def show():
if not authenticated(session):
abort(403)
else:
id_folder = request.args.get("id_folder")
if(id_folder == None) or (id_folder == ""):
flash("The 'id' field is empty!", category="error")
return redirect(request.referrer)
conn = connection()
if User.has_permision_to_open_folder(conn, session['user']['id'], id_folder):
folder = Folder.find_by_id(conn, id_folder)
if not folder:
flash("The folder doesn't exist!", category="error")
return redirect(request.referrer)
else:
tasks = Task.find_by_id_folder(conn, folder['id'])
return render_template("folder/folder-show.html", folder=folder, tasks=tasks)
else:
flash("You don't have permission to access that folder!", category="error")
return redirect(request.referrer)
def delete():
if not authenticated(session):
abort(403)
else:
id_folder = request.form.get("id_folder")
if (id_folder == None) or (id_folder == ""):
flash("The folder must have an ID!", category="error")
return redirect(url_for("user-main-menu"))
conn = connection()
folder = Folder.find_by_id(conn, id_folder)
if not folder:
flash("The folder doesn't exist!", category="error")
else:
if folder['id_user'] == session['user']['id']:
try:
Folder.delete(conn, session['user']['id'], id_folder)
flash("The folder was deleted!", category="success")
except:
flash("There was an error!", category="error")
else:
flash("You don't have access to that folder!",
category="error")
return redirect(url_for("user-main-menu"))