def reset_password():
# enforce flow control
if not session.get('reset_id'):
flash('Reset improperly initialized.')
return redirect(url_for('ph_bp.reset_init'))
if request.method == 'POST':
password = request.form['password']
if password == request.form['confirm_password']:
if is_valid_password(password):
user = User.query.get(session.pop('reset_id'))
user.password = password
db.session.add(user)
db.session.commit()
flash('Password reset. Please log in.')
return redirect(url_for('ph_bp.login'))
else:
flash('Invalid password.')
else:
flash('Passwords do not match.')
return render_template('reset_password.html')
评论列表
文章目录
