# Private Messaging Extras!
![extra](https://user-images.githubusercontent.com/51918954/63889995-ad8e0d00-c9a7-11e9-9f50-94a70c253f42.jpg)


## Option 1: Passwords for Login 🙅‍♀️
credit: [flask_mega_tutorial](https://blog.miguelgrinberg.com/post/the-flask-mega-tutorial-part-v-user-logins)

a) password hashing! this creates some security for the users and requires real authentication

In [None]:
# one easy implementation of this is through the use of the Werkzeug package

from werkzeug.security import generate_password_hash
hash = generate_password_hash('foobar')

>>> hash
'pbkdf2:sha256:50000$vT9fkZM8$04dfa35c6476acf7e788a1b5b3c35e217c78dc04539d295f011f01f18cd2175f'

In [None]:
# The verification process is done with a second function from Werkzeug, as follows:

from werkzeug.security import check_password_hash

>>> check_password_hash(hash, 'foobar')
True
>>> check_password_hash(hash, 'barfoo')
False

This can be implemented as a method in your User Document!

b) logging users in

In [2]:
class User(Document, UserMixin, AnonymousUserMixin):
    password = StringField(max_length = 27, Required=True)
    # ...
    
    def set_password(self, password):
        self.password_hash = generate_password_hash(password)
        
    def check_password(self, password):
        return check_password_hash(self.password_hash, password)

SyntaxError: unexpected EOF while parsing (<ipython-input-2-b6ab8828fdea>, line 4)

As for your Flask_login, just add a check for the correct password!

In [None]:
# EXAMPLE
from flask import flash

@app.route('/login', methods=['GET', 'POST'])
def login():
    if current_user.is_authenticated:
        return redirect(url_for('index'))
    
    form = LoginForm
    
    if form.valiate_on_submit():
        #query user
        if User is None or not user.check_password(form.password.data)
            flash('Invalid username or password')
            # ...
            
        login_user(user, remember=form.remember_me.data)

In [None]:
@login_required # also works with passwords!

c) logging users out

In [None]:
# similar to login_user!

from flask_login import logout_user

In [None]:
@app.route('/logout')
def logout():
    logout_user()
    return redirect(url_for('index'))

###### Make sure to expose a logout link to users somewhere in your app!

# Option 2: User Avatars 🤠 

First, use a bootstrap media selection! (within a new template)

credit [CoreyMSchafer](https://github.com/CoreyMSchafer/code_snippets/blob/master/Python/Flask_Blog/07-User-Account-Profile-Pic/flaskblog/routes.py) or he has a youtube chanel as well

In [None]:
{% extends 'chat_site_home.html' %}
{% block content %}

<div class="content-section">
  <div class="media">
    <img class="rounded-circle-account-img" src="{{ image_file }}">
    <div class="media-body">
      <h2 class="account-heading">{{ current_user.username }}</h2>
      <p class="text-secondary">username@email.com</p>
    </div>
  </div>
  <!-- FORM HERE -->
</div>

{% endblock content %}

1. image_file will be added to your User Document!
2. current_user.username will be imported when rendering the template

In [None]:
class User(Document, UserMixin, AnonymousUserMixin):
    # ...
    
    image_file = StringField(unique=True, default = "default.jpg")
    
    # ...
    
    def __repr__(self):
        return '<User {} {}>'.format(self.username, self.image_file)

You will somehow need to ask your user for their picture, perhaps in a form, then relay that information to your template, wherever you wish to place that!

Again, more information at the lik above!

# Option 3: Changing Messages Style 🎊

a) changing color

In [None]:
# simply change the <span> tag in your template html code to 
# <font> and insert your color class

# original:
<span id="message{{ message.id }}">{{ message.body }}</span>

# new: 
<font class="purple" id="message{{ message.id }}">{{ message.body }}</font>