def group_action(request, group_name, member_pk):
group = get_object_or_404(Group, name=group_name)
if not group.properties.admins.filter(pk=request.user.pk):
raise PermissionDenied()
User = get_user_model()
try:
member = group.user_set.get(pk=member_pk)
except User.DoesNotExist:
raise Http404
group_proxy = GroupProxy(group)
if 'kick' in request.POST:
try:
group_proxy.remove_member(member, check_sole_admin=True)
messages.success(request, _('User was removed from group'))
except GroupError as e:
messages.errror(request, e.message)
elif 'grant_admin' in request.POST:
group_proxy.grant_admin(member)
messages.success(request, _('User was granted group admin.'))
elif 'revoke_admin' in request.POST:
try:
group_proxy.revoke_admin(member)
messages.success(request,
_('Revoked group admin rights from user.'))
except GroupError as e:
messages.errror(request, e.message)
return redirect('groups_show', group.name)
def group_action(request, group_name, member_pk):
group = get_object_or_404(Group, name=group_name)
if not group.properties.admins.filter(pk=request.user.pk):
raise PermissionDenied()
User = get_user_model()
try:
member = group.user_set.get(pk=member_pk)
except User.DoesNotExist:
raise Http404
group_proxy = GroupProxy(group)
if 'kick' in request.POST:
try:
group_proxy.remove_member(member, check_sole_admin=True)
messages.success(request, _('User was removed from group'))
except GroupError as e:
messages.errror(request, str(e))
elif 'grant_admin' in request.POST:
group_proxy.grant_admin(member)
messages.success(request, _('User was granted group admin.'))
elif 'revoke_admin' in request.POST:
try:
group_proxy.revoke_admin(member)
messages.success(request, _('Revoked group admin rights from user.'))
except GroupError as e:
messages.errror(request, str(e))
return redirect('groups_show', group.name)
def all_products(request):
""" A view to show all products including sorting and searching quries """
products = Product.objects.all()
query = None
categories = None
sort = None
direction = None
if request.GET:
if 'sort' in request.GET:
sortkey = request.GET['sort']
sort = sortkey
if sortkey == 'name':
sortkey = 'lower_name'
products = products.annotate(lower_name=Lower('name'))
if sortkey == 'category':
sortkey = 'category__name'
if 'direction' in request.GET:
direction = request.GET['direction']
if direction == 'desc':
sortkey = f'-{sortkey}'
products = products.order_by(sortkey)
if 'category' in request.GET:
categories = request.GET['category'].split(',')
products = products.filter(category__name__in=categories)
categories = Category.objects.filter(name__in=categories)
if 'q' in request.GET:
query = request.GET['q']
if not query:
messages.errror(request,
"You didn't enter any search criteria")
return redirect(reverse('products'))
queries = Q(name__icontains=query) | Q(
description__icontains=query)
products = products.filter(queries)
current_sorting = f'{sort}_{direction}'
context = {
'products': products,
'search_term': query,
'current_categories': categories,
'current_sorting': current_sorting,
}
return render(request, "products/products.html", context)
def login_request(request):
if request.method == "POST":
form = AuthenticationForm(request=request, data=request.POST)
if form.is_valid():
username = form.cleaned_data.get('username')
password = form.cleaned_data.get('password')
user = authenticate(username=username, password=password)
if user is not None:
login(request, user)
# messages.info(request, f"You are now logged in as {username}")
return redirect("system:index")
else:
messages.errror(request, "Invalid username or password.")
else:
messages.error(request, "Invalid username or password.")
form = AuthenticationForm()
return render(request = request,
template_name = "system/login.html",
context={"form":form})
def login_view(request):
if request.method == 'POST':
form = AuthenticationForm(request=request, data=request.POST)
if form.is_valid():
username = form.cleaned_data.get('username')
password = form.cleaned_data.get('password')
user = authenticate(username=username, password=password)
if user:
login(request, user)
messages.success(request, "Successfully logged in!")
return redirect('/')
else:
messages.errror(request, "Invalid username or password")
else:
messages.error(request, "Invalid username or password")
form = AuthenticationForm()
context = {'form': form, 'login': True}
return render(request, 'accounts/login.html', context)