def deleteRestaurant(restaurant_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the restaurant to delete restaurant = db.getRestaurant(restaurant_id) # Checks whether the user has access to this content if not allowAccess(restaurant.user_id, user["id"]): # Inform the user output = "You are not authorized to delete the %s restaurant. Please create your own restaurant in order to delete!" % restaurant.name flash(output, "alert-danger") # Redirects to the new area return redirect(url_for('showRestaurants')) if request.method == 'POST': if validateStateToke(request.form['csrf']): # Deleting from database db.deleteRestaurant(restaurant) # Inform the user output = "Restaurant %s was deleted!" % restaurant.name flash(output, "alert-success") # Redirects to the new area return redirect(url_for('showRestaurants')) else: # Render template return render_template('deleteRestaurant.html', restaurant=restaurant, token=antiForgeryGenToke(), username=user['name'], user_picture=user['picture'])
def deleteMenuItem(restaurant_id, menu_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the context item item = db.getRestaurantMenuItem(menu_id) # Checks whether the user has access to this content if not allowAccess(item.user_id, user["id"]): # Inform the user output = "You are not authorized to delete menu item to %s. Please create your own restaurant in order to delete items." % item.name flash(output, "alert-danger") # Redirects to the new area return redirect(url_for('showmenu', restaurant_id=restaurant_id)) if request.method == 'POST': if validateStateToke(request.form['csrf']): # Deleting item db.deleteRestaurantMenuItem(item) # Inform the user output = "%s menu item deleted!" % item.name flash(output, "alert-success") # Redirects to the new area return redirect(url_for('showmenu', restaurant_id=restaurant_id)) else: # Render template return render_template('deleteMenuItem.html', restaurant_id=restaurant_id, menu_id=menu_id, item=item, token=antiForgeryGenToke(), username=user['name'], user_picture=user['picture'])
def newRestaurant(): # Get user info for the user menu user = userData.getCurrentUserInfo() if request.method == 'POST': file_path = filesHandler.uploadImage( request.files['file'] ) # Save the new restaurant db.newRestaurant( name = request.form['name'], file = file_path, user_id = user["id"] ) # Inform the user flash("New restaurant created!", "alert-success") # Redirects to the new area return redirect( url_for('showRestaurants') ) else: # Render template return render_template( 'newRestaurant.html', username = user['name'], user_picture = user['picture'] )
def editMenuItem(restaurant_id, menu_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the context item item = db.getRestaurantMenuItem( menu_id ) # Checks whether the user has access to this content if not allowAccess( item.user_id, user["id"] ): # Inform the user output = "You are not authorized to edit menu items to %s restaurant. Please create your own restaurant in order to edit items." % restaurant.name flash(output, "alert-danger") # Redirects to the new area return redirect( url_for('showmenu', restaurant_id = restaurant_id) ) # Fetches all courses type courses = db.getAllCourses() if request.method == 'POST': if validateStateToke( request.form['csrf'] ): money = request.form['price'] value = Decimal(sub(r'[^\d.]', '', money)) name = request.form['name'] db.updateRestaurantMenuItem( item, name = name, description = request.form['description'], price = '${:,.2f}'.format(float(value)), course_name = request.form['course'], ) # Inform the user output = "%s menu item edited!" % name flash( output, "alert-success" ) # Redirects to the new area return redirect(url_for('showmenu', restaurant_id = restaurant_id)) else: # Convert price to number item.price = Decimal(sub(r'[^\d.]', '', item.price)) # Render template return render_template( 'editMenuItem.html', restaurant_id = restaurant_id, menu_id = menu_id, item = item, courses = courses, token = antiForgeryGenToke(), username = user['name'], user_picture = user['picture'] )
def editMenuItem(restaurant_id, menu_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the context item item = db.getRestaurantMenuItem(menu_id) # Checks whether the user has access to this content if not allowAccess(item.user_id, user["id"]): # Inform the user output = "You are not authorized to edit menu items to %s restaurant. Please create your own restaurant in order to edit items." % restaurant.name flash(output, "alert-danger") # Redirects to the new area return redirect(url_for('showmenu', restaurant_id=restaurant_id)) # Fetches all courses type courses = db.getAllCourses() if request.method == 'POST': if validateStateToke(request.form['csrf']): money = request.form['price'] value = Decimal(sub(r'[^\d.]', '', money)) name = request.form['name'] db.updateRestaurantMenuItem( item, name=name, description=request.form['description'], price='${:,.2f}'.format(float(value)), course_name=request.form['course'], ) # Inform the user output = "%s menu item edited!" % name flash(output, "alert-success") # Redirects to the new area return redirect(url_for('showmenu', restaurant_id=restaurant_id)) else: # Convert price to number item.price = Decimal(sub(r'[^\d.]', '', item.price)) # Render template return render_template('editMenuItem.html', restaurant_id=restaurant_id, menu_id=menu_id, item=item, courses=courses, token=antiForgeryGenToke(), username=user['name'], user_picture=user['picture'])
def showRestaurants(): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetch restaurants restaurants = db.getAllRestaurants() # Render template return render_template('restaurants.html', filesPath=filesHandler.getFilesFolder(), restaurants=list(restaurants), username=user['name'], user_id=user['id'], user_picture=user['picture'])
def showRestaurants(): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetch restaurants restaurants = db.getAllRestaurants() # Render template return render_template( 'restaurants.html', filesPath = filesHandler.getFilesFolder(), restaurants = list(restaurants), username = user['name'], user_id = user['id'], user_picture = user['picture'] )
def NewMenuItem(restaurant_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the context restaurant restaurant = db.getRestaurant( restaurant_id ) # Checks whether the user has access to this content if not allowAccess( restaurant.user_id, user["id"] ): # Inform the user output = "You are not authorized to add menu items to %s restaurant. Please create your own restaurant in order to add items." % restaurant.name flash(output, "alert-danger") # Redirects to the new area return redirect( url_for('showmenu', restaurant_id = restaurant_id) ) # Fetches all courses type courses = db.getAllCourses() if request.method == 'POST': if validateStateToke( request.form['csrf'] ): # Save the new menu item db.newRestaurantMenuItem( name = request.form['name'], restaurant_id = restaurant_id, description = request.form['description'], price = '${:,.2f}'.format(float(request.form['price'])), user_id = user["id"], course_name = request.form['course'] ) # Inform the user flash("New menu item created!", "alert-success") # Redirects to the new area return redirect( url_for('showmenu', restaurant_id = restaurant_id) ) else: # Render template return render_template( 'newMenuItem.html', restaurant = restaurant, courses = courses, token = antiForgeryGenToke(), username = user['name'], user_picture = user['picture'] )
def NewMenuItem(restaurant_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the context restaurant restaurant = db.getRestaurant(restaurant_id) # Checks whether the user has access to this content if not allowAccess(restaurant.user_id, user["id"]): # Inform the user output = "You are not authorized to add menu items to %s restaurant. Please create your own restaurant in order to add items." % restaurant.name flash(output, "alert-danger") # Redirects to the new area return redirect(url_for('showmenu', restaurant_id=restaurant_id)) # Fetches all courses type courses = db.getAllCourses() if request.method == 'POST': if validateStateToke(request.form['csrf']): # Save the new menu item db.newRestaurantMenuItem(name=request.form['name'], restaurant_id=restaurant_id, description=request.form['description'], price='${:,.2f}'.format( float(request.form['price'])), user_id=user["id"], course_name=request.form['course']) # Inform the user flash("New menu item created!", "alert-success") # Redirects to the new area return redirect(url_for('showmenu', restaurant_id=restaurant_id)) else: # Render template return render_template('newMenuItem.html', restaurant=restaurant, courses=courses, token=antiForgeryGenToke(), username=user['name'], user_picture=user['picture'])
def editRestaurant(restaurant_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the restaurant to edit restaurant = db.getRestaurant( restaurant_id ) # Checks whether the user has access to this content if not allowAccess( restaurant.user_id, user["id"] ): # Inform the user output = "You are not authorized to edit the %s restaurant. Please create your own restaurant in order to edit!" % restaurant.name flash(output, "alert-danger") # Redirects to the new area return redirect( url_for('showRestaurants') ) if request.method == 'POST': if validateStateToke( request.form['csrf'] ): # Save the edited restaurant name = request.form['name'] file_path = filesHandler.uploadImage( request.files['file'] ) print "----------->" db.updateRestaurant( restaurant = restaurant, name = name, picture = file_path ) # Inform the user output = "Restaurant %s was edited!" % name flash( output, "alert-success" ) # Redirects to the new area return redirect( url_for('showRestaurants') ) else: # Render template return render_template( 'editRestaurant.html', restaurant = restaurant, token = antiForgeryGenToke(), username = user['name'], user_picture = user['picture'] )
def editRestaurant(restaurant_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the restaurant to edit restaurant = db.getRestaurant(restaurant_id) # Checks whether the user has access to this content if not allowAccess(restaurant.user_id, user["id"]): # Inform the user output = "You are not authorized to edit the %s restaurant. Please create your own restaurant in order to edit!" % restaurant.name flash(output, "alert-danger") # Redirects to the new area return redirect(url_for('showRestaurants')) if request.method == 'POST': if validateStateToke(request.form['csrf']): # Save the edited restaurant name = request.form['name'] file_path = filesHandler.uploadImage(request.files['file']) print "----------->" db.updateRestaurant(restaurant=restaurant, name=name, picture=file_path) # Inform the user output = "Restaurant %s was edited!" % name flash(output, "alert-success") # Redirects to the new area return redirect(url_for('showRestaurants')) else: # Render template return render_template('editRestaurant.html', restaurant=restaurant, token=antiForgeryGenToke(), username=user['name'], user_picture=user['picture'])
def showmenu(restaurant_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the context restaurant restaurant = db.getRestaurant(restaurant_id) # Fetches all items from the context restaurant items = db.getAllRestaurantMenuItems(restaurant) # Fetches all courses type, and respective menu items courses = db.getAllRestItemsByCourses(restaurant) # Render template return render_template('menu.html', filesPath=filesHandler.getFilesFolder(), restaurant=restaurant, items=list(items), courses=courses, user_id=user['id'], username=user['name'], user_picture=user['picture'])
def newRestaurant(): # Get user info for the user menu user = userData.getCurrentUserInfo() if request.method == 'POST': file_path = filesHandler.uploadImage(request.files['file']) # Save the new restaurant db.newRestaurant(name=request.form['name'], file=file_path, user_id=user["id"]) # Inform the user flash("New restaurant created!", "alert-success") # Redirects to the new area return redirect(url_for('showRestaurants')) else: # Render template return render_template('newRestaurant.html', username=user['name'], user_picture=user['picture'])
def deleteMenuItem(restaurant_id, menu_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the context item item = db.getRestaurantMenuItem( menu_id ) # Checks whether the user has access to this content if not allowAccess( item.user_id, user["id"] ): # Inform the user output = "You are not authorized to delete menu item to %s. Please create your own restaurant in order to delete items." % item.name flash(output, "alert-danger") # Redirects to the new area return redirect( url_for('showmenu', restaurant_id = restaurant_id) ) if request.method == 'POST': if validateStateToke( request.form['csrf'] ): # Deleting item db.deleteRestaurantMenuItem( item ) # Inform the user output = "%s menu item deleted!" % item.name flash(output, "alert-success") # Redirects to the new area return redirect(url_for('showmenu', restaurant_id = restaurant_id)) else: # Render template return render_template( 'deleteMenuItem.html', restaurant_id = restaurant_id, menu_id = menu_id, item = item, token = antiForgeryGenToke(), username = user['name'], user_picture = user['picture'] )
def showmenu(restaurant_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the context restaurant restaurant = db.getRestaurant( restaurant_id ) # Fetches all items from the context restaurant items = db.getAllRestaurantMenuItems( restaurant ) # Fetches all courses type, and respective menu items courses = db.getAllRestItemsByCourses( restaurant ) # Render template return render_template( 'menu.html', filesPath = filesHandler.getFilesFolder(), restaurant = restaurant, items = list(items), courses = courses, user_id = user['id'], username = user['name'], user_picture = user['picture'] )
def deleteRestaurant(restaurant_id): # Get user info for the user menu user = userData.getCurrentUserInfo() # Fetches the restaurant to delete restaurant = db.getRestaurant( restaurant_id ) # Checks whether the user has access to this content if not allowAccess( restaurant.user_id, user["id"] ): # Inform the user output = "You are not authorized to delete the %s restaurant. Please create your own restaurant in order to delete!" % restaurant.name flash( output, "alert-danger" ) # Redirects to the new area return redirect( url_for('showRestaurants') ) if request.method == 'POST': if validateStateToke( request.form['csrf'] ): # Deleting from database db.deleteRestaurant( restaurant ) # Inform the user output = "Restaurant %s was deleted!" % restaurant.name flash(output, "alert-success") # Redirects to the new area return redirect( url_for('showRestaurants') ) else: # Render template return render_template( 'deleteRestaurant.html', restaurant = restaurant, token = antiForgeryGenToke(), username = user['name'], user_picture = user['picture'] )
def decorated_function(*args, **kwargs): user = userData.getCurrentUserInfo() if not user['name']: flash("Authentication required", "alert-danger") return redirect(url_for('showLogin')) return func(*args, **kwargs)
def decorated_function(*args, **kwargs): user = userData.getCurrentUserInfo() if not user['name']: flash("Authentication required", "alert-danger") return redirect( url_for('showLogin') ) return func(*args, **kwargs)