def newBook(store_id): if 'username' not in login_session: return redirect('/login') store = session.query(BookStores).filter_by(id=store_id).one() if login_session['user_id'] != store.user_id: return "<script>function myFunction() {alert('You are not authorized to books to this store. Please create your own store in order to add items.');}</script><body onload='myFunction()''>" if request.method == 'POST': newItem = Items(name=request.form['name'], description=request.form['description'], price=request.form['price'], course=request.form['course'], store_id=store_id, user_id=store.user_id) session.add(newItem) session.commit() flash('New Book %s Successfully Created' % newItem.name) return redirect(url_for('showItems', store_id=store_id)) else: return render_template('newbookitem.html', store_id=store_id)
def newItems(categories_name): if 'username' not in login_session: return redirect('/login') if request.method == 'POST': session = DBSession() category = session.query(Categories).filter_by( name=categories_name).one_or_none() newItem = (Items(name=request.form['name'], description=request.form['description'], categories_id=category.id, user_id=login_session['user_id'])) session.add(newItem) session.commit() session.close() flash("new item under this category created !") return redirect( url_for('categoriesitems', categories_name=categories_name)) else: return render_template('newitem.html', categories_name=categories_name)
def newBloodType(): if 'username' not in login_session: return redirect('/login') if request.method == 'POST': newBloodType = BloodType(name=request.form['name'], status=request.form['status'], user_id=login_session['user_id']) newInfoBloodType = Items(name=request.form['name'], description=request.form['description'], user_id=login_session['user_id'], blood_type=newBloodType) session.add(newBloodType) session.add(newInfoBloodType) flash('New Blood Type %s Successfully Created' % newBloodType.name) session.commit() return redirect(url_for('BloodBank')) else: return render_template('newBloodType.html')
def newItem(): if 'username' not in login_session: return redirect('/login') #categories = session.query(Category).all() categories = session.query(Category).order_by(asc(Category.name)) #allow everyone to add items to a category if request.method == 'POST': category_id = request.form['category_id'] newItem = Items(name=request.form['name'], description=request.form['description'], price=request.form['price'], category_id=category_id, user_id=login_session['user_id']) session.add(newItem) session.commit() flash('New Item %s Successfully Created' % (newItem.name)) return redirect(url_for('showItems', category_id=category_id)) else: return render_template('newItem.html', categories=categories)
def addItems(categoryName): category = session.query(Categories).filter_by( categoryName=categoryName).one() if category.user_id != login_session['user_id']: return "<script>function myFunction(){alert('Not Authorized');}\ </script><body onload = 'myFunction()'>" if request.method == 'POST': itemToAdd = Items(itemName=request.form['name'], description=request.form['description'], price=request.form['price'], category_name=categoryName, user_id=login_session['user_id']) session.add(itemToAdd) session.commit() flash("Item %s successfully added in %s !" % (itemToAdd.itemName, category.categoryName)) return redirect(url_for('showItems', categoryName=categoryName)) else: return render_template('addItem.html', category=category)
def Add_item(cat_name): if 'username' not in login_session: return redirect('/login') categories = session.query(Categories).order_by(asc(Categories.name)) cat = session.query(Categories).filter_by(name=cat_name).one() # if login_session['user_id'] != cat.user_id: # return "<script>function myFunction() {alert('You are not authorized'+ # ' to delete menu items to this restaurant. Please create your own'+ # ' restaurantin order to delete items.');}</script>" if request.method == 'POST': newitem = Items(name=request.form['name'], description=request.form['description'], cat_id=cat.id) session.add(newitem) session.commit() return redirect(url_for('Display_Items', cat_name=cat_name)) else: return render_template('additem.html', cat=cat)
def createSportItem(sport_id): if 'username' not in login_session: return redirect('/login/') sport = session.query(Sport).filter_by(id=sport_id).one() if login_session['user_id'] != sport.user_id: return "<script>function myFunction() {alert('You are not authorized \ to add sport items to this sport. Please create your own sport\ in order to add items.');}</script><body onload='myFunction()''>" if request.method == 'POST': newItem = Items(name=request.form['name'], description=request.form['description'], price=request.form['price'], sport_id=sport_id, user_id=sport.user_id) session.add(newItem) session.commit() return redirect(url_for('showItems', sport_id=sport_id)) else: return render_template('newSportItem.html', sport_id=sport_id)
def newItem(category_id): category = session.query(Category).filter_by(id=category_id).one() if login_session['user_id'] != category.user_id: return '''<script>function myFunction() {alert('You are not authorized to add items to this category. Please create your own items category in order to add items.');} </script><body onload='myFunction()'>''' if request.method == 'POST': newItem = Items(name=request.form['name'], description=request.form['description'], picture_url=request.form['picture_url'], date=datetime.now(), category_id=category_id, user_id=category.user_id) session.add(newItem) session.commit() flash('New %s Item Successfully Created' % (newItem.name)) return redirect(url_for('showCatalog', category_id=category_id)) else: return render_template('newitem.html', category_id=category_id)
def addItem(): """Load form to allow for adding an item and adds item to DB.""" session = DBSession() if 'username' not in login_session: return redirect('/login') else: if request.method == 'POST': newItem = Items(title=request.form['title'], description=request.form['description'], cat_id=request.form['catId'], creator_email=login_session['username']) session.add(newItem) session.commit() flash('New item added successfully!') return redirect('/') else: userUsername = login_session['username'] return render_template('add.html', userUsername=userUsername, loggedIn=True)
def insert_item(): if request.method == 'POST': category = session.query(Categories).\ filter_by(name=request.form['categories']).one() new_item = Items(title=request.form['title'], description=request.form['description'], creation_date=datetime.now(), category_id=category.id, user_id=login_session['user_id']) session.add(new_item) session.commit() return redirect(url_for('insert_item', categories=get_categories(), session_token=get_session_token())) else: return render_template('insert_item.html', categories=get_categories(), session_token=get_session_token())
def add_item(): DBSession = sessionmaker(bind=engine) session = DBSession() if request.method == 'POST': name = request.form['name'] description = request.form['description'] price = request.form['price'] category = request.form['item_category'] category_id = (session.query(Categories) .filter_by(name=category.replace('-', ' ')) .one()) # Error Message if not request.form['name']: flash('Please add item name') return redirect(url_for('add_item')) if not request.form['description']: flash('Please add a description') return redirect(url_for('add_item')) if not request.form['price']: flash('Please add a description') return redirect(url_for('add_item')) # Query database item_name_in_db = (session.query(Items.name) .filter_by(name=name) .all()) user_id = (session.query(Users) .filter_by(email=login_session['email']) .one()).id new_item = Items(name=name, description=description, category_id=category_id.id, price=price, user_id=user_id) session.add(new_item) session.commit() print('Item "{}" created.'.format(new_item.name)) return redirect(url_for('home')) else: categories = session.query(Categories).all() return render_template('add_item.html', categories=categories)
def addItem(category_name): if 'username' not in login_session: return redirect(url_for('showCategory', category_name=category_name)) category = session.query(Categories).filter_by(name=category_name).one() if request.method == 'POST': newItem = Items(name=request.form['name'], short_description=request.form['short_description'], description=request.form['description'], price=request.form['price'], image=request.form['image'], user_id=login_session['user_id'], category_id=category.id) session.add(newItem) session.commit() flash("Item successfully added.") return redirect(url_for('showCategory', category_name=category.name)) else: categories = session.query(Categories) return render_template("addItem.html", category=category, categories=categories)
def newItem(category_id): if 'username' not in login_session: return redirect('/login') category = session.query(Category).filter_by(id=category_id).one() if login_session['user_id'] != category.user_id: return "<script>function myFunction() {alert('You are not authorized to add items to this category. Please create your own category in order to add items.');}</script><body onload='myFunction()''>" if request.method == 'POST': newItem = Items(name=request.form['name'], description=request.form['description'], image=imageRetrive(category.name, request.form['name']), category_id=category_id, user_id=category.user_id) session.add(newItem) session.commit() flash("New Item %s Succesffuly Created!" % newItem.name) return redirect(url_for('categoryList', category_id=category.id)) else: return render_template('newitem.html', category=category, category_id=category.id)
def itemCreate(category_id): if 'username' not in login_session: return redirect('/login') category = session.query(Category).filter_by(id=category_id).one() if login_session['user_id'] != category.user_id: return "<script>function myFunction() {alert" \ "('You are not authorized to add items. " \ "Please create your own catalog in order to add items.');}" \ "</script><body onload='myFunction()''>" if request.method == 'POST': newItem = Items(name=request.form['name'], description=request.form['description'], user_id=category.user_id, category_id=category_id) session.add(newItem) session.commit() return redirect(url_for('categoryItems', category_id=category_id)) else: return render_template('createItem.html', category_id=category_id, category=category)
def newItem(): if 'username' not in login_session: return redirect('/login') if request.method == 'POST': new_item = Items(name=request.form['name'], description=request.form['description'], category=request.form['category'], user_id=login_session['user_id']) temp_category = request.form['category'] session.add(new_item) session.commit() flash("New Item created!") category_temp = session.query(Categories).filter_by( name=temp_category).first() return redirect(url_for('viewItems', category_id=category_temp.id)) else: categories = session.query(Categories).all() return render_template('create.html', categories=categories, user=login_session)
def addItem(): if 'username' not in login_session: return redirect('/login') categories = session.query(Category).all() if request.method == 'POST': newItem = Items(name=request.form['name'], description=request.form['description'], picture=request.form['picture'], category=session.query(Category).filter_by( name=request.form['category']).one(), date=datetime.datetime.now(), user_id=login_session['user_id']) session.add(newItem) session.commit() flash('Item Successfully Added!') return redirect(url_for('showCatalog')) else: user = getUserInfo(login_session['user_id']) return render_template('additem.html', categories=categories, user=user)
def addItem(): if 'username' not in login_session: flash("You must login first before adding an item!") return redirect('/catalog/login/') if request.method == 'POST': print('Add item \"POST\" triggered...') qry = session.query(Category) formCategory = qry.filter_by(name=request.form['categoryName']).one() addItem = Items(name=request.form['itemName'], description=request.form['description'], category_id=formCategory.id, user_id=login_session['user_id']) session.add(addItem) session.commit() flash("New item successfully created!") return redirect(url_for('showCategories')) else: categories = session.query(Category).all() return render_template('addItem.html', categories=categories, login_session=login_session)
def newItem(cat_id): # Check if user logged if 'username' not in login_session: return redirect('/login/') category = session.query(Category).filter_by(id=cat_id).one() # Check if user is authorized if login_session['user_id'] != category.user_id: return render_template('notAuth.html') # When POST request is sent if request.method == 'POST': newItem = Items(user_id=login_session['user_id'], name=request.form['name'], description=request.form['description'], price=request.form['price'], cat_id=cat_id) # edit user session.add(newItem) session.commit() flash('New Item %s Item added' % (newItem.name)) return redirect(url_for('showItems', cat_id=cat_id, category=category)) # When GET request is sent else: return render_template('new.html', cat_id=cat_id)
def newCategoryItem(categories_id): if 'username' not in login_session: return redirect('/login') category = session.query(Categories).filter_by(id=categories_id).one() if login_session['user_id'] != category.user_id: return "<script>function myFunction() {alert('You are not authorized"\ " to add new items to this category. "\ "Please create your own category in orde "\ "to add items.');}</script><body onload='myFunction()''>" if request.method == 'POST': if request.form['name']: new_item = Items(name=request.form['name'], description=request.form['description'], price=request.form['price'], categories_id=categories_id) session.add(new_item) session.commit() flash("'" + request.form['name'] + "' has been add to your category.") return redirect(url_for('showItems', categories_id=category.id)) else: return render_template('newCategoryItem.html', category=category)
def newCatalogItem(catalog_id): if 'username' not in login_session: return redirect('/login') catalog = session.query(Catalog).filter_by(id=catalog_id).one() if login_session['user_id'] != catalog.user_id: return "<script>function myFunction() " "{alert('You are not authorized to add" " menu items to this catalog. Please cre" "ate your own catalog in order to add item" "s.');}</script><body onload='myFunction()'>" if request.method == 'POST': item = Items(name=request.form['name'], description=request.form['description'], price=request.form['price'], picture=request.form['picture'], catalog=catalog) session.add(item) session.commit() flash('New Menu %s Item Successfully Created' % (item.name)) return redirect(url_for('showItems', catalog_id=catalog_id)) else: return render_template('newCatalogItem.html', catalog_id=catalog_id)
def add_final(): form = request.form dateAdded = str(date.today()).replace("-", "") item_category_title = form['category_name'] new_item_name = form['item_name'] new_desc = form['item_desc'] user_id = form['user_id'] session = DBSession() category_id = session.query(Categories).filter( Categories.categoryName.like(item_category_title)).first() new_item = Items( title=new_item_name, categoryIds=category_id.id, dateAdded=dateAdded, user_id=user_id, description=new_desc) try: session.add(new_item) session.commit() except BaseException: return render_template('404.html') return redirect(url_for('landingPage'))
def add_item(): form = ItemForm(request.form) username = session.get('username') # get categories for dropdown categories = db.session.query(Categories) user = db.session.query(Users).filter(Users.username == username).first() user_id = user.id form.category.choices = [(c.name, c.name) for c in categories] if request.method == 'POST' and form.validate(): # Get Form Values name = form.name.data detail = form.detail.data category = form.category.data selected_category_id = categories.filter( Categories.name == category).first().id newitem = Items(name=name, detail=detail, category=category, category_id=selected_category_id, user_id=user_id) db.session.add(newitem) # Commit to DB db.session.commit() flash('Item created', 'success') return redirect(url_for('catalog')) return render_template('add_item.html', form=form, categories=categories, user_id=user_id)
def newItem(): '''Creates new item. Allowed for any logged in user. Owner of item is automatically the user.''' if login_session['user_id']: user = session.query(Users).\ filter_by(id=login_session['user_id']).one() if request.method == 'GET': rooms = session.query(Rooms).all() return render_template("newItem.html", user=user, rooms=rooms, login_session=login_session) if request.method == 'POST': room_id = request.form['room'] newItem = Items(name=request.form['name'], user_id=user.id, room_id=request.form['room'], value=request.form['value'], description=request.form['description']) session.add(newItem) session.commit() flash("Item added!") return redirect(url_for('showRoom', room_id=room_id))
def newItemes(categories_id): if 'username' not in login_session: return redirect('/login') categories = session.query(NovelsCategories).filter_by( id=categories_id).one() if login_session['user_id'] != categories.user_id: return '''<script>function myFunction() {alert('You are not authorized to add items to this catagories. Please create your own catagories in order to add items.');}</script><body onload='myFunction()'>''' if request.method == 'POST': newItem = Items(name=request.form['name'], description=request.form['description'], price=request.form['price'], author=request.form['author'], novelType=request.form['novelType'], categories_id=categories_id, user_id=categories.user_id) session.add(newItem) session.commit() flash('New %s Item Successfully Created' % (newItem.name)) return redirect(url_for('showItemes', categories_id=categories_id)) else: return render_template('newItemes.html', categories_id=categories_id)
def add_item(category_name): category = session.query(Categories).filter_by(name=category_name).first() if not loggedIn() or not ownerCheck(category.user_id): return redirect(url_for('login')) form = ItemForm() if form.validate_on_submit(): item = session.query(Items).filter_by(name=form.name.data).first() if item is None: item = Items(name=form.name.data, description=form.description.data, image=form.image.data, category_id=category.id, user_id=login_session['user_id']) session.add(item) session.commit() flash('Item added') return redirect( url_for('category_view', category_name=category_name)) else: return render_template('item_add.html', form=form)
def newItem(category_name): # Check to see if authenticated if 'username' not in login_session: return redirect('login') # Do if form method is a post if request.method == 'POST': getCategoryid = session.query(Categories).filter(Categories.category_name == \ request.form['category_name']).first() newItem = Items(item_name = request.form['item_name'], description = \ request.form['description'], category_id = getCategoryid.id) # Try/except for error handling try: session.add(newItem) session.commit() return redirect(url_for('homePage')) except: return "Error Saving Record to Database" else: # Get all categories for side cateogry menu for get method categories = session.query(Categories).all() return render_template('new_item.html', categories=categories, categoryName=category_name)
def newItem(category_id): if 'email' not in session_for_login: flash('Please,login and try again') return redirect(url_for('home')) email = session_for_login['email'] user_id = getUserID(email) costume = session.query(Costumes).filter_by( category_id=category_id).one_or_none() if costume is None: flash('Category not found') return redirect(url_for('home')) if costume.user_id != user_id: flash('You are not admin.You cannot add new item in this category') return redirect(url_for('home')) if request.method == "GET": return render_template("newitem.html", category_id=category_id) else: item_name = request.form['name'] item_wtype = request.form['wtype'] item_ctype = request.form['ctype'] item_gender = request.form['gender'] item_price = request.form['price'] item_brand = request.form['brand'] item_image_url = request.form['image_url'] itemObj = Items(name=item_name, wtype=item_wtype, ctype=item_ctype, gender=item_gender, price=item_price, brand=item_brand, image_url=item_image_url, category_id=category_id) session.add(itemObj) session.commit() flash("Item successfully created") return redirect(url_for('home'))
def createItem(categoryName): """This function gives logged in users the previledge to create an item.""" # if the request is a POST if request.method == 'POST': # storing the form values itemName = request.form['name'] itemDescription = request.form['description'] # check if the form was not empty if itemName and itemDescription is not '': # fetching a single category name from the db and storing it in an object fetchedCategory = session.query(Category).filter_by(name=categoryName).one() # fetching a single item name from the db and storing it in an object fetchedItem = session.query(Items).filter_by(name=itemName).first() # check if object name doesn't match the form name if fetchedItem == None : # storing the item_name, item_description and the category_id item = Items(name=itemName, description=itemDescription, category_id=fetchedCategory.id) session.add(item) # adding the query session.commit() # executing the query flash('New item \" {} \" added'.format(item.name)) # flashing a successful message return redirect(url_for('allItems', categoryName=categoryName)) # redirecting the user else: flash('The Item \'{}\' is already existing'.format(fetchedItem.name)) else: flash('an item name and description is required') # render the template if the request was a GET return render_template('newItem.html', categoryName=categoryName)
def newitem(username): """ Adding new items in database only regisetered user are allowed""" if request.method == "POST": title = request.form["title"] details = request.form["details"] category_name = request.form["category"] user_id = session["id"] category_id = connectDb.query( Category.id).filter(Category.name == category_name).all()[0][0] new = Items(title=title, details=details, user_id=user_id, category_id=category_id) connectDb.add(new) connectDb.commit() flash("new item has been add") return redirect(url_for("mainpage")) else: category = connectDb.query(Category).all() return render_template("newitem.html", category=category, username=username)
] for idx, name in enumerate(CATEGORIES): category = Categories(name=name, user_id=1) session.add(category) session.commit() print str(idx) + ' ' + name if name == 'Social': item = Items( name='Instagram', description="Instagram is a simple way to capture and share " "the world's moments. Follow your friends and family to see " "what they're up to, and discover accounts from all over the " "world that are sharing things you love. Join the community " " of over 1 billion people and express yourself by sharing all " " the moments of your day - the highlights and everything in " " between, too.", category_id=idx + 1, user_id=1) session.add(item) session.commit() if name == 'Education': item = Items( name='Quizlet', description="Quizlet is the easiest way to practice and " "master what you're learning. Create your own flashcards " "and study sets or choose from millions created by other "