def post(self):
firstName = self.request.get("firstName")
lastName = self.request.get("lastName")
mail = self.request.get("mail")
message = self.request.get("message")
listOfValues = [
firstName.lower(),
lastName.lower(),
mail.lower(),
message.lower()
]
if "<script>" in listOfValues:
return self.render_template("error.html")
else:
guestbook = Guestbook(name=firstName,
surname=lastName,
email=mail,
message=message)
guestbook.put()
params = {
"firstName": firstName,
"lastName": lastName,
"mail": mail,
"message": message
}
return self.render_template("processed.html", params)
def post(self):
params = {}
name = self.request.get("name")
if name == None:
name = "Anonymous"
else:
name = name
email = self.request.get("email")
comment = self.request.get("comment")
params.update({"name": name, "email": email, "comment": comment})
entry = Guestbook(name=params["name"],
email=params["email"],
text=params["comment"])
entry.put()
return self.render_template("comment.html", params)
def post(self):
ime = self.request.get("ime")
priimek = self.request.get("priimek")
email = self.request.get("email")
sporocilo = self.request.get("sporocilo")
# datum = self.request.get("nastanek") # datume generira avtomaticno
sporocilo = cgi.escape(sporocilo) # prepreci javascript injection
guestbook = Guestbook(ime=ime,
priimek=priimek,
email=email,
sporocilo=sporocilo)
guestbook.put()
return self.write(
"You have successfully added your message...click back on your browser."
)
def post(self):
ime = self.request.get("ime")
if ime == "":
ime = "N/A"
priimek = self.request.get("priimek")
if priimek == "":
priimek = "N/A"
email = self.request.get("email")
message = self.request.get("text")
if message:
guestbook = Guestbook(ime=ime,
priimek=priimek,
email=email,
message=message)
# guestbook.put()
# return self.write(guestbook)
params = {"guestbook": guestbook}
return self.render_template("vnos.html", params=params)
else:
error = True
return self.get()
def guestbook(request):
instance = Guestbook(display=True,ip=request.META.get('HTTP_X_REAL_IP',request.META['REMOTE_ADDR']))
guestbook_form = GuestbookForm(instance=instance)
start_at = max(int(request.GET.get('start_at','0')),0)
items_per_page = 20
if request.method == "POST":
guestbook_form = GuestbookForm(request.POST, instance=instance)
if guestbook_form.is_valid():
guestbook_form.save(request)
messages.success(request, _("Guestbook entry added"))
return HttpResponseRedirect('/guestbook/')
context = {
'guestbook_form': guestbook_form
, 'entries': Guestbook.objects.filter(display=True).order_by('-date')[start_at:start_at+items_per_page]
, 'display_next_page':len(Guestbook.objects.filter(display=True).order_by('-date')[start_at+items_per_page:]) > 0
, 'display_last_page':start_at>0
, 'next_startat':start_at+items_per_page
, 'last_startat':max(start_at-items_per_page,0)
}
return HttpResponse(loader.get_template("guestbook.html").render(RequestContext(request,context)))
def post(self): # shranjevanje user emaila v sporocilo model
user_email = user.email()
save_user_email = Guestbook(sporocilo=user_email)
save_user_email.put()
return self.render_template("hello.html", params)
