def show(): if not authenticated(session): abort(403) else: id_folder = request.args.get("id_folder") if(id_folder == None) or (id_folder == ""): flash("The 'id' field is empty!", category="error") return redirect(request.referrer) conn = connection() if User.has_permision_to_open_folder(conn, session['user']['id'], id_folder): folder = Folder.find_by_id(conn, id_folder) if not folder: flash("The folder doesn't exist!", category="error") return redirect(request.referrer) else: tasks = Task.find_by_id_folder(conn, folder['id']) return render_template("folder/folder-show.html", folder=folder, tasks=tasks) else: flash("You don't have permission to access that folder!", category="error") return redirect(request.referrer)
def delete(): if not authenticated(session): abort(403) else: id_folder = request.form.get("id_folder") if (id_folder == None) or (id_folder == ""): flash("The folder must have an ID!", category="error") return redirect(url_for("user-main-menu")) conn = connection() folder = Folder.find_by_id(conn, id_folder) if not folder: flash("The folder doesn't exist!", category="error") else: if folder['id_user'] == session['user']['id']: try: Folder.delete(conn, session['user']['id'], id_folder) flash("The folder was deleted!", category="success") except: flash("There was an error!", category="error") else: flash("You don't have access to that folder!", category="error") return redirect(url_for("user-main-menu"))