def load_user_info(): """Load info for the current user and put it in 'g'.""" user_id = session.get('user_id') (user_id, username, admin, directory) = users.user_info(user_id) g.user_id = user_id g.username = username g.admin = admin g.directory = directory
def get(self): username = None user_id = session.get('user_id') if user_id is not None: (user_id, username, admin, directory) = users.user_info(user_id) running = g.job_manager.count_jobs(g.db, 'running') waiting = g.job_manager.count_jobs(g.db, 'waiting') return {'version': g.version, 'name': g.config.get('NAME'), 'username': username, 'jobs_running': running, 'jobs_waiting': waiting}
def decorated(*args, **kwargs): user_id = session.get('user_id') if user_id is None: # user is not logged in abort(401) (user_id, username, admin, directory) = users.user_info(user_id) if not admin: # user does not have administrator rights abort(403) g.user_id = user_id g.username = username g.admin = admin g.directory = directory return f(*args, **kwargs)
def change_pwd(user_id): error = None if request.method == 'POST': password1 = request.form['password1'] password2 = request.form['password2'] if password1 != password2: error = "Passwords don't match!" else: users.update_password(user_id, password1) return redirect(url_for('.list_users')) u = users.user_info(user_id) return render_template('admin_change_pwd.html', title="Change Password for %s" % u['username'], user=u, error=error)
def edit_user(user_id): if request.method == 'POST': action = request.form['button'] if action == 'Delete': users.delete_user(user_id) else: username = request.form['username'] directory = request.form['directory'] users.update(user_id, username, directory) return redirect(url_for('.list_users')) (user_id, username, admin, directory) = users.user_info(user_id) return render_template('edit_user.html', title='User %s' % username, user_id=user_id, username=username, admin=admin, directory=directory)
def profile(id): allow = False if users.user_id == 0: redirect("/") if users.is_user() and users.user_id() == id: allow = True elif users.is_user(): sql = "SELECT 1 FROM coaches WHERE trainer_id=:trainer_id AND coach_id=:coach_id AND visible=1" result = db.session.execute(sql, {"trainer_id":id, "coach_id":users.user_id()}) if result.fetchone() != None: allow = True if not allow: return render_template("error.html", message="Ei oikeutta nähdä sivua!") weight_now = weights.get_last(id) user = users.user_info(id) bmi = (10000 * weight_now[0] / (user[2]*user[2])) bmi_string = float("{:.2f}".format(bmi)) to_target = float("{:.2f}".format(weight_now[0] - user[1])) return render_template("profile.html", username=user[0], weight_now=weight_now[0], weight_target=user[1], to_target=to_target, bmi=bmi_string)
def setUp(self): self.passwd = "$2a$12$CyLyLDPA5NFTY48o3fANQOEsni38JgHBk3FNwdUFd1OwYMBZxN146" db.delete('Users', where='id > 0') self.uid = db.insert('Users', uname='kevin', role=1, password=self.passwd) self.uinfo = users.user_info()