def promote_to_admin(id):
if not current_user.is_admin:
raise InvalidUsage("Forbidden", 403)
user = User.get_by_id(id)
user.is_admin = True
user.save()
return redirect(url_for('user.settings'))
def manage_data(user_id):
user = current_user
if user_id != user.id:
if not current_user.is_admin:
raise InvalidUsage("Forbidden", 403)
user = User.get_by_id(user_id)
return render_template(
"user/managedata.html",
scores=[
SCORESCHEMA.dump(score).data
for score in Score.query.filter(Score.game == user.game)
])
def delete_user(id):
if id == current_user.id:
user = User.get_by_id(id)
logout_user()
user.delete()
flash('Your account was successfully deleted.', 'info')
return redirect(url_for('public.home'))
if not current_user.is_admin:
raise InvalidUsage('Forbidden', status_code=403)
if id == current_user.id:
raise InvalidUsage("You can't delete yourself!")
user = User.query.filter(User.id == id).first()
if user.is_admin:
raise InvalidUsage("You can't delete an admin!")
user.delete()
return redirect(url_for('user.settings'))
def load_user(id):
return User.get_by_id(int(id))
