def admin_edit_game():
game = request.values.get("game")
g.cursor.execute("SELECT id FROM games WHERE id=%s", (game, ))
if not g.cursor.fetchone():
raise APIError("Invalid Game")
query = {k: v for (k, v) in request.values.iteritems() if k in GAME_EDITABLE_FIELDS}
if not len(query):
raise APIError("Nothing to change!")
sql = "UPDATE games SET {} WHERE id=%(id)s".format(Cursor.map_values(query))
query['id'] = game
g.cursor.execute(sql, query)
return APIResponse()
def admin_user_edit():
user = request.values.get("user")
print user
g.cursor.execute("SELECT id FROM users WHERE id=%s", (user, ))
if not g.cursor.fetchone():
raise APIError("Invalid User")
query = {k: v for (k, v) in request.values.iteritems() if k in USER_EDITABLE_FIELDS}
if not len(query):
raise APIError("Nothing to change!")
sql = "UPDATE users SET {} WHERE id=%(id)s".format(Cursor.map_values(query))
query['id'] = user
g.cursor.execute(sql, query)
return APIResponse()
