First of all, is_anonymous()
and is_authenticated()
are each other's inverse. You could define one as the negation of the other, if you want.
You can use these two methods to determine if a user is logged in.
When nobody is logged in Flask-Login's current_user
is set to an AnonymousUser
object. This object responds to is_authenticated()
and is_active()
with False
and to is_anonymous()
with True
.
The is_active()
method has another important use. Instead of always returning True
like I proposed in the tutorial, you can make it return False
for banned or deactivated users and those users will not be allowed to login.