def do_edit(request): # This is where things get interesting user = authbar.get_current_login() if 'name' in request: db.set_data(user, 'name', make_safe(request['name'].value)) if 'about' in request: db.set_data(user, 'about', make_safe(request['about'].value)) if 'gender' in request: db.set_data(user, 'gender', make_safe(request['gender'].value)) if 'degree' in request: db.set_data(user, 'degree', make_safe(request['degree'].value)) if 'student_number' in request: db.set_data(user, 'student_number', make_safe(request['student_number'].value)) # Reload the edited page return '<script type="text/javascript">window.location.href="unswmate.cgi?who=' + user + '"</script>'
def render(request): searchterm = request['search'].value results = search(searchterm) if results: result_string = render_results(results) else: result_string = "No Results for " + make_safe(searchterm) data = dict( search_result = result_string ) return tempy.render('search.template', data)
def do_news(request): poster = authbar.get_current_login() if 'user' in request: user = request['user'].value else: user = '' if 'message' in request: message = request['message'].value else: message = '' if 'image' in request: image = request['image'].value else: image = '' if user and message and poster: if poster in matedb.get_all_mates(user) or user == poster: matedb.post_news(user, poster, safety.make_safe(message), safety.make_safe(image)) return '<script type="text/javascript">window.location.href="unswmate.cgi?who=' + user + '"</script>'
def do_comment(request): poster = authbar.get_current_login() if 'news_item_id' in request: news_item_id = request['news_item_id'].value else: news_item_id = '' if 'message' in request: message = request['message'].value else: message = '' # Rip the value out of the resulting tuple, if it exists user = matedb.get_owner(news_item_id) if user: user = user[0] if news_item_id and message: if poster in matedb.get_all_mates(user) or user == poster: matedb.post_comment(news_item_id, poster, safety.make_safe(message)) return '<script type="text/javascript">window.location.href="unswmate.cgi?who=' + user + '"</script>'
def render(request): course = request["course"].value d = {"course": safety.make_safe(course)} d["members"] = userlist.render(db.get_course_members(course)) return tempy.render("courses.template", d)