def api_delete_comments(id, request):
check_admin(request)
c = yield from Comment.find(id)
if c is None:
raise APIPermissionError('Comment')
yield from c.remove()
return dict(id=id)
async def api_create_comment(id,request,*,content):
user=request.__user__
if user is None:
raise APIPermissionError('please signin first')
if not content or not content.strip():
raise APIValueError('content')
blog=await Blog.find(id)
if blog is None:
raise APIResourceNotFoundError('Blog')
comment=Comment(blog_id=blog.id,user_id=user.id,user_name=user.name,user_image=user.image,content=content.strip())
await comment.save()
return comment
async def api_create_comment(request, *, id, content):
user = request.__user__
if user is None:
raise APIPermissionError('Please login first')
if not content or not content.strip():
raise APIValueError('comment', 'comment cannot be empty')
quote = await Quote.find(id)
if quote is None:
raise APIResourceNotFoundError('Quote')
comment = Comment(quote_id=quote.id,
user_id=user.id,
user_name=user.name,
user_image=user.image,
content=content.strip())
await comment.save()
return comment
async def api_create_comment(blog_id, request, *, content):
check_admin(request)
user = request.__user__
if user is None:
raise APIPermissionError()
if not content or not content.strip():
raise APIValueError('content')
blog = Blog.find(blog_id)
if blog is None:
raise APIResourceNotFoundError('Blog')
comment = Comment(blog_id=blog_id,
user_id=request.__user__.id,
user_name=request.__user__.name,
user_image=request.__user__.image,
content=content)
await comment.save()
return comment
def api_create_comment(id, request, *, content):
#获取请求中的用户信息:
user = request.__user__
#用户信息为None则抛出异常:
if user is None:
raise APIPermissionError('Please signin first.')
#参数中内容信息为空,抛出异常:
if not content or not content.strip():
raise APIValueError('content')
#数据库Blog表中查询指定文章信息:
blog = yield from Blog.find(id)
#查询无结果则抛出异常:
if blog is None:
raise APIResourceNotFoundError('Blog')
#创建comment实例:
comment = Comment(blog_id=blog.id, user_id=user.id, user_name=user.name, user_image=user.image, content=content.strip())
#将Comment信息存储到数据库:
yield from comment.save()
return comment
def check_admin(request):
if request.__user__ is None or not request.__user__.admin:
raise APIPermissionError()
def check_admin(request):
if request.__user__ is None or request.__user__.admin:
return APIPermissionError()
def check_admin(request):
#若用户属性为空或用户权限不正常,抛出权限异常:
if request.__user__ is None or request.__user__.admin: #__user__.admin:admin属性为用户注册时赋予的(默认False),存储在数据库。
raise APIPermissionError()
def check_admin(request):
logging.info('york----------------------查看是否是管理员用户')
if request.__user__ is None or not request.__user__.admin:
raise APIPermissionError()
