def home():
page = request.args.get('page', 1, type=int)
sorted_posts = Post.query.order_by(Post.date_posted.desc()).paginate(
page, per_page=4)
return render_template('home.html',
sorted_posts=sorted_posts,
all_posts=all_posts())
def user_posts(username):
page = request.args.get('page', 1, type=int)
user = User.query.filter_by(username=username).first_or_404()
posts = Post.query.filter_by(author=user)\
.order_by(Post.date_posted.desc())\
.paginate(page, per_page=4)
return render_template('user_posts.html', posts=posts, user=user, all_posts=all_posts())
def post(post_id):
post = Post.query.get_or_404(post_id)
comments = Comment.query.filter(Comment.post_id == post_id).all()
return render_template('post.html',
title=post.title,
post=post,
post_id=post_id,
comments=comments,
all_posts=all_posts())
def register():
if current_user.is_authenticated:
return redirect(url_for('main.home'))
form = RegistrationForm()
if form.validate_on_submit():
hashed_password = bcrypt.generate_password_hash(form.password.data).decode('utf-8')
user = User(username=form.username.data, email=form.email.data, password=hashed_password)
db.session.add(user)
db.session.commit()
flash(f'Your account has been created! You are now able to log in!', 'success')
return redirect(url_for('users.login'))
return render_template('register.html', title='Register', form=form, all_posts=all_posts())
def login():
if current_user.is_authenticated:
return redirect(url_for('main.home'))
form = LoginForm()
if form.validate_on_submit():
user = User.query.filter_by(email=form.email.data).first()
if user and bcrypt.check_password_hash(user.password,form.password.data):
login_user(user, remember=form.remember.data)
next_page = request.args.get('next')
return redirect(next_page) if next_page else redirect(url_for('main.home'))
else:
flash('Login Unsuccesful. Please check username and password.', 'danger')
return render_template('login.html', title='Login', form=form, all_posts=all_posts())
def new_post():
form = PostForm()
if form.validate_on_submit():
post = Post(title=form.title.data,
content=form.content.data,
author=current_user)
db.session.add(post)
db.session.commit()
flash('Your post has been created!', 'success')
return redirect(url_for('main.home'))
return render_template('create_post.html',
title='New Post',
form=form,
legend='New Post',
all_posts=all_posts())
def new_comment(post_id):
post = Post.query.get_or_404(post_id)
form = CommentForm()
if request.method == 'POST':
if form.validate_on_submit():
comment = Comment(content=form.content.data,
article=post,
author=current_user)
db.session.add(comment)
db.session.commit()
flash('Your comment has been added to the post', 'success')
#return redirect(url_for('posts.post', post_id=post.id))
return redirect(url_for('posts.post', post_id=post.id))
#return redirect(url_for('posts.post', post_id=post.id, 'comments', comment_id=comment.id))
return render_template('create_comment.html',
title='Comment Post',
form=form,
post_id=post_id,
all_posts=all_posts())
def update_post(post_id):
post = Post.query.get_or_404(post_id)
if post.author != current_user:
abort(403)
form = PostForm()
if form.validate_on_submit():
post.title = form.title.data
post.content = form.content.data
db.session.commit()
flash('Your post had been updated! :)', 'success')
return redirect(url_for('posts.post', post_id=post.id))
elif request.method == 'GET':
form.title.data = post.title
form.content.data = post.content
return render_template('create_post.html',
title='Update Post',
form=form,
legend="Update Post",
all_posts=all_posts())
def about():
return render_template('about.html', title='About', all_posts=all_posts())
def reset_token(token):
if current_user.is_authenticated:
return redirect(url_for('main.home'))
user = User.verify_reset_token(token)
if user is None:
flash('That is an invalid or expire token', 'warning')
return redirect(url_for('users.reset_request'))
form = ResetPasswordForm()
if form.validate_on_submit():
hashed_password = bcrypt.generate_password_hash(form.password.data).decode('utf-8')
user.password = hashed_password
db.session.commit()
flash(f'Your password has been updated! You are now able to log in', 'success')
return redirect(url_for('users.login'))
return render_template('reset_token.html', title='Reset Password', form=form, all_posts=all_posts())
def reset_request():
if current_user.is_authenticated:
return redirect(url_for('main.home'))
form = RequestResetForm()
if form.validate_on_submit():
user = User.query.filter_by(email=form.email.data).first()
send_reset_email(user)
flash('An email has been sent with instructions to reset your password', 'success')
return redirect(url_for('users.login'))
return render_template('reset_request.html', title='Reset Password', form=form, all_posts=all_posts())
def account():
form = UpdateAccountForm()
if form.validate_on_submit():
if form.picture.data:
picture_file = save_picture(form.picture.data)
current_user.image_file = picture_file
current_user.username = form.username.data
current_user.email = form.email.data
db.session.commit()
flash('Your account has been update!','success')
return redirect(url_for('users.account'))
elif request.method == 'GET':
form.username.data = current_user.username
form.email.data = current_user.email
image_file = url_for('static', filename='profile_pics/' + current_user.image_file)
return render_template('account.html', title="Account", image_file=image_file, form=form, all_posts=all_posts())