def put_user_by_id(id):
# Note: only admins can access this endpoint.
data, _ = edit_user_admin_serializer.loads(request.data)
Users.query.filter_by(id=id).update(data['attributes'])
db.session.commit()
response = jsonify()
response.status_code = 204
return response
def patch_user_by_id(id):
if current_user.is_admin:
data, errors, = edit_user_admin_serializer.loads(request.data)
elif current_user.id != id:
raise AdminRequiredError()
else:
data, errors, = edit_user_profile_serializer.loads(request.data)
Users.query.filter_by(id=id).update(data['attributes'])
db.session.commit()
response = jsonify()
response.status_code = 204
return response
