dhrrgn/forms.py

## forms.py
from flask.ext.wtf import DataRequired, TextField, PasswordField, Email
from seasurf_form import SeaSurfForm

class LoginForm(SeaSurfForm):
    email = TextField('email', validators=[DataRequired(), Email()])
    password = PasswordField('password', validators=[DataRequired()])


## login.html
<form method="post" action="{{ url_for('login') }}">
    {{ form.hidden_tag() }}

    <p>
        {{form.email.label }} {{ form.email(size=50) }}
    </p>
    <p>
        {{form.password.label }} {{ form.password(size=50) }}
    </p>
    <p>
        <input type="submit" value="Login">
    </p>
</form>

## seasurf_form.py
from flask.ext.wtf import Form, HiddenField
from flask import g

#import your app here
from wsgi import app


class SeaSurfForm(Form):
    @staticmethod
    @app.before_request
    def add_csrf():
        csrf_name = app.config.get('CSRF_COOKIE_NAME', '_csrf_token')
        setattr(SeaSurfForm, csrf_name, HiddenField(default=getattr(g, csrf_name)))
	from flask.ext.wtf import DataRequired, TextField, PasswordField, Email
	from seasurf_form import SeaSurfForm

	class LoginForm(SeaSurfForm):
	email = TextField('email', validators=[DataRequired(), Email()])
	password = PasswordField('password', validators=[DataRequired()])
	<form method="post" action="{{ url_for('login') }}">
	{{ form.hidden_tag() }}

	<p>
	{{form.email.label }} {{ form.email(size=50) }}
	</p>
	<p>
	{{form.password.label }} {{ form.password(size=50) }}
	</p>
	<p>
	<input type="submit" value="Login">
	</p>
	</form>
	from flask.ext.wtf import Form, HiddenField
	from flask import g

	#import your app here
	from wsgi import app


	class SeaSurfForm(Form):
	@staticmethod
	@app.before_request
	def add_csrf():
	csrf_name = app.config.get('CSRF_COOKIE_NAME', '_csrf_token')
	setattr(SeaSurfForm, csrf_name, HiddenField(default=getattr(g, csrf_name)))