def dict_type_save(): req_json = request.json description = xss_escape(req_json.get("description")) enable = xss_escape(req_json.get("enable")) type_code = xss_escape(req_json.get("typeCode")) type_name = xss_escape(req_json.get("typeName")) d = DictType(type_name=type_name, type_code=type_code, enable=enable, description=description) db.session.add(d) db.session.commit() if d.id is None: return fail_api(msg="增加失败") return success_api(msg="增加成功")
def save(): req = request.json details = xss_escape(req.get("details")) enable = xss_escape(req.get("enable")) roleCode = xss_escape(req.get("roleCode")) roleName = xss_escape(req.get("roleName")) sort = xss_escape(req.get("sort")) role = Role(details=details, enable=enable, code=roleCode, name=roleName, sort=sort) db.session.add(role) db.session.commit() return success_api(msg="成功")
def dict_type_update(): req_json = request.json id = xss_escape(req_json.get("id")) description = xss_escape(req_json.get("description")) enable = xss_escape(req_json.get("enable")) type_code = xss_escape(req_json.get("typeCode")) type_name = xss_escape(req_json.get("typeName")) DictType.query.filter_by(id=id).update({ "description": description, "enable": enable, "type_code": type_code, "type_name": type_name }) db.session.commit() return success_api(msg="更新成功")
def update(): req_json = request.json id = req_json.get("roleId") data = { "code": xss_escape(req_json.get("roleCode")), "name": xss_escape(req_json.get("roleName")), "sort": xss_escape(req_json.get("sort")), "enable": xss_escape(req_json.get("enable")), "details": xss_escape(req_json.get("details")) } role = Role.query.filter_by(id=id).update(data) db.session.commit() if not role: return fail_api(msg="更新角色失败") return success_api(msg="更新角色成功")
def dict_data_update(): req_json = request.json id = req_json.get("dataId") DictData.query.filter_by(id=id).update({ "data_label": xss_escape(req_json.get("dataLabel")), "data_value": xss_escape(req_json.get("dataValue")), "enable": xss_escape(req_json.get("enable")), "remark": xss_escape(req_json.get("remark")), "type_code": xss_escape(req_json.get("typeCode")) }) db.session.commit() return success_api(msg="更新成功")
def dict_data_save(): req_json = request.json data_label = xss_escape(req_json.get("dataLabel")) data_value = xss_escape(req_json.get("dataValue")) enable = xss_escape(req_json.get("enable")) remark = xss_escape(req_json.get("remark")) type_code = xss_escape(req_json.get("typeCode")) d = DictData(data_label=data_label, data_value=data_value, enable=enable, remark=remark, type_code=type_code) db.session.add(d) db.session.commit() if not d.id: return jsonify(success=False, msg="增加失败") return jsonify(success=True, msg="增加成功")
def table(): # 获取请求参数 role_name = xss_escape(request.args.get('roleName', type=str)) role_code = xss_escape(request.args.get('roleCode', type=str)) # 查询参数构造 mf = ModelFilter() if role_name: mf.vague(field_name="name", value=role_name) if role_code: mf.vague(field_name="code", value=role_code) # orm查询 # 使用分页获取data需要.items role = Role.query.filter(mf.get_filter(Role)).layui_paginate() count = role.total # 返回api return table_api(data=model_to_dicts(schema=RoleOutSchema, data=role.items), count=count)
def update(): req_json = request.json a = xss_escape(req_json.get("roleIds")) id = xss_escape(req_json.get("userId")) username = xss_escape(req_json.get('username')) real_name = xss_escape(req_json.get('realName')) dept_id = xss_escape(req_json.get('deptId')) role_ids = a.split(',') User.query.filter_by(id=id).update({ 'username': username, 'realname': real_name, 'dept_id': dept_id }) u = User.query.filter_by(id=id).first() roles = Role.query.filter(Role.id.in_(role_ids)).all() u.role = roles db.session.commit() return success_api(msg="更新成功")
def save(): req_json = request.json a = req_json.get("roleIds") username = xss_escape(req_json.get('username')) real_name = xss_escape(req_json.get('realName')) password = xss_escape(req_json.get('password')) role_ids = a.split(',') if not username or not real_name or not password: return fail_api(msg="账号姓名密码不得为空") if bool(User.query.filter_by(username=username).count()): return fail_api(msg="用户已经存在") user = User(username=username, realname=real_name) user.set_password(password) db.session.add(user) roles = Role.query.filter(Role.id.in_(role_ids)).all() for r in roles: user.role.append(r) db.session.commit() return success_api(msg="增加成功")
def data(): # 获取请求参数 real_name = xss_escape(request.args.get('realName', type=str)) username = xss_escape(request.args.get('username', type=str)) dept_id = request.args.get('deptId', type=int) # 查询参数构造 mf = ModelFilter() if real_name: mf.contains(field_name="realname", value=real_name) if username: mf.contains(field_name="username", value=username) if dept_id: mf.exact(field_name="dept_id", value=dept_id) # orm查询 # 使用分页获取data需要.items user = User.query.filter(mf.get_filter(model=User)).layui_paginate() count = user.total # 返回api return table_api(data=model_to_dicts(schema=UserOutSchema, data=user.items), count=count)
def login_log(request, uid, is_access): info = { 'method': request.method, 'url': request.path, 'ip': request.remote_addr, 'user_agent': xss_escape(request.headers.get('User-Agent')), 'desc': xss_escape(request.form.get('username')), 'uid': uid, 'success': int(is_access) } log = AdminLog(url=info.get('url'), ip=info.get('ip'), user_agent=info.get('user_agent'), desc=info.get('desc'), uid=info.get('uid'), method=info.get('method'), success=info.get('success')) db.session.add(log) db.session.flush() db.session.commit() return log.id
def admin_log(request, is_access): info = { 'method': request.method, 'url': request.path, 'ip': request.remote_addr, 'user_agent': xss_escape(request.headers.get('User-Agent')), 'desc': xss_escape(str(dict(request.values))), 'uid': current_user.id, 'success': int(is_access) } log = AdminLog(url=info.get('url'), ip=info.get('ip'), user_agent=info.get('user_agent'), desc=info.get('desc'), uid=info.get('uid'), method=info.get('method'), success=info.get('success')) db.session.add(log) db.session.commit() return log.id
def dict_type_data(): # 获取请求参数 type_name = xss_escape(request.args.get('typeName', type=str)) # 查询参数构造 mf = ModelFilter() if type_name: mf.vague(field_name="type_name", value=type_name) # orm查询 # 使用分页获取data需要.items dict_all = DictType.query.filter(mf.get_filter(DictType)).layui_paginate() count = dict_all.total data = curd.model_to_dicts(schema=DictTypeOutSchema, data=dict_all.items) return table_api(data=data, count=count)
def update(): req_json = request.json id = request.json.get("powerId") data = { "icon": xss_escape(req_json.get("icon")), "open_type": xss_escape(req_json.get("openType")), "parent_id": xss_escape(req_json.get("parentId")), "code": xss_escape(req_json.get("powerCode")), "name": xss_escape(req_json.get("powerName")), "type": xss_escape(req_json.get("powerType")), "url": xss_escape(req_json.get("powerUrl")), "sort": xss_escape(req_json.get("sort")) } res = Power.query.filter_by(id=id).update(data) db.session.commit() if not res: return fail_api(msg="更新权限失败") return success_api(msg="更新权限成功")
def update(): json = request.json validate.check_data(DeptSchema(unknown=INCLUDE), json) id = json.get("deptId"), data = { "dept_name": validate.xss_escape(json.get("deptName")), "sort": validate.xss_escape(json.get("sort")), "leader": validate.xss_escape(json.get("leader")), "phone": validate.xss_escape(json.get("phone")), "email": validate.xss_escape(json.get("email")), "status": validate.xss_escape(json.get("status")), "address": validate.xss_escape(json.get("address")) } d = Dept.query.filter_by(id=id).update(data) if not d: return fail_api(msg="更新失败") db.session.commit() return success_api(msg="更新成功")
def save(): req = request.json icon = xss_escape(req.get("icon")) openType = xss_escape(req.get("openType")) parentId = xss_escape(req.get("parentId")) powerCode = xss_escape(req.get("powerCode")) powerName = xss_escape(req.get("powerName")) powerType = xss_escape(req.get("powerType")) powerUrl = xss_escape(req.get("powerUrl")) sort = xss_escape(req.get("sort")) power = Power(icon=icon, open_type=openType, parent_id=parentId, code=powerCode, name=powerName, type=powerType, url=powerUrl, sort=sort, enable=1) r = db.session.add(power) db.session.commit() return success_api(msg="成功")
def dict_code_data(): type_code = xss_escape(request.args.get('typeCode', type=str)) dict_data = DictData.query.filter_by(type_code=type_code).layui_paginate() count = dict_data.total data = curd.model_to_dicts(schema=DictDataOutSchema, data=dict_data.items) return table_api(data=data, count=count)