def show_login_post():
db = getattr(g, 'db', None)
email = (request.form['emailtext'], )
password = request.form['pwtext']
query = "select id, password from tbl_user WHERE email = (%s);"
with db as cursor:
if cursor.execute(query, email) <= 0:
return render_template("login.html",
message="Invalid e-mail or password.")
else:
row = cursor.fetchone()
uid = row[0]
pw = row[1]
if check_password_hash(pw, password):
login_user(User(uid))
numbasket = prods_in_basket(current_user.get_id())
return render_template("/index.html",
message="You have been logged in!",
status=True,
numbasket=numbasket)
else:
return render_template("/login.html",
message="Invalid e-mail or password.")
def show_product_post(catname, prodid):
message = ""
status = ""
if 'send' in request.form:
if add_to_basket(prodid, current_user.uid):
status = "success"
message = "Product Added To Basket!"
elif 'post_comment' in request.form:
try:
post_comment(current_user.uid, prodid, request.form['comment_text'])
message = "You Commented!"
status = "success"
except IntegrityError:
message = "You have already commented."
status = "error"
elif 'vote_up' in request.form:
vote(current_user.uid, prodid, 1)
message = 'You voted up!'
status = "success"
elif 'vote_down' in request.form:
vote(current_user.uid, prodid, -1)
message = 'You voted down.'
status = "success"
else:
abort(500)
product_info = read_product_info(prodid)
cats = read_categories()
current_user.numbasket = prods_in_basket(current_user.get_id())
return render_template("catalogue.html", rating = read_score(prodid), comments=read_comments(prodid),
catname=catname, prodid=prodid, c = cats, prod = product_info, status=status,
message=message)
def __init__(self, uid=None): #set user defaults self.email = None self.name = None self.uid = None self.numbasket = None #load from db if uid specified! if not uid==None and not uid==0: db = getattr(g, 'db', None) with db as cursor: data = (uid,) query = "select (name) from tbl_user where id = (%s);" if cursor.execute(query, data) <= 0: return None else: name = cursor.fetchone()[0] with db as cursor: query = "select (email) from tbl_user where id = (%s);" if cursor.execute(query, data) > 0: email = cursor.fetchone()[0] else: email = "" #create user self.email = email self.name = name self.uid = uid self.numbasket = prods_in_basket(uid)
def add_from_catalogue(catname):
prodid = request.form['add_basket_id']
if add_to_basket(prodid, current_user.uid):
status = "success"
message = "Product Added To Basket!"
products = read_products(catname)
cats = read_categories()
current_user.numbasket = prods_in_basket(current_user.get_id())
return render_template("catalogue.html", catname=catname, c = cats, p = products, status=status, message=message)
def show_login_post():
db = getattr(g, 'db', None)
email = (request.form['emailtext'],)
password = request.form['pwtext']
query = "select id, password from tbl_user WHERE email = (%s);"
with db as cursor:
if cursor.execute(query, email) <= 0:
return render_template("login.html", message="Invalid e-mail or password.")
else:
row = cursor.fetchone()
uid = row[0]
pw = row[1]
if check_password_hash(pw, password):
login_user(User(uid))
numbasket = prods_in_basket(current_user.get_id())
return render_template("/index.html", message="You have been logged in!", status = True, numbasket=numbasket)
else:
return render_template("/login.html", message="Invalid e-mail or password.")
def main():
#Make check if user is logged in???
numbasket = prods_in_basket(current_user.get_id())
return render_template("index.html", numbasket=numbasket)
