From 594d1c5eb274fd02cb31059becde848d9d38ed33 Mon Sep 17 00:00:00 2001
From: Winston Kouch <KWinston@users.noreply.github.com>
Date: Tue, 5 Apr 2016 10:53:08 -0600
Subject: [PATCH] Add note to not use plain text passwords to views.rst

---
 docs/tutorial/views.rst | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/docs/tutorial/views.rst b/docs/tutorial/views.rst
index 8ecc41a2..618c97c6 100644
--- a/docs/tutorial/views.rst
+++ b/docs/tutorial/views.rst
@@ -94,5 +94,11 @@ if the user was logged in.
         session.pop('logged_in', None)
         flash('You were logged out')
         return redirect(url_for('show_entries'))
+        
+Note that it is not a good idea to store passwords in plain text. You want to
+protect login credentials if someone happens to have access to your database.
+One way to do this is to use Security Helpers from Werkzeug to hash the
+password. However, the emphasis of this tutorial is to demonstrate the basics
+of Flask and plain text passwords are used for simplicity.
 
 Continue with :ref:`tutorial-templates`.