def change_password(): form = NewPasswordForm() if form.validate_on_submit(): current_user.set_password(form.password.data) db.session.add(current_user) db.session.commit() flash("Password changed successfully!", "success") return redirect(url_for("core.profile")) else: flash_errors(form) return render_template("core/change_password.html", form=form)
def reset_password(username, key): user = User.query.filter_by(username=username, activation_key=key, active=True).first_or_404() form = NewPasswordForm() if form.validate_on_submit(): user.activate() user.set_password(form.password.data) db.session.add(user) db.session.commit() flash("Password changed successfully!", "success") return redirect(url_for("core.home")) else: flash_errors(form) return render_template("core/reset_password.html", form=form)