def purches_func(): if 'user' in session: if request.method == 'POST': post_data = request.form if __is_number(post_data['product_id']) and __is_alpha_space( post_data['vendor']) and __is_number(post_data['amount']): try: mycursor = mydb.cursor(dictionary=True) sql = 'INSERT INTO txn (product_id,amount,vendor) VALUES (%s,%s,%s)' val = (post_data['product_id'], post_data['amount'], post_data['vendor']) mycursor.execute(sql, val) mydb.commit() if (mycursor.rowcount == 1): sql = 'UPDATE product SET stock = stock+ %s WHERE id = %s ' val = (post_data['amount'], post_data['product_id']) mycursor.execute(sql, val) mydb.commit() if (mycursor.rowcount == 1): success_dist = { 'message': 'data saved successfully ' } return render_template('trxn/purches.html', success=success_dist) else: return "all not ok" else: error_dist = { 'message': 'data not save ... please try again' } return render_template('trxn/purches.html', error=error_dist) except errors.Error as e: print("Db error :", e) error_dist = { 'message': 'server error , Please try again letter' } return render_template('trxn/purches.html', error=error_dist) else: error_dist = {'message': 'Please provide proper information'} return render_template('trxn/purches.html', error=error_dist) else: return render_template('trxn/purches.html') else: return redirect('/user/login')
def login_func(): if request.method == 'POST': post_data = request.form if __is_email(post_data['email']) and len(post_data['password']) > 4: try: mycursor = mydb.cursor(dictionary=True) sql = 'SELECT id,name,email,password FROM users WHERE email=%s' val = (post_data['email'], ) mycursor.execute(sql, val) user_details = mycursor.fetchone() if user_details == None: error_dist = { 'message': 'sorry.. this type of user not found' } return render_template('user/login.html', error=error_dist) else: if user_details['password'] == __create_encryption( post_data['password']): print(__create_encryption(post_data['password'])) session["user"] = { 'id': user_details['id'], 'name': user_details['name'], 'email': user_details['email'] } return redirect('/') else: error_dist = { 'message': 'Error : Email or password mot matched' } return render_template('user/login.html', error=error_dist) except errors.Error as e: print("Db error :", e) error_dist = { 'message': 'Error :server error , Please try again letter' } return render_template('user/login.html', error=error_dist) else: error_dist = { 'message': 'Error : Please provide proper information' } return render_template('user/login.html', error=error_dist) else: return render_template('user/login.html')
def createuser_func(): if request.method == 'POST': # ------ save all form data into : post_data variable ------# post_data = request.form # ------ sanitize user input ------# if __is_alpha_space(post_data['name']) and __is_email( post_data['email']) and len(post_data['password']) > 4: #------ encrypting password -------- db_pass_to_save = __create_encryption(post_data['password']) try: mycursor = mydb.cursor(dictionary=True) sql = "INSERT INTO users (name, email ,password) VALUES (%s, %s , %s )" val = (post_data['name'], post_data['email'], db_pass_to_save) mycursor.execute(sql, val) mydb.commit() # mysqlresult = mycursor.fetchall() if (mycursor.rowcount == 1): success_dist = {'message': 'data save successfully'} return render_template('user/create.html', success=success_dist) else: error_dist = { 'message': 'data not saved , Please try again letter' } return render_template('user/create.html', error=error_dist) except errors.Error as e: print("Db error :", e) error_dist = { 'message': 'server error , Please try again letter' } return render_template('user/create.html', error=error_dist) else: error_dist = {'message': 'Please provide proper information'} return render_template('user/create.html', error=error_dist) else: return render_template('user/create.html')
def all_user_func(): if 'user' in session: try: mycursor = mydb.cursor(dictionary=True) sql = "SELECT id,product_name,product_price,stock,product_status FROM product " mycursor.execute(sql) user_details = mycursor.fetchall() if user_details == None: return 'no user found' else: print(user_details) return render_template('stock/stock.html', data=user_details) except errors.Error as e: print("Db error :", e) return 'not able to check ,Please try again letter' else: return redirect('/user/login')
def product_add_func(): if "user" in session: if request.method== 'POST': post_data=request.form if __is_alpha_space(post_data['p_name']) and __is_number(post_data['p_price']): try: mycursor = mydb.cursor(dictionary=True) sql = "INSERT INTO product (product_name,product_price) VALUES (%s, %s )" val = (post_data['p_name'], post_data['p_price'] ) mycursor.execute(sql, val) mydb.commit() # mysqlresult = mycursor.fetchall() if (mycursor.rowcount == 1): success_dist = { 'message' : 'data saved successfully ' } return render_template('product/add_product.html', success=success_dist) else : error_dist = { 'message' : 'data not saved , Please try again letter' } return render_template('product/add_product.html', error=error_dist ) except errors.Error as e: print("Db error :",e) error_dist = { 'message' : 'server error , Please try again letter' } return render_template('product/add_product.html', error=error_dist) else : error_dist = { 'message' : 'Please provide proper information' } return render_template('product/add_product.html', error=error_dist) else: return render_template('product/add_product.html') else: return redirect('/user/login')