def edit_comment(id): comment = Comment.query.get(id) if comment is None: abort(404) snippet = comment.snippet form = dict(title=comment.title, text=comment.text) if request.method == 'POST': if 'delete' in request.form: db_session.delete(comment) db_session.commit() flash(u'Comment was deleted.') return redirect(snippet.url) elif 'cancel' in request.form: return redirect(snippet.url) form['title'] = request.form['title'] form['text'] = request.form['text'] if not form['text']: flash(u'Error: comment text is required.') else: comment.title = form['title'] comment.text = form['text'] db_session.commit() flash(u'Comment was updated.') return redirect(snippet.url) return render_template('snippets/edit_comment.html', form=form, comment=comment)
def new(): category_id = None preview = None if 'category' in request.args: rv = Category.query.filter_by(slug=request.args['category']).first() if rv is not None: category_id = rv.id if request.method == 'POST': category_id = request.form.get('category', type=int) if 'preview' in request.form: preview = format_creole(request.form['body']) else: title = request.form['title'] body = request.form['body'] if not body: flash(u'Error: you have to enter a snippet') else: category = Category.query.get(category_id) if category is not None: snippet = Snippet(g.user, title, body, category) db_session.add(snippet) db_session.commit() flash(u'Your snippet was added') return redirect(snippet.url) return render_template('snippets/new.html', categories=Category.query.order_by(Category.name).all(), active_category=category_id, preview=preview)
def removeAssociation(self, server_url, handle): try: return OpenIDAssociation.query.filter( (OpenIDAssociation.server_url == server_url) & (OpenIDAssociation.handle == handle)).delete() finally: db_session.commit()
def cleanupNonces(self): try: return OpenIDUserNonce.query.filter( OpenIDUserNonce.timestamp <= int(time() - nonce.SKEW)).delete() finally: db_session.commit()
def new(): category_id = None preview = None if 'category' in request.args: rv = Category.query.filter_by(slug=request.args['category']).first() if rv is not None: category_id = rv.id if request.method == 'POST': category_id = request.form.get('category', type=int) if 'preview' in request.form: preview = format_creole(request.form['body']) else: title = request.form['title'] body = request.form['body'] if not body: flash(u'Error: you have to enter a snippet') else: category = Category.query.get(category_id) if category is not None: snippet = Snippet(g.user, title, body, category) db_session.add(snippet) db_session.commit() flash(u'Your snippet was added') return redirect(snippet.url) return render_template('snippets/new.html', categories=Category.query.order_by( Category.name).all(), active_category=category_id, preview=preview)
def delete_category(id): category = Category.query.get(id) if category is None: abort(404) if request.method == 'POST': if 'cancel' in request.form: flash(u'Deletion was aborted') return redirect(url_for('.manage_categories')) move_to_id = request.form.get('move_to', type=int) if move_to_id: move_to = Category.query.get(move_to_id) if move_to is None: flash(u'Category was removed in the meantime') else: for snippet in category.snippets.all(): snippet.category = move_to db_session.delete(category) flash(u'Category %s deleted and entries moved to %s.' % (category.name, move_to.name)) else: category.snippets.delete() db_session.delete(category) flash(u'Category %s deleted' % category.name) db_session.commit() return redirect(url_for('.manage_categories')) return render_template('snippets/delete_category.html', category=category, other_categories=Category.query.filter( Category.id != category.id).all())
def removeAssociation(self, server_url, handle): try: return OpenIDAssociation.query.filter( (OpenIDAssociation.server_url == server_url) & (OpenIDAssociation.handle == handle) ).delete() finally: db_session.commit()
def delete_category(id): category = Category.query.get(id) if category is None: abort(404) if request.method == 'POST': if 'cancel' in request.form: flash(u'Deletion was aborted') return redirect(url_for('.manage_categories')) move_to_id = request.form.get('move_to', type=int) if move_to_id: move_to = Category.query.get(move_to_id) if move_to is None: flash(u'Category was removed in the meantime') else: for snippet in category.snippets.all(): snippet.category = move_to db_session.delete(category) flash(u'Category %s deleted and entries moved to %s.' % (category.name, move_to.name)) else: category.snippets.delete() db_session.delete(category) flash(u'Category %s deleted' % category.name) db_session.commit() return redirect(url_for('.manage_categories')) return render_template('snippets/delete_category.html', category=category, other_categories=Category.query .filter(Category.id != category.id).all())
def storeAssociation(self, server_url, association): assoc = OpenIDAssociation(server_url=server_url, handle=association.handle, secret=association.secret.encode('base64'), issued=association.issued, lifetime=association.lifetime, assoc_type=association.assoc_type) db_session.add(assoc) db_session.commit()
def manage_categories(): categories = Category.query.order_by(Category.name).all() if request.method == 'POST': for category in categories: category.name = request.form['name.%d' % category.id] category.slug = request.form['slug.%d' % category.id] db_session.commit() flash(u'Categories updated') return redirect(url_for('.manage_categories')) return render_template('snippets/manage_categories.html', categories=categories)
def storeAssociation(self, server_url, association): assoc = OpenIDAssociation( server_url=server_url, handle=association.handle, secret=association.secret.encode("base64"), issued=association.issued, lifetime=association.lifetime, assoc_type=association.assoc_type, ) db_session.add(assoc) db_session.commit()
def profile(): name = g.user.name if request.method == 'POST': name = request.form['name'].strip() if not name: flash(u'Error: a name is required') else: g.user.name = name db_session.commit() flash(u'User profile updated') return redirect(url_for('.index')) return render_template('general/profile.html', name=name)
def create_or_login(resp): session["openid"] = resp.identity_url user = g.user or User.query.filter_by(openid=resp.identity_url).first() if user is None: return redirect(url_for(".first_login", next=oid.get_next_url(), name=resp.fullname or resp.nickname)) if user.openid != resp.identity_url: user.openid = resp.identity_url db_session.commit() flash(u"OpenID identity changed") else: flash(u"Successfully signed in") return redirect(oid.get_next_url())
def profile(): name = g.user.name if request.method == "POST": name = request.form["name"].strip() if not name: flash(u"Error: a name is required") else: g.user.name = name db_session.commit() flash(u"User profile updated") return redirect(url_for(".index")) return render_template("general/profile.html", name=name)
def first_login(): if g.user is not None or "openid" not in session: return redirect(url_for(".login")) if request.method == "POST": if "cancel" in request.form: del session["openid"] flash(u"Login was aborted") return redirect(url_for("general.login")) db_session.add(User(request.form["name"], session["openid"])) db_session.commit() flash(u"Successfully created profile and logged in") return redirect(oid.get_next_url()) return render_template("general/first_login.html", next=oid.get_next_url(), openid=session["openid"])
def useNonce(self, server_url, timestamp, salt): if abs(timestamp - time()) > nonce.SKEW: return False rv = OpenIDUserNonce.query.filter( (OpenIDUserNonce.server_url == server_url) & (OpenIDUserNonce.timestamp == timestamp) & (OpenIDUserNonce.salt == salt) ).first() if rv is not None: return False rv = OpenIDUserNonce(server_url=server_url, timestamp=timestamp, salt=salt) db_session.add(rv) db_session.commit() return True
def show(id): snippet = Snippet.query.get(id) if snippet is None: abort(404) if request_wants_json(): return jsonify(snippet=snippet.to_json()) if request.method == 'POST': title = request.form['title'] text = request.form['text'] if text: db_session.add(Comment(snippet, g.user, title, text)) db_session.commit() flash(u'Your comment was added') return redirect(snippet.url) return render_template('snippets/show.html', snippet=snippet)
def create_or_login(resp): session['openid'] = resp.identity_url user = g.user or User.query.filter_by(openid=resp.identity_url).first() if user is None: return redirect( url_for('.first_login', next=oid.get_next_url(), name=resp.fullname or resp.nickname)) if user.openid != resp.identity_url: user.openid = resp.identity_url db_session.commit() flash(u'OpenID identity changed') else: flash(u'Successfully signed in') return redirect(oid.get_next_url())
def useNonce(self, server_url, timestamp, salt): if abs(timestamp - time()) > nonce.SKEW: return False rv = OpenIDUserNonce.query.filter( (OpenIDUserNonce.server_url == server_url) & (OpenIDUserNonce.timestamp == timestamp) & (OpenIDUserNonce.salt == salt)).first() if rv is not None: return False rv = OpenIDUserNonce(server_url=server_url, timestamp=timestamp, salt=salt) db_session.add(rv) db_session.commit() return True
def first_login(): if g.user is not None or 'openid' not in session: return redirect(url_for('.login')) if request.method == 'POST': if 'cancel' in request.form: del session['openid'] flash(u'Login was aborted') return redirect(url_for('general.login')) db_session.add(User(request.form['name'], session['openid'])) db_session.commit() flash(u'Successfully created profile and logged in') return redirect(oid.get_next_url()) return render_template('general/first_login.html', next=oid.get_next_url(), openid=session['openid'])
def edit(id): snippet = Snippet.query.get(id) if snippet is None: abort(404) if g.user is None or (not g.user.is_admin and snippet.author != g.user): abort(401) preview = None form = dict(title=snippet.title, body=snippet.body, category=snippet.category.id) if request.method == 'POST': form['title'] = request.form['title'] form['body'] = request.form['body'] form['category'] = request.form.get('category', type=int) if 'preview' in request.form: preview = format_creole(request.form['body']) elif 'delete' in request.form: for comment in snippet.comments: db_session.delete(comment) db_session.delete(snippet) db_session.commit() flash(u'Your snippet was deleted') return redirect(url_for('snippets.index')) else: category_id = request.form.get('category', type=int) if not form['body']: flash(u'Error: you have to enter a snippet') else: category = Category.query.get(category_id) if category is not None: snippet.title = form['title'] snippet.body = form['body'] snippet.category = category db_session.commit() flash(u'Your snippet was modified') return redirect(snippet.url) return render_template('snippets/edit.html', snippet=snippet, preview=preview, form=form, categories=Category.query.order_by( Category.name).all())
def edit(id): snippet = Snippet.query.get(id) if snippet is None: abort(404) if g.user is None or (not g.user.is_admin and snippet.author != g.user): abort(401) preview = None form = dict(title=snippet.title, body=snippet.body, category=snippet.category.id) if request.method == 'POST': form['title'] = request.form['title'] form['body'] = request.form['body'] form['category'] = request.form.get('category', type=int) if 'preview' in request.form: preview = format_creole(request.form['body']) elif 'delete' in request.form: for comment in snippet.comments: db_session.delete(comment) db_session.delete(snippet) db_session.commit() flash(u'Your snippet was deleted') return redirect(url_for('snippets.index')) else: category_id = request.form.get('category', type=int) if not form['body']: flash(u'Error: you have to enter a snippet') else: category = Category.query.get(category_id) if category is not None: snippet.title = form['title'] snippet.body = form['body'] snippet.category = category db_session.commit() flash(u'Your snippet was modified') return redirect(snippet.url) return render_template('snippets/edit.html', snippet=snippet, preview=preview, form=form, categories=Category.query.order_by(Category.name).all())
def cleanupAssociations(self): try: return OpenIDAssociation.query.filter( OpenIDAssociation.lifetime < int(time())).delete() finally: db_session.commit()
def new_category(): category = Category(name=request.form['name']) db_session.add(category) db_session.commit() flash(u'Category %s created.' % category.name) return redirect(url_for('.manage_categories'))
def cleanupNonces(self): try: return OpenIDUserNonce.query.filter(OpenIDUserNonce.timestamp <= int(time() - nonce.SKEW)).delete() finally: db_session.commit()
def cleanupAssociations(self): try: return OpenIDAssociation.query.filter(OpenIDAssociation.lifetime < int(time())).delete() finally: db_session.commit()