Replies: 1 comment 1 reply
-
|
Here's an idea that should be pretty straightforward to try out. First - subclass LoginForm and add a validate() method. This method should:
|
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hi there,
I'm working on app that is secured by Flask-Security-Too. The app is planned as Micro-SaaS and to run in small networks. Thus, I designed it like that: An admin has to create a user with an (initial) password. When the user logs in for the first time, the initial password should be changed. E-Mail/Token based registration would be too much in this context. I have already created a "password-changed" column in the database. Users, that have not changed their initial password, should be redirected to a page, where they have to enter the initial password and a new password twice. If valid, the password will be changed and password_changed will set to true.
However, I was wondering how I can overwrite the Flask-Security-Too Login route, to implement this logic. Any ideas?
Beta Was this translation helpful? Give feedback.
All reactions