hidden_tag() to generate csrf_token in flask form:
user_manager = current_app.user_manager
login_form = user_manager.login_form(request.form)
token = login_form.hidden_tag()
user_manager = current_app.user_manager
login_form = user_manager.login_form(request.form)
token = login_form.hidden_tag()