def add_admin(username, email): """Create an admin user""" _admin_permission = Permission.query.first() if _admin_permission is None: try: Permission.add(id=1, name="admin") except Exception as e: print ('Failed to add "admin" permission: ' + str(e)) sys.exit() # create user (using function defined below) _u = add_user(username, email) # now add permission to newly created user _u.permissions.append(_admin_permission) db.session.commit()
def add_permission(): """add permission""" if not current_user.has_permission("admin"): abort(403) if request.method == 'POST': # validate data if 'name' in request.form and len(request.form['name']): # TODO is das hier fies?! hart nach str konvertieren? _name = str(request.form['name']) if 'comment' in request.form and len(request.form['comment']): _comment = str(request.form['comment']) else: _comment = None try: new_permission = Permission.add(name=_name, comment=_comment) flash("Successfully created " + _name + " with ID " + str(new_permission.id), "success") return redirect("/admin/permissions/1") except Exception as e: flash("Something went wrong.", "danger") return redirect("/admin/permissions/1") else: return render_template("admin_add_permission.html")