def front(request): # posts = Post.objects.all().order_by('-date_posted') context = {} if request.method == 'POST': # id = request.POST.get('id') # if id: # message = Message.objects.get(id=id) # form = PostForm(request.POST, request.FILES, instance=post) # else: form = MessageForm(request.POST) if is_admin(request.user): context['permission'] = 'is_admin' if form.is_valid(): message = form.save() context['result'] = 'Your post has been saved' else: context['result'] = form.errors return render(request, 'index.html', context)
def all_messages(request): context = {} messages = Message.objects.all().order_by('-date_posted') context['messages'] = messages if is_admin(request.user): context['permission'] = 'is_admin' return render(request, 'all_messages.html', context)
def edit_message(request, id): if request.method == 'DELETE': if request.user.is_superuser or is_admin(request.user): Message.objects.get(id=id).delete() return HttpResponse(status=204) else: return HttpResponse(status=401) elif request.method == 'GET': message = Message.objects.get(id=id) return render(request, 'message.html', {'message': message})