def register():
if request.method == "GET":
country_list = countries.get_list()
return render_template("register.html", countries=country_list)
if request.method == "POST":
username = request.form["username"]
password = request.form["password"]
try:
country_id = int(request.form["country_id"])
except:
return error.message("Select a country from the list")
if users.register(username, password, country_id):
return redirect("/")
else:
return error.message("Registration failed")
def login():
if request.method == "GET":
return render_template("login.html")
if request.method == "POST":
username = request.form["username"]
password = request.form["password"]
if users.login(username, password):
return redirect("/")
else:
return error.message("Logging in failed")
def new_review(id):
if request.method == "GET":
users.require_status(0)
films.exists(id)
name = films.get_name(id)
return render_template("new_review.html", name=name, id=id)
if request.method == "POST":
if session["csrf_token"] != request.form["csrf_token"]:
abort(403)
user_id = users.get_user_id()
film_id = id
content = request.form["content"]
if len(content) < 10:
return error.message("Review content too short or doesn't exist")
elif len(content) > 1000:
return error.message("Review content too long")
grade = int(request.form["grade"])
if reviews.send(user_id, film_id, content, grade):
return redirect(url_for("film", id=id))
else:
return error.message("Sending failed")
def new_screenwriter():
if request.method == "GET":
users.require_status(1)
country_list = countries.get_list()
return render_template("new_screenwriter.html", countries=country_list)
if request.method == "POST":
token = request.form["csrf_token"]
users.check_token(token)
name = request.form["name"]
if len(name) == 0:
return error.message("Name cannot be empty")
if len(name) > 50:
return error.message("Name is too long")
description = request.form["description"]
if len(description) == 0:
return error.message("Description cannot be empty")
if len(description) > 500:
return error.message("Description is too long")
try:
country_id = int(request.form["country_id"])
except:
return error.message("Select a country from the list")
if screenwriters.send(name, description, country_id):
return redirect("/new_film")
else:
return error.message("Sending failed")
def unban(id):
if request.method == "GET":
users.exists(id)
users.require_status(1)
name = users.get_name(id)
return render_template("unban.html", name=name, id=id)
if request.method == "POST":
if session["csrf_token"] != request.form["csrf_token"]:
abort(403)
if users.unban(id):
return redirect("/users")
else:
return error.message("Banning user failed")
def ban(id):
if request.method == "GET":
users.exists(id)
users.require_status(1)
name = users.get_name(id)
return render_template("ban.html", name=name, id=id)
if request.method == "POST":
token = request.form["csrf_token"]
users.check_token(token)
if users.ban(id):
return redirect("/users")
else:
return error.message("Banning user failed")
def restore(id):
if request.method == "GET":
if films.visible(id) == 0:
users.require_status(1)
name = films.get_name(id)
return render_template("restore.html", name=name, id=id)
if request.method == "POST":
token = request.form["csrf_token"]
users.check_token(token)
if films.restore(id):
return redirect("/")
else:
return error.message("Restoring film failed")
def delete(id):
if request.method == "GET":
films.exists(id)
users.require_status(1)
name = films.get_name(id)
return render_template("delete.html", name=name, id=id)
if request.method == "POST":
token = request.form["csrf_token"]
users.check_token(token)
if films.delete(id):
return redirect("/")
else:
return error.message("Deleting film failed")
def country():
if request.method == "GET":
users.require_status(1)
count = countries.count()
country_list = countries.get_details()
return render_template("countries.html",
count=count,
countries=country_list)
if request.method == "POST":
if session["csrf_token"] != request.form["csrf_token"]:
abort(403)
if countries.create_list():
return redirect("/countries")
else:
return error.message("Creating country list failed")
def new_film():
if request.method == "GET":
users.require_status(1)
country_list = countries.get_list()
language_list = languages.get_list()
genre_list = genres.get_list()
director_list = directors.get_list()
screenwriter_list = screenwriters.get_list()
return render_template("new_film.html",
countries=country_list,
languages=language_list,
genres=genre_list,
directors=director_list,
screenwriters=screenwriter_list)
if request.method == "POST":
token = request.form["csrf_token"]
users.check_token(token)
name = request.form["name"]
if len(name) == 0:
return error.message("Name cannot be empty")
if len(name) > 50:
return error.message("Name is too long")
description = request.form["description"]
if len(description) == 0:
return error.message("Description cannot be empty")
if len(description) > 500:
return error.message("Description is too long")
try:
year = int(request.form["year"])
except ValueError:
return error.message("Year cannot be empty")
if year < 1888 or year > 2021:
return error.message("Enter a correct year")
try:
country_id = int(request.form["country_id"])
except:
return error.message("Select a country from the list")
try:
language_id = int(request.form["language_id"])
except:
return error.message("Select a language from the list or add new")
if language_id == 0:
new_language = request.form["new_language"]
if len(new_language) == 0:
return error.message("Language cannot be empty")
if len(new_language) < 3:
return error.message("Language name is too short")
languages.send(new_language)
language_id = languages.count()
try:
genre_id = int(request.form["genre_id"])
except:
return error.message("Select a genre from the list or add new")
if genre_id == 0:
new_genre = request.form["new_genre"]
genres.send(new_genre)
genre_id = genres.count()
try:
director_id = int(request.form["director_id"])
except:
return error.message("Select a director from the list or add new")
try:
screenwriter_id = int(request.form["screenwriter_id"])
except:
return error.message("Select a writer from the list or add new")
if films.send(name, description, year, country_id, language_id,
genre_id, director_id, screenwriter_id):
return redirect("/")
else:
return error.message("Sending failed")