def admin_edit_game(): game = request.values.get("game") g.cursor.execute("SELECT id FROM games WHERE id=%s", (game, )) if not g.cursor.fetchone(): raise APIError("Invalid Game") query = {k: v for (k, v) in request.values.iteritems() if k in GAME_EDITABLE_FIELDS} if not len(query): raise APIError("Nothing to change!") sql = "UPDATE games SET {} WHERE id=%(id)s".format(Cursor.map_values(query)) query['id'] = game g.cursor.execute(sql, query) return APIResponse()
def admin_user_edit(): user = request.values.get("user") print user g.cursor.execute("SELECT id FROM users WHERE id=%s", (user, )) if not g.cursor.fetchone(): raise APIError("Invalid User") query = {k: v for (k, v) in request.values.iteritems() if k in USER_EDITABLE_FIELDS} if not len(query): raise APIError("Nothing to change!") sql = "UPDATE users SET {} WHERE id=%(id)s".format(Cursor.map_values(query)) query['id'] = user g.cursor.execute(sql, query) return APIResponse()