def newBook(store_id):
if 'username' not in login_session:
return redirect('/login')
store = session.query(BookStores).filter_by(id=store_id).one()
if login_session['user_id'] != store.user_id:
return "<script>function myFunction() {alert('You are not authorized to books to this store. Please create your own store in order to add items.');}</script><body onload='myFunction()''>"
if request.method == 'POST':
newItem = Items(name=request.form['name'],
description=request.form['description'],
price=request.form['price'],
course=request.form['course'],
store_id=store_id,
user_id=store.user_id)
session.add(newItem)
session.commit()
flash('New Book %s Successfully Created' % newItem.name)
return redirect(url_for('showItems', store_id=store_id))
else:
return render_template('newbookitem.html', store_id=store_id)
def newItems(categories_name):
if 'username' not in login_session:
return redirect('/login')
if request.method == 'POST':
session = DBSession()
category = session.query(Categories).filter_by(
name=categories_name).one_or_none()
newItem = (Items(name=request.form['name'],
description=request.form['description'],
categories_id=category.id,
user_id=login_session['user_id']))
session.add(newItem)
session.commit()
session.close()
flash("new item under this category created !")
return redirect(
url_for('categoriesitems', categories_name=categories_name))
else:
return render_template('newitem.html', categories_name=categories_name)
def newBloodType():
if 'username' not in login_session:
return redirect('/login')
if request.method == 'POST':
newBloodType = BloodType(name=request.form['name'],
status=request.form['status'],
user_id=login_session['user_id'])
newInfoBloodType = Items(name=request.form['name'],
description=request.form['description'],
user_id=login_session['user_id'],
blood_type=newBloodType)
session.add(newBloodType)
session.add(newInfoBloodType)
flash('New Blood Type %s Successfully Created' % newBloodType.name)
session.commit()
return redirect(url_for('BloodBank'))
else:
return render_template('newBloodType.html')
def newItem():
if 'username' not in login_session:
return redirect('/login')
#categories = session.query(Category).all()
categories = session.query(Category).order_by(asc(Category.name))
#allow everyone to add items to a category
if request.method == 'POST':
category_id = request.form['category_id']
newItem = Items(name=request.form['name'],
description=request.form['description'],
price=request.form['price'],
category_id=category_id,
user_id=login_session['user_id'])
session.add(newItem)
session.commit()
flash('New Item %s Successfully Created' % (newItem.name))
return redirect(url_for('showItems', category_id=category_id))
else:
return render_template('newItem.html', categories=categories)
def addItems(categoryName):
category = session.query(Categories).filter_by(
categoryName=categoryName).one()
if category.user_id != login_session['user_id']:
return "<script>function myFunction(){alert('Not Authorized');}\
</script><body onload = 'myFunction()'>"
if request.method == 'POST':
itemToAdd = Items(itemName=request.form['name'],
description=request.form['description'],
price=request.form['price'],
category_name=categoryName,
user_id=login_session['user_id'])
session.add(itemToAdd)
session.commit()
flash("Item %s successfully added in %s !" %
(itemToAdd.itemName, category.categoryName))
return redirect(url_for('showItems', categoryName=categoryName))
else:
return render_template('addItem.html', category=category)
def Add_item(cat_name):
if 'username' not in login_session:
return redirect('/login')
categories = session.query(Categories).order_by(asc(Categories.name))
cat = session.query(Categories).filter_by(name=cat_name).one()
# if login_session['user_id'] != cat.user_id:
# return "<script>function myFunction() {alert('You are not authorized'+
# ' to delete menu items to this restaurant. Please create your own'+
# ' restaurantin order to delete items.');}</script>"
if request.method == 'POST':
newitem = Items(name=request.form['name'],
description=request.form['description'],
cat_id=cat.id)
session.add(newitem)
session.commit()
return redirect(url_for('Display_Items', cat_name=cat_name))
else:
return render_template('additem.html', cat=cat)
def createSportItem(sport_id):
if 'username' not in login_session:
return redirect('/login/')
sport = session.query(Sport).filter_by(id=sport_id).one()
if login_session['user_id'] != sport.user_id:
return "<script>function myFunction() {alert('You are not authorized \
to add sport items to this sport. Please create your own sport\
in order to add items.');}</script><body onload='myFunction()''>"
if request.method == 'POST':
newItem = Items(name=request.form['name'],
description=request.form['description'],
price=request.form['price'],
sport_id=sport_id,
user_id=sport.user_id)
session.add(newItem)
session.commit()
return redirect(url_for('showItems', sport_id=sport_id))
else:
return render_template('newSportItem.html', sport_id=sport_id)
def newItem(category_id):
category = session.query(Category).filter_by(id=category_id).one()
if login_session['user_id'] != category.user_id:
return '''<script>function myFunction()
{alert('You are not authorized to add items to this category.
Please create your own items category in order to add items.');}
</script><body onload='myFunction()'>'''
if request.method == 'POST':
newItem = Items(name=request.form['name'],
description=request.form['description'],
picture_url=request.form['picture_url'],
date=datetime.now(),
category_id=category_id,
user_id=category.user_id)
session.add(newItem)
session.commit()
flash('New %s Item Successfully Created' % (newItem.name))
return redirect(url_for('showCatalog', category_id=category_id))
else:
return render_template('newitem.html', category_id=category_id)
def addItem():
"""Load form to allow for adding an item and adds item to DB."""
session = DBSession()
if 'username' not in login_session:
return redirect('/login')
else:
if request.method == 'POST':
newItem = Items(title=request.form['title'],
description=request.form['description'],
cat_id=request.form['catId'],
creator_email=login_session['username'])
session.add(newItem)
session.commit()
flash('New item added successfully!')
return redirect('/')
else:
userUsername = login_session['username']
return render_template('add.html',
userUsername=userUsername,
loggedIn=True)
def insert_item():
if request.method == 'POST':
category = session.query(Categories).\
filter_by(name=request.form['categories']).one()
new_item = Items(title=request.form['title'],
description=request.form['description'],
creation_date=datetime.now(),
category_id=category.id,
user_id=login_session['user_id'])
session.add(new_item)
session.commit()
return redirect(url_for('insert_item',
categories=get_categories(),
session_token=get_session_token()))
else:
return render_template('insert_item.html',
categories=get_categories(),
session_token=get_session_token())
def add_item():
DBSession = sessionmaker(bind=engine)
session = DBSession()
if request.method == 'POST':
name = request.form['name']
description = request.form['description']
price = request.form['price']
category = request.form['item_category']
category_id = (session.query(Categories)
.filter_by(name=category.replace('-', ' '))
.one())
# Error Message
if not request.form['name']:
flash('Please add item name')
return redirect(url_for('add_item'))
if not request.form['description']:
flash('Please add a description')
return redirect(url_for('add_item'))
if not request.form['price']:
flash('Please add a description')
return redirect(url_for('add_item'))
# Query database
item_name_in_db = (session.query(Items.name)
.filter_by(name=name)
.all())
user_id = (session.query(Users)
.filter_by(email=login_session['email'])
.one()).id
new_item = Items(name=name,
description=description,
category_id=category_id.id,
price=price,
user_id=user_id)
session.add(new_item)
session.commit()
print('Item "{}" created.'.format(new_item.name))
return redirect(url_for('home'))
else:
categories = session.query(Categories).all()
return render_template('add_item.html',
categories=categories)
def addItem(category_name):
if 'username' not in login_session:
return redirect(url_for('showCategory', category_name=category_name))
category = session.query(Categories).filter_by(name=category_name).one()
if request.method == 'POST':
newItem = Items(name=request.form['name'],
short_description=request.form['short_description'],
description=request.form['description'],
price=request.form['price'],
image=request.form['image'],
user_id=login_session['user_id'],
category_id=category.id)
session.add(newItem)
session.commit()
flash("Item successfully added.")
return redirect(url_for('showCategory', category_name=category.name))
else:
categories = session.query(Categories)
return render_template("addItem.html",
category=category,
categories=categories)
def newItem(category_id):
if 'username' not in login_session:
return redirect('/login')
category = session.query(Category).filter_by(id=category_id).one()
if login_session['user_id'] != category.user_id:
return "<script>function myFunction() {alert('You are not authorized to add items to this category. Please create your own category in order to add items.');}</script><body onload='myFunction()''>"
if request.method == 'POST':
newItem = Items(name=request.form['name'],
description=request.form['description'],
image=imageRetrive(category.name,
request.form['name']),
category_id=category_id,
user_id=category.user_id)
session.add(newItem)
session.commit()
flash("New Item %s Succesffuly Created!" % newItem.name)
return redirect(url_for('categoryList', category_id=category.id))
else:
return render_template('newitem.html',
category=category,
category_id=category.id)
def itemCreate(category_id):
if 'username' not in login_session:
return redirect('/login')
category = session.query(Category).filter_by(id=category_id).one()
if login_session['user_id'] != category.user_id:
return "<script>function myFunction() {alert" \
"('You are not authorized to add items. " \
"Please create your own catalog in order to add items.');}" \
"</script><body onload='myFunction()''>"
if request.method == 'POST':
newItem = Items(name=request.form['name'],
description=request.form['description'],
user_id=category.user_id,
category_id=category_id)
session.add(newItem)
session.commit()
return redirect(url_for('categoryItems', category_id=category_id))
else:
return render_template('createItem.html',
category_id=category_id,
category=category)
def newItem():
if 'username' not in login_session:
return redirect('/login')
if request.method == 'POST':
new_item = Items(name=request.form['name'],
description=request.form['description'],
category=request.form['category'],
user_id=login_session['user_id'])
temp_category = request.form['category']
session.add(new_item)
session.commit()
flash("New Item created!")
category_temp = session.query(Categories).filter_by(
name=temp_category).first()
return redirect(url_for('viewItems', category_id=category_temp.id))
else:
categories = session.query(Categories).all()
return render_template('create.html',
categories=categories,
user=login_session)
def addItem():
if 'username' not in login_session:
return redirect('/login')
categories = session.query(Category).all()
if request.method == 'POST':
newItem = Items(name=request.form['name'],
description=request.form['description'],
picture=request.form['picture'],
category=session.query(Category).filter_by(
name=request.form['category']).one(),
date=datetime.datetime.now(),
user_id=login_session['user_id'])
session.add(newItem)
session.commit()
flash('Item Successfully Added!')
return redirect(url_for('showCatalog'))
else:
user = getUserInfo(login_session['user_id'])
return render_template('additem.html',
categories=categories,
user=user)
def addItem():
if 'username' not in login_session:
flash("You must login first before adding an item!")
return redirect('/catalog/login/')
if request.method == 'POST':
print('Add item \"POST\" triggered...')
qry = session.query(Category)
formCategory = qry.filter_by(name=request.form['categoryName']).one()
addItem = Items(name=request.form['itemName'],
description=request.form['description'],
category_id=formCategory.id,
user_id=login_session['user_id'])
session.add(addItem)
session.commit()
flash("New item successfully created!")
return redirect(url_for('showCategories'))
else:
categories = session.query(Category).all()
return render_template('addItem.html',
categories=categories,
login_session=login_session)
def newItem(cat_id):
# Check if user logged
if 'username' not in login_session:
return redirect('/login/')
category = session.query(Category).filter_by(id=cat_id).one()
# Check if user is authorized
if login_session['user_id'] != category.user_id:
return render_template('notAuth.html')
# When POST request is sent
if request.method == 'POST':
newItem = Items(user_id=login_session['user_id'],
name=request.form['name'],
description=request.form['description'],
price=request.form['price'],
cat_id=cat_id) # edit user
session.add(newItem)
session.commit()
flash('New Item %s Item added' % (newItem.name))
return redirect(url_for('showItems', cat_id=cat_id, category=category))
# When GET request is sent
else:
return render_template('new.html', cat_id=cat_id)
def newCategoryItem(categories_id):
if 'username' not in login_session:
return redirect('/login')
category = session.query(Categories).filter_by(id=categories_id).one()
if login_session['user_id'] != category.user_id:
return "<script>function myFunction() {alert('You are not authorized"\
" to add new items to this category. "\
"Please create your own category in orde "\
"to add items.');}</script><body onload='myFunction()''>"
if request.method == 'POST':
if request.form['name']:
new_item = Items(name=request.form['name'],
description=request.form['description'],
price=request.form['price'],
categories_id=categories_id)
session.add(new_item)
session.commit()
flash("'" + request.form['name'] +
"' has been add to your category.")
return redirect(url_for('showItems', categories_id=category.id))
else:
return render_template('newCategoryItem.html', category=category)
def newCatalogItem(catalog_id):
if 'username' not in login_session:
return redirect('/login')
catalog = session.query(Catalog).filter_by(id=catalog_id).one()
if login_session['user_id'] != catalog.user_id:
return "<script>function myFunction() "
"{alert('You are not authorized to add"
" menu items to this catalog. Please cre"
"ate your own catalog in order to add item"
"s.');}</script><body onload='myFunction()'>"
if request.method == 'POST':
item = Items(name=request.form['name'],
description=request.form['description'],
price=request.form['price'],
picture=request.form['picture'],
catalog=catalog)
session.add(item)
session.commit()
flash('New Menu %s Item Successfully Created' % (item.name))
return redirect(url_for('showItems', catalog_id=catalog_id))
else:
return render_template('newCatalogItem.html', catalog_id=catalog_id)
def add_final():
form = request.form
dateAdded = str(date.today()).replace("-", "")
item_category_title = form['category_name']
new_item_name = form['item_name']
new_desc = form['item_desc']
user_id = form['user_id']
session = DBSession()
category_id = session.query(Categories).filter(
Categories.categoryName.like(item_category_title)).first()
new_item = Items(
title=new_item_name,
categoryIds=category_id.id,
dateAdded=dateAdded,
user_id=user_id,
description=new_desc)
try:
session.add(new_item)
session.commit()
except BaseException:
return render_template('404.html')
return redirect(url_for('landingPage'))
def add_item():
form = ItemForm(request.form)
username = session.get('username')
# get categories for dropdown
categories = db.session.query(Categories)
user = db.session.query(Users).filter(Users.username == username).first()
user_id = user.id
form.category.choices = [(c.name, c.name) for c in categories]
if request.method == 'POST' and form.validate():
# Get Form Values
name = form.name.data
detail = form.detail.data
category = form.category.data
selected_category_id = categories.filter(
Categories.name == category).first().id
newitem = Items(name=name,
detail=detail,
category=category,
category_id=selected_category_id,
user_id=user_id)
db.session.add(newitem)
# Commit to DB
db.session.commit()
flash('Item created', 'success')
return redirect(url_for('catalog'))
return render_template('add_item.html',
form=form,
categories=categories,
user_id=user_id)
def newItem():
'''Creates new item. Allowed for any logged in user.
Owner of item is automatically the user.'''
if login_session['user_id']:
user = session.query(Users).\
filter_by(id=login_session['user_id']).one()
if request.method == 'GET':
rooms = session.query(Rooms).all()
return render_template("newItem.html",
user=user,
rooms=rooms,
login_session=login_session)
if request.method == 'POST':
room_id = request.form['room']
newItem = Items(name=request.form['name'],
user_id=user.id,
room_id=request.form['room'],
value=request.form['value'],
description=request.form['description'])
session.add(newItem)
session.commit()
flash("Item added!")
return redirect(url_for('showRoom', room_id=room_id))
def newItemes(categories_id):
if 'username' not in login_session:
return redirect('/login')
categories = session.query(NovelsCategories).filter_by(
id=categories_id).one()
if login_session['user_id'] != categories.user_id:
return '''<script>function myFunction() {alert('You are not authorized
to add items to this catagories. Please create your own catagories in
order to add items.');}</script><body onload='myFunction()'>'''
if request.method == 'POST':
newItem = Items(name=request.form['name'],
description=request.form['description'],
price=request.form['price'],
author=request.form['author'],
novelType=request.form['novelType'],
categories_id=categories_id,
user_id=categories.user_id)
session.add(newItem)
session.commit()
flash('New %s Item Successfully Created' % (newItem.name))
return redirect(url_for('showItemes', categories_id=categories_id))
else:
return render_template('newItemes.html', categories_id=categories_id)
def add_item(category_name):
category = session.query(Categories).filter_by(name=category_name).first()
if not loggedIn() or not ownerCheck(category.user_id):
return redirect(url_for('login'))
form = ItemForm()
if form.validate_on_submit():
item = session.query(Items).filter_by(name=form.name.data).first()
if item is None:
item = Items(name=form.name.data,
description=form.description.data,
image=form.image.data,
category_id=category.id,
user_id=login_session['user_id'])
session.add(item)
session.commit()
flash('Item added')
return redirect(
url_for('category_view', category_name=category_name))
else:
return render_template('item_add.html', form=form)
def newItem(category_name):
# Check to see if authenticated
if 'username' not in login_session:
return redirect('login')
# Do if form method is a post
if request.method == 'POST':
getCategoryid = session.query(Categories).filter(Categories.category_name == \
request.form['category_name']).first()
newItem = Items(item_name = request.form['item_name'], description = \
request.form['description'], category_id = getCategoryid.id)
# Try/except for error handling
try:
session.add(newItem)
session.commit()
return redirect(url_for('homePage'))
except:
return "Error Saving Record to Database"
else:
# Get all categories for side cateogry menu for get method
categories = session.query(Categories).all()
return render_template('new_item.html',
categories=categories,
categoryName=category_name)
def newItem(category_id):
if 'email' not in session_for_login:
flash('Please,login and try again')
return redirect(url_for('home'))
email = session_for_login['email']
user_id = getUserID(email)
costume = session.query(Costumes).filter_by(
category_id=category_id).one_or_none()
if costume is None:
flash('Category not found')
return redirect(url_for('home'))
if costume.user_id != user_id:
flash('You are not admin.You cannot add new item in this category')
return redirect(url_for('home'))
if request.method == "GET":
return render_template("newitem.html", category_id=category_id)
else:
item_name = request.form['name']
item_wtype = request.form['wtype']
item_ctype = request.form['ctype']
item_gender = request.form['gender']
item_price = request.form['price']
item_brand = request.form['brand']
item_image_url = request.form['image_url']
itemObj = Items(name=item_name,
wtype=item_wtype,
ctype=item_ctype,
gender=item_gender,
price=item_price,
brand=item_brand,
image_url=item_image_url,
category_id=category_id)
session.add(itemObj)
session.commit()
flash("Item successfully created")
return redirect(url_for('home'))
def createItem(categoryName):
"""This function gives logged in users the previledge to create an item."""
# if the request is a POST
if request.method == 'POST':
# storing the form values
itemName = request.form['name']
itemDescription = request.form['description']
# check if the form was not empty
if itemName and itemDescription is not '':
# fetching a single category name from the db and storing it in an object
fetchedCategory = session.query(Category).filter_by(name=categoryName).one()
# fetching a single item name from the db and storing it in an object
fetchedItem = session.query(Items).filter_by(name=itemName).first()
# check if object name doesn't match the form name
if fetchedItem == None :
# storing the item_name, item_description and the category_id
item = Items(name=itemName, description=itemDescription, category_id=fetchedCategory.id)
session.add(item) # adding the query
session.commit() # executing the query
flash('New item \" {} \" added'.format(item.name)) # flashing a successful message
return redirect(url_for('allItems', categoryName=categoryName)) # redirecting the user
else:
flash('The Item \'{}\' is already existing'.format(fetchedItem.name))
else:
flash('an item name and description is required')
# render the template if the request was a GET
return render_template('newItem.html', categoryName=categoryName)
def newitem(username):
""" Adding new items in database only regisetered user are allowed"""
if request.method == "POST":
title = request.form["title"]
details = request.form["details"]
category_name = request.form["category"]
user_id = session["id"]
category_id = connectDb.query(
Category.id).filter(Category.name == category_name).all()[0][0]
new = Items(title=title,
details=details,
user_id=user_id,
category_id=category_id)
connectDb.add(new)
connectDb.commit()
flash("new item has been add")
return redirect(url_for("mainpage"))
else:
category = connectDb.query(Category).all()
return render_template("newitem.html",
category=category,
username=username)
]
for idx, name in enumerate(CATEGORIES):
category = Categories(name=name, user_id=1)
session.add(category)
session.commit()
print str(idx) + ' ' + name
if name == 'Social':
item = Items(
name='Instagram',
description="Instagram is a simple way to capture and share "
"the world's moments. Follow your friends and family to see "
"what they're up to, and discover accounts from all over the "
"world that are sharing things you love. Join the community "
" of over 1 billion people and express yourself by sharing all "
" the moments of your day - the highlights and everything in "
" between, too.",
category_id=idx + 1,
user_id=1)
session.add(item)
session.commit()
if name == 'Education':
item = Items(
name='Quizlet',
description="Quizlet is the easiest way to practice and "
"master what you're learning. Create your own flashcards "
"and study sets or choose from millions created by other "
