def resetPassword(user):
if request.method == 'GET':
return render_template('resetPass.html',
user=user)
else:
username = request.form['username']
password = request.form['password']
if not username or not password:
status_message = 'Both fields are required.'
return render_template('resetPass.html',
status_message=status_message,
user=user)
user = session.query(User).filter(User.username == username).first()
if not user:
status_message = 'User could not be found. ' \
'Please verify their username and try again.'
return render_template('resetPass.html',
status_message=status_message,
user=user)
salt = make_salt()
user.salt = salt
user.password = hashlib.sha512(password + salt).hexdigest()
session.commit()
status_message = 'Users password has been changed.'
return render_template('resetPass.html',
status_message=status_message,
user=user)
评论列表
文章目录
