def api_delete_comments(id, request): check_admin(request) c = yield from Comment.find(id) if c is None: raise APIPermissionError('Comment') yield from c.remove() return dict(id=id)
async def api_create_comment(id,request,*,content): user=request.__user__ if user is None: raise APIPermissionError('please signin first') if not content or not content.strip(): raise APIValueError('content') blog=await Blog.find(id) if blog is None: raise APIResourceNotFoundError('Blog') comment=Comment(blog_id=blog.id,user_id=user.id,user_name=user.name,user_image=user.image,content=content.strip()) await comment.save() return comment
async def api_create_comment(request, *, id, content): user = request.__user__ if user is None: raise APIPermissionError('Please login first') if not content or not content.strip(): raise APIValueError('comment', 'comment cannot be empty') quote = await Quote.find(id) if quote is None: raise APIResourceNotFoundError('Quote') comment = Comment(quote_id=quote.id, user_id=user.id, user_name=user.name, user_image=user.image, content=content.strip()) await comment.save() return comment
async def api_create_comment(blog_id, request, *, content): check_admin(request) user = request.__user__ if user is None: raise APIPermissionError() if not content or not content.strip(): raise APIValueError('content') blog = Blog.find(blog_id) if blog is None: raise APIResourceNotFoundError('Blog') comment = Comment(blog_id=blog_id, user_id=request.__user__.id, user_name=request.__user__.name, user_image=request.__user__.image, content=content) await comment.save() return comment
def api_create_comment(id, request, *, content): #获取请求中的用户信息: user = request.__user__ #用户信息为None则抛出异常: if user is None: raise APIPermissionError('Please signin first.') #参数中内容信息为空,抛出异常: if not content or not content.strip(): raise APIValueError('content') #数据库Blog表中查询指定文章信息: blog = yield from Blog.find(id) #查询无结果则抛出异常: if blog is None: raise APIResourceNotFoundError('Blog') #创建comment实例: comment = Comment(blog_id=blog.id, user_id=user.id, user_name=user.name, user_image=user.image, content=content.strip()) #将Comment信息存储到数据库: yield from comment.save() return comment
def check_admin(request): if request.__user__ is None or not request.__user__.admin: raise APIPermissionError()
def check_admin(request): if request.__user__ is None or request.__user__.admin: return APIPermissionError()
def check_admin(request): #若用户属性为空或用户权限不正常,抛出权限异常: if request.__user__ is None or request.__user__.admin: #__user__.admin:admin属性为用户注册时赋予的(默认False),存储在数据库。 raise APIPermissionError()
def check_admin(request): logging.info('york----------------------查看是否是管理员用户') if request.__user__ is None or not request.__user__.admin: raise APIPermissionError()