Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- @app.route('/login', methods=['GET', 'POST'])
- def login():
- if request.method == 'GET':
- if 'username' in session:
- return redirect('/')
- return render_template('static_templates/login.html')
- if request.method == 'POST':
- username = request.form['username']
- password = request.form['password']
- cursor = g.db.execute(
- 'SELECT id, username, password FROM user WHERE username=:username;',
- {'username': username})
- user = cursor.fetchone()
- hashed = md5(password.encode('utf-8')).hexdigest()
- #if password is correct
- if user and user[2] == hashed:
- session['user_id'] = user[0]
- session['username'] = username
- return redirect('/')
- #if password is incorrect
- else:
- flash("Invalid username or password")
- return render_template('static_templates/login.html')
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement