def api_show(request):
    if request.POST.get("secret") != settings.API_SECRET:
        return JsonResponse({"error": "Unauthorized"}, status=401)
    reservation = Reservation.current()
    if reservation:
        return JsonResponse({"password": reservation.password, "map": reservation.map})
    else:
        return JsonResponse({"password": "******", "map": "city"})
def create(request):
    if not Reservation.current():
        map = request.POST.get("map", "city").lower()
        Reservation(profile=request.user.profile, map=map).save()
    return redirect("reservations.manage")
def delete(request):
    current_reservation = Reservation.current()
    if current_reservation and current_reservation.profile == request.user.profile:
        current_reservation.delete()
    return redirect("reservations.manage")
def manage(request):
    context = {}
    context["reservation"] = Reservation.current()
    return render(request, "reservations/manage.html", context)