def article(page=1): if not check_permission(current_user, 'admin'): flash('你没有权限') return redirect(url_for('Common.index')) pagination = Article.query.order_by(Article.id.desc())\ .paginate(page, per_page=30, error_out=True) return render_template('admin/article.html', pagination=pagination)
def create(): if not check_permission(current_user, 'article'): flash('你没有权限') return redirect(url_for('Common.index')) form = CreateForm(request.form) form.category_id.choices = [(c.id, c.category_name) for c in Category.query.all()] if request.method == 'POST' and form.validate(): title = form.title.data html_content = form.html_content.data raw_content = form.raw_content.data category_id = form.category_id.data brief = raw_content[:100] article = Article(current_user.id, title, brief, raw_content, html_content, category_id) f = request.files['cover'] if f: try: article.cover = save_file(f) except Exception, e: pass article.save() return redirect(url_for('Common.index'))
def delete_carousel(carousel_id): if not check_permission(current_user, 'admin'): flash('你没有权限') return redirect(url_for('Common.index')) carousel = Carousel.query.get(carousel_id) carousel.delete() kwargs = dict( carousel_form=CarouselForm(), carousel_update_form=CarouselUpdateForm(), carousels=Carousel.query.filter_by(deleted=False).order_by(Carousel.order_num).all(), ) return render_template('admin/carousel.html', **kwargs)
def permission(page=1): if not check_permission(current_user, 'admin'): flash('你没有权限') return redirect(url_for('Common.index')) if request.method == 'POST': user = User.query.get(request.form['user_id']) for p in list_permission(): if not request.form.get(p, False): set_permission(user, p, 0) else: set_permission(user, p, 1) pagination = User.query.order_by(User.id.desc())\ .paginate(page, per_page=30, error_out=True) return render_template('admin/permission.html', pagination=pagination)
def category(): if not check_permission(current_user, 'admin'): flash('你没有权限') return redirect(url_for('Common.index')) category_form = CategoryForm(request.form) if category_form.validate(): c = Category(category_form.category_name.data) c.save() kwargs = dict( category_form=category_form, categorys=Category.query.all(), category_update_form=CategoryUpdateForm(), ) return render_template('admin/category.html', **kwargs)
def create(article_id): if not check_permission(current_user, 'comment'): flash('你没有权限') return redirect(url_for('Article.retrieve', article_id=article_id)) form = CommentForm(request.form) if form.validate(): article = Article.query.get(article_id) raw_content = form.content.data def _replace(matched): user = User.query.filter_by(username=matched.group('username')).first() return "<a href=" + url_for('User.profile', user_id=user.id) + ">@{username}</a>:"\ .format(username=matched.group('username')) html_content = re.sub(r'@(?P<username>[^:]+):', _replace, raw_content) comment = Comment(article.id, current_user.id, html_content) comment.save() return redirect(url_for('Article.retrieve', article_id=article_id))
def carousel(): if not check_permission(current_user, 'admin'): flash('你没有权限') return redirect(url_for('Common.index')) form = CarouselForm(request.form) if form.validate() and request.method == 'POST': order_num = form.order_num.data url = form.url.data title = form.title.data brief = form.brief.data cover = '' f = request.files['cover'] if f: cover = save_file(f) c = Carousel(order_num, url, cover, title, brief) c.save() kwargs = dict( carousel_form=form, carousel_update_form=CarouselUpdateForm(), carousels=Carousel.query.filter_by(deleted=False).order_by(Carousel.order_num).all(), ) return render_template('admin/carousel.html', **kwargs)
def analyse(): if not check_permission(current_user, 'admin'): flash('你没有权限') return redirect(url_for('Common.index')) return render_template('admin/analyse.html')