def home(): search = SearchForm() makepost = PostForm() userID = current_user.userID page = Page.query.filter(Page.Powner == userID).first() posts = Post.query.filter(Post.pageID == page.pageID).order_by( Post.postDate.desc()) if current_user.userType == 'manager': return redirect(url_for('employees')) elif current_user.userType == 'employee': return redirect(url_for('emp')) if request.method == 'GET': return render_template('home.html', posts=posts, formpost=makepost, searchform=search) elif request.method == 'POST': if makepost.validate(): connection = db.engine.raw_connection() cursor = connection.cursor() cursor.callproc('ownerMakePost', [current_user.userID, makepost.post.data]) cursor.close() connection.commit() else: return render_template('home.html', posts=posts, formpost=makepost, searchform=search) return redirect(url_for('home'))
def edit_emp(SSN): search = SearchForm() employee = Employee.query.filter(Employee.SSN == SSN).first() form = editEmployee() if request.method == 'GET': form.address.data = employee.Address form.firstname.data = employee.FirstName form.lastname.data = employee.LastName form.company.data = employee.CName form.zipcode.data = employee.ZipCode form.hourlypay.data = employee.HourlyRate return render_template('editemp.html', searchform=search, form=form, employee=employee) elif request.method == 'POST': if form.validate(): employee.Address = form.address.data employee.FirstName = form.firstname.data employee.LastName = form.lastname.data employee.CName = form.company.data employee.ZipCode = form.zipcode.data employee.HourlyRate = form.hourlypay.data db.session.commit() return redirect(url_for('employees')) else: return render_template('editemp.html', searchform=search, form=form, employee=employee)
def group(): groupForm = GroupForm() search = SearchForm() groups = Group.query.all() mygroups = Member.query.with_entities( Member.groupID).filter(Member.userID == current_user.userID).all() if request.method == 'GET': return render_template('groups.html', searchform=search, groupForm=groupForm, groups=groups, mygroups=mygroups) if request.method == 'POST': if groupForm.validate(): conn = db.engine.raw_connection() cursor = conn.cursor() cursor.callproc('createGroup', args=[ groupForm.name.data, 'organization', 'public', current_user.userID ]) cursor.execute('SELECT @groupID') groupID = cursor.fetchone() cursor.close() conn.commit() return redirect(url_for('groups', groupID=groupID[0])) else: return render_template('groups.html', groupForm=groupForm, searchform=search)
def message(username): search = SearchForm() messages = Message.query.filter( db.or_(db.and_(Message.MSenderId == current_user.userID, Message.MReceiverId == username), \ db.and_(Message.MReceiverId == current_user.userID, Message.MSenderId == username))) \ .order_by(Message.MSubject, Message.MDate).all() message = MessageForm() if request.method == 'GET': return render_template('message.html', user=username, message=message, messages=messages, searchform=search) if request.method == 'POST': if message.validate(): conn = db.engine.raw_connection() cursor = conn.cursor() cursor.callproc('SendMessage', args=[ message.subject.data, message.content.data, current_user.userID, username ]) cursor.close() conn.commit() return redirect(url_for('message', username=username)) else: return render_template('message.html', user=username, searchform=search, message=message, messages=messages)
def search(): search = SearchForm() if request.form['search']: users = User.query.filter(User.userID.like( request.form['search'])).all() else: users = User.query.all() return render_template('Users.html', users=users, searchform=search)
def group_users(groupID): search = SearchForm() group = Group.query.filter(Group.groupID == groupID).first() users = User.query.filter( User.userID.notin_( db.session.query( Member.userID).filter(Member.groupID == groupID))).all() return render_template('usergroup.html', searchform=search, group=group, users=users)
def groups(groupID): makePost = PostForm() search = SearchForm() group = Group.query.filter(Group.groupID == groupID).first() page = Page.query.filter(Page.fGroup == groupID).first() posts = Post.query.filter(Post.pageID == page.pageID).order_by( Post.postDate.desc()) comments = Comment.query.filter( Comment.postID.in_( db.session.query( Post.postID).filter(Post.pageID == page.pageID))).all() members = db.session.query(User, Member).filter(User.userID == Member.userID, Member.groupID == groupID).all() if request.method == 'GET': posts = Post.query.filter(Post.pageID == page.pageID).order_by( Post.postDate.desc()).all() return render_template('group_page.html', comments=comments, searchform=search, formpost=makePost, posts=posts, members=members, group=group) elif request.method == 'POST': userID = current_user.userID if makePost.validate(): connection = db.engine.raw_connection() cursor = connection.cursor() cursor.callproc('postOnGroup', [current_user.userID, groupID, makePost.post.data]) cursor.close() connection.commit() else: return render_template('group_page.html', posts=posts, formpost=makePost, searchform=search, members=members, group=group) return redirect(url_for('groups', groupID=groupID))
def employees(): search = SearchForm() login = LoginForm() employees = Employee.query.all() form = AddEmployeeForm() if request.method == 'GET': return render_template('AddEmployee.html', title='Add Employee', form=form, login=login, searchform=search, employees=employees) elif request.method == 'POST': if form.validate(): Employee.addEmployee(form) return redirect(url_for('employees')) return render_template('AddEmployee.html', title='Add Employee', form=form, login=login, searchform=search, employees=employees)
def signup(): search = SearchForm() login = LoginForm() form = SignUpForm() if request.method == 'GET': return render_template('signup.html', title='Sign Up', form=form, login=login, searchform=search) elif request.method == 'POST': if form.validate(): User.registerUser(form) return render_template('index.html', login=login, searchform=search) else: return render_template('signup.html', form=form, login=login, searchform=search)
def emp(): search = SearchForm() return render_template('employee.html', searchform=search)
def ads(): search = SearchForm() ads = Advertisements.query.all() return render_template('Advertisements.html', searchform=search, ads=ads)