def profile(): form = PublishForm() if "email" not in session: return redirect(url_for("login")) user = User.query.filter_by(email=session["email"]).first() if request.method == "POST": if form.validate() == False: return render_template("profile.html", form=form, user=user) else: newentry = Entries( form.topic.data, form.article.data, session["email"], user.firstname, user.lastname, datetime.datetime.now(), ) db.session.add(newentry) db.session.commit() return redirect(url_for("home")) elif request.method == "GET": if user.role == ROLE_ADMIN: return redirect(url_for("admin")) if user.role == ROLE_USER: return render_template("profile.html", form=form, user=user)
def edit_entry(pub_id): post_edit = Entries.query.filter_by(pub_id=pub_id).first() form = PublishForm(request.form, post_edit) if request.method == "POST": if form.validate() == False: return render_template("admin.html", form=form) else: form.populate_obj(post_edit) db.session.add(post_edit) db.session.commit() return redirect(url_for("admin")) return render_template("admin.html", form=form)
def add_post_admin(): form = PublishForm() user = User.query.filter_by(email=session["email"]).first() if request.method == "POST": if form.validate() == False: return render_template("admin.html", form=form, user=user) else: new_entry = Entries( form.topic.data, form.article.data, session["email"], user.firstname, user.lastname, datetime.datetime.now(), ) db.session.add(new_entry) db.session.commit() return redirect(url_for("admin")) elif request.method == "GET": return render_template("admin.html", form=form, user=user)