Doctorado-ML/beflask
1
0
Fork 0
mirror of https://github.com/Doctorado-ML/beflask.git synced 2025-08-15 23:25:51 +00:00
Code Issues Packages Projects Releases Wiki Activity

admin blueprint

Browse Source
This commit is contained in:
Ricardo Montañana Gómez
2023-06-08 19:58:07 +02:00
parent f7064811d7
commit bc57f6f747
12 changed files with 288 additions and 253 deletions
Download Patch File Download Diff File Expand all files Collapse all files

143
app/main.py
View File

@@ -8,16 +8,15 @@ from flask import (
flash,
redirect,
request,
current_app,
)
from flask_login import login_user, current_user, logout_user, login_required
from werkzeug.urls import url_parse
from .forms import LoginForm, UserForm, UpdatePasswordForm
from .forms import LoginForm
from .models import User, Benchmark, db
main = Blueprint("main", __name__)
INDEX = "main.index"
@main.route("/")
@main.route("/index")
@@ -41,17 +40,17 @@ def index():
def set_benchmark(benchmark_id):
if int(benchmark_id) == current_user.benchmark_id:
flash("Benchmark already selected.")
return redirect(url_for(INDEX))
return redirect(url_for(current_app.config["INDEX"]))
if current_user.admin:
benchmark = Benchmark.query.filter_by(id=benchmark_id).first()
if benchmark is None:
flash("Benchmark not found.", "danger")
return redirect(url_for(INDEX))
return redirect(url_for(current_app.config["INDEX"]))
current_user.benchmark = benchmark
db.session.commit()
else:
flash("You are not an admin.", "danger")
return redirect(url_for(INDEX))
return redirect(url_for(current_app.config["INDEX"]))
@main.route("/config")
@@ -65,7 +64,7 @@ def config():
@main.route("/login", methods=["GET", "POST"])
def login():
if current_user.is_authenticated:
return redirect(url_for(INDEX))
return redirect(url_for(current_app.config["INDEX"]))
form = LoginForm()
if form.validate_on_submit():
user = User.query.filter_by(username=form.username.data).first()
@@ -78,7 +77,7 @@ def login():
flash("Logged in successfully.")
next_page = request.args.get("next")
if not next_page or url_parse(next_page).netloc != "":
next_page = url_for(INDEX)
next_page = url_for(current_app.config["INDEX"])
return redirect(next_page)
return render_template("login.html", title="Sign In", form=form)
@@ -87,130 +86,4 @@ def login():
def logout():
if current_user.is_authenticated:
logout_user()
return redirect(url_for(INDEX))
@main.route("/users")
@login_required
def users():
if not current_user.admin:
flash("You are not an admin.", "danger")
return redirect(url_for(INDEX))
users = User.query.all()
return render_template("users.html", users=users)
@main.route("/user_edit/<int:user_id>", methods=["GET", "POST"])
@login_required
def user_edit(user_id):
if user_id != current_user.id and not current_user.admin:
flash("You are not an admin.", "danger")
return redirect(url_for(INDEX))
form = UserForm(obj=User.query.filter_by(id=user_id).first())
form.benchmark_id.choices = [
(b.id, b.name) for b in Benchmark.query.order_by("name")
]
del form.password
del form.password2
form.user_id = user_id
form.submit.label.text = "Edit User"
if form.validate_on_submit():
form.populate_obj(User.query.filter_by(id=user_id).first())
db.session.commit()
flash("User edited successfully.")
return redirect(url_for("main.users"))
return render_template(
"user.html",
form=form,
alert_type="primary",
title="Edit User",
)
@main.route("/user_delete/<int:user_id>", methods=["GET", "POST"])
@login_required
def user_delete(user_id):
if user_id != current_user.id and not current_user.admin:
flash("You are not an admin.", "danger")
return redirect(url_for(INDEX))
user = User.query.filter_by(id=user_id).first()
form = UserForm(obj=user)
del form.password
del form.password2
for field in form:
if field.type != "SubmitField" and field.type != "CSRFTokenField":
if field.type == "SelectField" or field.type == "BooleanField":
field.render_kw = {"disabled": True}
else:
field.render_kw = {"readonly": True}
form.benchmark_id.choices = [
(b.id, b.name) for b in Benchmark.query.order_by("name")
]
form.submit.label.text = "Delete User"
form.user_id = user_id
if form.validate_on_submit():
flash("User deleted successfully.")
db.session.delete(user)
db.session.commit()
return redirect(url_for("main.users"))
return render_template(
"user.html",
form=form,
alert_type="danger",
title="Delete User",
)
@main.route("/user_new", methods=["GET", "POST"])
@login_required
def user_new():
if not current_user.admin:
flash("You are not an admin.", "danger")
return redirect(url_for(INDEX))
form = UserForm()
user = User()
form.user_id = None
form.benchmark_id.choices = [
(b.id, b.name) for b in Benchmark.query.order_by("name")
]
form.submit.label.text = "New User"
if form.validate_on_submit():
form.populate_obj(user)
user.set_password(form.password.data)
db.session.add(user)
db.session.commit()
flash("User created successfully.")
return redirect(url_for("main.users"))
return render_template(
"user.html", form=form, alert_type="info", title="New User"
)
@main.route(
"/password/<user_id>/<back>",
methods=["GET", "POST"],
)
@main.route(
"/password/<user_id>",
defaults={"back": "None"},
methods=["GET", "POST"],
)
@login_required
def password(user_id, back):
if not current_user.admin and user_id != current_user.id:
flash("You are not an admin.", "danger")
return redirect(url_for(INDEX))
form = UpdatePasswordForm()
user = User.query.filter_by(id=user_id).first()
form.submit.label.text = "Update Password"
destination = "main.index" if back == "None" else back
if form.validate_on_submit():
form.populate_obj(user)
user.set_password(form.password.data)
db.session.commit()
flash("Password updated successfully.")
return redirect(url_for(destination))
return render_template(
"password.html", form=form, back=destination, user_name=user.username
)
return redirect(url_for(current_app.config["INDEX"]))