-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path2app.py
38 lines (29 loc) · 1.06 KB
/
2app.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
#Este archivo y 2index.html tienen como proposito explorar otras formas de usar CSRF tokens
#Usando Flask-wtf
from flask import Flask, render_template, request, session, redirect, url_for
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired
from flask_wtf.csrf import CSRFProtect, CSRFError
import os
app = Flask(__name__)
app.secret_key = os.urandom(16)
csrf = CSRFProtect(app)
@app.route('/', methods=['GET','POST'])
def index():
if request.method == 'GET':
session['balance'] = 0
return render_template('2index.html')
else:
print ('POST request on /')
amount = request.form['amount']
session['balance'] -= int(amount)
return redirect(url_for('transfer_success'))
@app.route('/transfer-success')
def transfer_success():
return render_template('transfer.html')
@app.errorhandler(CSRFError)
def handle_csrf_error(e):
return(render_template('csrf_error.html', status=e.description))
if __name__ == '__main__':
app.run(debug=True)