def profile():
form = PublishForm()
if "email" not in session:
return redirect(url_for("login"))
user = User.query.filter_by(email=session["email"]).first()
if request.method == "POST":
if form.validate() == False:
return render_template("profile.html", form=form, user=user)
else:
newentry = Entries(
form.topic.data,
form.article.data,
session["email"],
user.firstname,
user.lastname,
datetime.datetime.now(),
)
db.session.add(newentry)
db.session.commit()
return redirect(url_for("home"))
elif request.method == "GET":
if user.role == ROLE_ADMIN:
return redirect(url_for("admin"))
if user.role == ROLE_USER:
return render_template("profile.html", form=form, user=user)
def edit_entry(pub_id):
post_edit = Entries.query.filter_by(pub_id=pub_id).first()
form = PublishForm(request.form, post_edit)
if request.method == "POST":
if form.validate() == False:
return render_template("admin.html", form=form)
else:
form.populate_obj(post_edit)
db.session.add(post_edit)
db.session.commit()
return redirect(url_for("admin"))
return render_template("admin.html", form=form)
def add_post_admin():
form = PublishForm()
user = User.query.filter_by(email=session["email"]).first()
if request.method == "POST":
if form.validate() == False:
return render_template("admin.html", form=form, user=user)
else:
new_entry = Entries(
form.topic.data,
form.article.data,
session["email"],
user.firstname,
user.lastname,
datetime.datetime.now(),
)
db.session.add(new_entry)
db.session.commit()
return redirect(url_for("admin"))
elif request.method == "GET":
return render_template("admin.html", form=form, user=user)
