def admin_upgrade():
data = request.get_json(force=True)
db = client['unmatched-db']
# check if the referrer is admin / super admin
ref = db.users.find_one({'uid': data['ref']})
print(ref)
if ref is not None:
# check if the invited user exists
existing_user = db.users.find_one({'email': data['email']})
# print(existing_user)
# admin privilege check
if ref['role'] == 0:
utils.register_new_user(db, existing_user, data, is_upgrade=True)
return jsonify({'isUpgraded': True})
def home():
if request.method == "GET":
if "username" in session and session["username"] != "":
return render_template("home.html", username=session["username"], loggedIn=True)
else:
return render_template("home.html")
elif request.form["Submit"] == "login":
username = request.form["username"]
password = request.form["password"]
if ( utils.check_login_info(username, password) ):
session["username"] = username
return render_template("blog.html",username=username,loggedIn=True, status="") #Successful Login
else:
return render_template("home.html", status="Incorrect Username or Password") #Failed Login
elif request.form["Submit"] == "create":
username = request.form["username"]
password = request.form["password"]
confirm_passwd = request.form["confirm_password"]
email = request.form["email"]
error = utils.register_new_user(username, password, confirm_passwd, email)
if (error == None):
session["username"] = username
return render_template("blog.html",username=username,loggedIn=True, status="") #Successful Login
else:
return render_template("home.html", status="Error: " + error) #Failed Account Creation
elif session["username"] == "":
return render_template("home.html", loggedIn = False, logout = True)
def register():
data = request.get_json(force=True)
db = client['unmatched-db']
# check if the referrer is admin / super admin
ref = db.users.find_one({'uid': data['ref']})
new_user = {}
if ref is not None:
# check if the invited user exists
existing_user = db.users.find_one({'email': data['email']})
# admin privilege check
existing_privileges = db.surveyPrivileges.find_one(
{'uid': data['ref']})['adminids']
if utils.isSublist(existing_privileges, data['surveyids']):
utils.register_new_user(db, existing_user, data, is_upgrade=False)
return jsonify({'isInvited': True})
def register():
if request.method == 'POST':
username = request.form['username']
error = utils.register_new_user(username, request.form['password'],
request.form['confirm_password'],
request.form['email'])
if error:
return render_template('register.html', error=error)
else:
session['username'] = username
return redirect(url_for('index'))
return render_template('register.html')
def register():
if request.method == 'POST':
username = request.form['username']
error = utils.register_new_user(
username,
request.form['password'],
request.form['confirm_password'],
request.form['email']
)
if error:
return render_template('register.html', error=error)
else:
session['username'] = username
return redirect(url_for('index'))
return render_template('register.html')
def home():
if request.method == "GET":
if "username" in session and session["username"] != "":
return render_template("home.html",
username=session["username"],
loggedIn=True)
else:
return render_template("home.html")
elif request.form["Submit"] == "login":
username = request.form["username"]
password = request.form["password"]
if (utils.check_login_info(username, password)):
session["username"] = username
return render_template("blog.html",
username=username,
loggedIn=True,
status="") #Successful Login
else:
return render_template(
"home.html",
status="Incorrect Username or Password") #Failed Login
elif request.form["Submit"] == "create":
username = request.form["username"]
password = request.form["password"]
confirm_passwd = request.form["confirm_password"]
email = request.form["email"]
error = utils.register_new_user(username, password, confirm_passwd,
email)
if (error == None):
session["username"] = username
return render_template("blog.html",
username=username,
loggedIn=True,
status="") #Successful Login
else:
return render_template("home.html", status="Error: " +
error) #Failed Account Creation
elif session["username"] == "":
return render_template("home.html", loggedIn=False, logout=True)
session['username'] = username
return redirect(url_for('index'))
return render_template('register.html')
@app.route('/edit/<int:post_id>', methods=['GET', 'POST'])
def edit(post_id):
if request.method == 'POST':
if 'modify' in request.form:
utils.modify_post(post_id, request.form['new_post'])
else:
utils.remove_post(post_id)
return redirect(url_for('index'))
if 'username' not in session:
return redirect(url_for('login'))
if post_id not in utils.get_user_posts(session['username']):
return 'Error: Invalid post id.'
return render_template('edit.html', post=utils.get_post(post_id))
if __name__ == "__main__":
utils.register_new_user('Dennis Yatunin', 'password0', 'password0',
'*****@*****.**')
utils.register_new_user('Mike Zamansky', 'abcdefg123', 'abcdefg123',
'*****@*****.**')
utils.register_new_user('Kerfuffle', '99 bottles of beer',
'99 bottles of beer', '*****@*****.**')
app.debug = True
app.secret_key = utils.secret_key
app.run(host="0.0.0.0", port=8000)
import db
import sys
from utils import register_new_user
from models import User, PermissionsLevels
if __name__ == "__main__":
if sys.argv[1] == "add":
session = db.Session()
x = session.query(User).get(int(sys.argv[2]))
if x is None:
x = register_new_user(session, int(sys.argv[2]))
x.permissions = PermissionsLevels.ADMIN
session.commit()
session.close()
elif sys.argv[1] == "del":
session = db.Session()
x = session.query(User).get(int(sys.argv[2]))
if x is not None:
x.permissions = PermissionsLevels.USER
session.commit()
session.close()
elif sys.argv[1] == "test":
session = db.Session()
admins = session.query(User).filter_by(
permissions=PermissionsLevels.ADMIN).all()
if request.method == 'POST':
if 'modify' in request.form:
utils.modify_post(post_id, request.form['new_post'])
else:
utils.remove_post(post_id)
return redirect(url_for('index'))
if 'username' not in session:
return redirect(url_for('login'))
if post_id not in utils.get_user_posts(session['username']):
return 'Error: Invalid post id.'
return render_template('edit.html', post=utils.get_post(post_id))
if __name__ == "__main__":
utils.register_new_user('Dennis Yatunin',
'password0',
'password0',
'*****@*****.**'
)
utils.register_new_user('Mike Zamansky',
'abcdefg123',
'abcdefg123',
'*****@*****.**'
)
utils.register_new_user('Kerfuffle',
'99 bottles of beer',
'99 bottles of beer',
'*****@*****.**'
)
app.debug = True
app.secret_key = utils.secret_key
app.run(host="0.0.0.0", port=8000)
