def addPost(): """Return add post form or process new blog post""" form = PostForm() if form.validate_on_submit(): post = Post(title=form.title.data) form.populate_obj(post) post.author = current_user db.session.add(post) db.session.commit() return redirect(url_for('blog.post', post_slug=post.slug)) return render_template('blog/compose.html', form=form)
def editPost(post_slug): """Edit an existing blog post""" post = get_or_404(Post, slug=post_slug) if current_user != post.author: raise Unauthorized("You don't have permission to edit this post.") form = PostForm(obj=post) if form.validate_on_submit(): form.populate_obj(post) db.session.add(post) db.session.commit() return redirect(url_for('blog.post', post_slug=post.slug)) return render_template('blog/compose.html', form=form, post=post)