def show_login_post(): db = getattr(g, 'db', None) email = (request.form['emailtext'], ) password = request.form['pwtext'] query = "select id, password from tbl_user WHERE email = (%s);" with db as cursor: if cursor.execute(query, email) <= 0: return render_template("login.html", message="Invalid e-mail or password.") else: row = cursor.fetchone() uid = row[0] pw = row[1] if check_password_hash(pw, password): login_user(User(uid)) numbasket = prods_in_basket(current_user.get_id()) return render_template("/index.html", message="You have been logged in!", status=True, numbasket=numbasket) else: return render_template("/login.html", message="Invalid e-mail or password.")
def show_product_post(catname, prodid): message = "" status = "" if 'send' in request.form: if add_to_basket(prodid, current_user.uid): status = "success" message = "Product Added To Basket!" elif 'post_comment' in request.form: try: post_comment(current_user.uid, prodid, request.form['comment_text']) message = "You Commented!" status = "success" except IntegrityError: message = "You have already commented." status = "error" elif 'vote_up' in request.form: vote(current_user.uid, prodid, 1) message = 'You voted up!' status = "success" elif 'vote_down' in request.form: vote(current_user.uid, prodid, -1) message = 'You voted down.' status = "success" else: abort(500) product_info = read_product_info(prodid) cats = read_categories() current_user.numbasket = prods_in_basket(current_user.get_id()) return render_template("catalogue.html", rating = read_score(prodid), comments=read_comments(prodid), catname=catname, prodid=prodid, c = cats, prod = product_info, status=status, message=message)
def __init__(self, uid=None): #set user defaults self.email = None self.name = None self.uid = None self.numbasket = None #load from db if uid specified! if not uid==None and not uid==0: db = getattr(g, 'db', None) with db as cursor: data = (uid,) query = "select (name) from tbl_user where id = (%s);" if cursor.execute(query, data) <= 0: return None else: name = cursor.fetchone()[0] with db as cursor: query = "select (email) from tbl_user where id = (%s);" if cursor.execute(query, data) > 0: email = cursor.fetchone()[0] else: email = "" #create user self.email = email self.name = name self.uid = uid self.numbasket = prods_in_basket(uid)
def add_from_catalogue(catname): prodid = request.form['add_basket_id'] if add_to_basket(prodid, current_user.uid): status = "success" message = "Product Added To Basket!" products = read_products(catname) cats = read_categories() current_user.numbasket = prods_in_basket(current_user.get_id()) return render_template("catalogue.html", catname=catname, c = cats, p = products, status=status, message=message)
def show_login_post(): db = getattr(g, 'db', None) email = (request.form['emailtext'],) password = request.form['pwtext'] query = "select id, password from tbl_user WHERE email = (%s);" with db as cursor: if cursor.execute(query, email) <= 0: return render_template("login.html", message="Invalid e-mail or password.") else: row = cursor.fetchone() uid = row[0] pw = row[1] if check_password_hash(pw, password): login_user(User(uid)) numbasket = prods_in_basket(current_user.get_id()) return render_template("/index.html", message="You have been logged in!", status = True, numbasket=numbasket) else: return render_template("/login.html", message="Invalid e-mail or password.")
def main(): #Make check if user is logged in??? numbasket = prods_in_basket(current_user.get_id()) return render_template("index.html", numbasket=numbasket)