: raise BadRequest("Can only reset token of currently logged in user") reset = request.form.get("reset") if reset == "yes": try: db_user.update_token(current_user.id) flash.info("Access token reset") except DatabaseException: flash.error("Something went wrong! Unable to reset token right now.") return redirect(url_for("profile.info")) else: token = current_user.auth_token return render_template( "user/resettoken.html", token=token, )
def reset_token(): form = FlaskForm() if form.validate_on_submit(): try: db_user.update_token(current_user.id) flash.info("Access token reset") except DatabaseException: flash.error( "Something went wrong! Unable to reset token right now.") return redirect(url_for("profile.info")) if form.csrf_token.errors: flash.error( 'Cannot reset token due to error during authentication, please try again later.' ) return redirect(url_for('profile.info')) return render_template( "user/resettoken.html", form=form, )
def test_update_token(self): user = db_user.get_or_create('testuserplsignore') old_token = user['auth_token'] db_user.update_token(user['id']) user = db_user.get_by_mb_id('testuserplsignore') self.assertNotEqual(old_token, user['auth_token'])