def put_user_by_id(id): # Note: only admins can access this endpoint. data, _ = edit_user_admin_serializer.loads(request.data) Users.query.filter_by(id=id).update(data['attributes']) db.session.commit() response = jsonify() response.status_code = 204 return response
def patch_user_by_id(id): if current_user.is_admin: data, errors, = edit_user_admin_serializer.loads(request.data) elif current_user.id != id: raise AdminRequiredError() else: data, errors, = edit_user_profile_serializer.loads(request.data) Users.query.filter_by(id=id).update(data['attributes']) db.session.commit() response = jsonify() response.status_code = 204 return response