def update_user(current_user, email):
if not current_user.admin:
return ResponseGenerator.not_authorized()
user = User.query.filter_by(email=email).first()
data = request.get_json()
if not user:
return ResponseGenerator.not_found()
if data['admin'] == "True":
admin = True
else:
admin = False
user.name = data['name']
user.password = data['password']
user.email = data['email']
user.admin = admin
update_user = User(name=user.name,
email=user.email,
password=user.password,
admin=user.admin)
User.update(update_user)
return ResponseGenerator.generate_response(
f"{update_user.name} has been successfully updated", 200)
def delete_user(current_user, email):
if not current_user.admin:
return ResponseGenerator.not_authorized()
user = User.query.filter_by(email=email).first()
if not user:
return ResponseGenerator.not_found()
User.delete(user)
return ResponseGenerator.generate_response(
f"{user.name} deleted successfully from DB.", 200)
def get_one_user(current_user, email):
if not current_user.admin:
return ResponseGenerator.not_authorized()
user = User.query.filter_by(email=email).first()
if not user:
return ResponseGenerator.not_found()
user_data = {}
user_data['id'] = user.id
user_data['name'] = user.name
user_data['email'] = user.email
user_data['admin'] = user.admin
return ResponseGenerator.generate_response(user_data, 200)
def get_all_users(current_user):
if not current_user.admin:
return ResponseGenerator.not_authorized()
users = User.query.all()
output = []
for user in users:
user_data = {}
user_data['id'] = user.id
user_data['name'] = user.name
user_data['email'] = user.email
user_data['admin'] = user.admin
output.append(user_data)
return ResponseGenerator.generate_response(output, 200)
