def new_user():
"""creates a new local user, removes from the input ['/'] character also
using bleach cleans the input from html, styles, etc. code
Returns:
render_template -- loads the login.html after the user is succesfully added to the DB
"""
if request.method == 'POST':
if session.query(User).filter_by(
t_email=request.form['newusermail']).first():
return "User already in Database"
else:
at_user = User(t_name=bleach.clean(request.form['newusername'],
tags=[],
attributes={},
styles=[],
strip=True),
t_email=bleach.clean(request.form['newusermail'],
tags=[],
attributes={},
styles=[],
strip=True),
t_picture='Nothing at all nothing at all')
at_user.hash_password(request.form['newuserpass'])
session.add(at_user)
session.commit()
flash('User added to the DB you can login now', category='info')
return redirect('/start')
else:
print('this is by default the first action its a GET request')
return render_template('login.html')
def showRegister():
if request.method == 'GET':
if 'username' in login_session:
flash('You\'re already logged in')
return redirect(url_for('showSpecies'))
return render_template('register.html')
if request.method == 'POST':
username = request.form['username']
email = request.form['email']
password = request.form['password']
picture = request.form['picture']
if username is None or email is None or password is None:
return ("<script>alert('Please enter your Name, E-mail & "
"Password'); location.href='/register';</script>")
if session.query(User).filter_by(email=email).first() is not None:
return ("<script>alert('User already exists'); "
"location.href='/login';</script>")
newUser = User(username=username, email=email)
if picture:
newUser.picture = picture
newUser.hash_password(password)
session.add(newUser)
session.commit()
flash('User was created Successfully. You can login now.')
return redirect(url_for('showLogin'))
def new_user():
if request.method == 'POST':
new_user = User(t_name=request.form['newusername'],
t_email=request.form['newusermail'],
t_picture='Nothing at all nothing at all')
new_user.hash_password(request.form['newuserpass'])
session.add(new_user)
session.commit()
return redirect(url_for('login'))
else:
print("this is by default the first action its a GET request")
return render_template('login.html')
def add_user(username, password, email):
"""
Add a new user, return None if not able
"""
if ses.query(User).filter_by(username=username).first() is None:
new_user = User(username=username, email=email)
new_user.hash_password(password)
# new_user.active = 0
ses.add(new_user)
ses.commit()
return get_user(username).id
else:
return None
def register():
if request.method == 'POST':
if session.query(User).filter_by(
username=request.form['username']).all():
flash('Username Already Exists')
return render_template('register.html')
if session.query(User).filter_by(email=request.form['email']).all():
flash('Email already in use.')
return render_template('register.html')
else:
newUser = User(username=request.form['username'],
email=request.form['email'])
newUser.hash_password(request.form['password'])
session.add(newUser)
flash('Registered!')
session.commit()
return redirect(url_for('home'))
else:
return render_template('register.html')
def CreateNewUser():
if request.method == 'POST':
username = request.form['uname']
name = request.form['name']
password = request.form['password']
email = request.form['email']
password = json.dumps(password)
if username is None or password is None:
abort(400) # missing arguments
user = User(uname=username, name=name, email=email)
if user:
user.hash_password(password)
session.add(user)
flash('New User %s Successfully Created' % user.name)
session.commit()
return render_template('login.html')
else:
return render_template('createuser.html')
def new_user():
session = DBSession()
Bool = False
if 'username' not in login_session:
return redirect('/login')
username = request.json.get('username')
password = request.json.get('password')
email = request.json.get('email')
if username is None or password is None:
abort(400)
# missing arguments
if session.query(User).filter_by(username=username).first() is not None:
abort(400)
# existing user
user = User(username=username)
user.hash_password(password)
session.add(user)
session.commit()
return jsonify({'username': user.username}), 201, {
'Location': url_for('get_user', id=user.id, _external=True)
}
def new_user():
username = request.json.get('username')
password = request.json.get('password')
first_name = request.json.get('first_name')
last_name = request.json.get('last_name')
if username is None or password is None or last_name is None or first_name is None:
print "missing arguments"
abort(400)
if session.query(User).filter_by(username=username).first() is not None:
print "existing user"
user = session.query(User).filter_by(username=username).first()
return jsonify(
{'message': 'user already exists'}
), 200 #, {'Location': url_for('get_user', id = user.id, _external = True)}
user = User(username=username, first_name=first_name, last_name=last_name)
user.hash_password(password)
session.add(user)
session.commit()
return jsonify(
{'username': user.username}
), 201 #, {'Location': url_for('get_user', id = user.id, _external = True)}
# Bind the engine to the metadata of the Base class so that the
# declaratives can be accessed through a DBSession instance
Base.metadata.bind = engine
DBSession = sessionmaker(bind=engine)
# A DBSession() instance establishes all conversations with the database
# and represents a "staging zone" for all the objects loaded into the
# database session object. Any change made against the objects in the
# session won't be persisted into the database until you call
# session.commit(). If you're not happy about the changes, you can
# revert all of them back to the last commit by calling
# session.rollback()
session = DBSession()
user1 = User(name="User1", uname="user1", email="*****@*****.**")
user1.hash_password("user1")
session.add(user1)
session.commit()
user2 = User(name="User2", uname="user2", email="*****@*****.**")
user2.hash_password("user2")
session.add(user2)
session.commit()
user3 = User(name="User3", uname="user3", email="*****@*****.**")
user3.hash_password("user3")
session.add(user3)
session.commit()
#Items for Soccer
category1 = Category(name="Soccer", user=user1)
