I use Flask-WTF [https://flask-wtf.readthedocs.org/en/latest/]'s What the Form
[http://wtforms.readthedocs.org] module for most of my Flask projects as it
takes care of things like csrf tokens and so on which is a nice piece of mind.
I have recently come across a couple