def post(self):
data = parse.parse_args()
data['firstname'] = html.escape(data['firstname'])
data['lastname'] = html.escape(data['lastname'])
v = validate_new_email(data['email'])
if not v[0]:
return {'message': v[1]}, 400
new_user = UserDetails(
first_name=data['firstname'],
last_name=data['lastname'],
email=data['email'],
password=UserDetails.generate_hash(data['password'], ),
user_type_id=1,
cash=1000
)
try:
new_user.save_to_db()
access_token = create_access_token(identity=(new_user.email, new_user.user_id))
refresh_token = create_refresh_token(identity=(new_user.email, new_user.user_id))
return {
'message': 'Success',
'access_token': access_token,
'refresh_token': refresh_token
}
except:
e = sys.exc_info()[0]
print(f'Error : {e}')
return {'message': 'Something went wrong'}, 500
def post(self):
data = loginParse.parse_args()
current_user = UserDetails.find_by_email(data['email'])
if not current_user:
return {'message': 'Email does not exist'}, 401
if UserDetails.verify_hash(data['password'], current_user.password):
access_token = create_access_token(identity=(data['email'], current_user.user_id))
refresh_token = create_refresh_token(identity=(data['email'], current_user.user_id))
return {
'message': 'Success',
'access_token': access_token,
'refresh_token': refresh_token
}
else:
return {'message': 'Wrong credentials'}
def post(self):
data = loginParse.parse_args()
current_user = UserDetails.find_by_user_name(data['username'])
if not current_user:
return {'message': 'User name does not exist'}, 401
if UserDetails.verify_hash(data['password'], current_user.password):
expires = datetime.timedelta(days=365)
access_token = create_access_token(identity=(data['username'],
current_user.user_id),
expires_delta=expires)
refresh_token = create_refresh_token(
identity=(data['username'], current_user.user_id))
return {
'message': 'Success',
'access_token': access_token,
'refresh_token': refresh_token
}
else:
return {'message': 'Wrong credentials'}
def post(self):
data = parse.parse_args()
data['username'] = html.escape(data['username'])
data['firstname'] = html.escape(data['firstname'])
data['lastname'] = html.escape(data['lastname'])
v = validate_new_email(data['email'])
if not v[0]:
return {'message': v[1]}, 400
v = validate_new_user(data['username'])
if not v[0]:
return {'message': v[1]}, 400
new_user = UserDetails(user_name=data['username'],
first_name=data['firstname'],
last_name=data['lastname'],
email=data['email'],
password=UserDetails.generate_hash(
data['password'], ))
try:
new_user.save_to_db()
playlist = Playlist(user_id=new_user.user_id, name='Yêu thích')
playlist.save_to_db()
expires = datetime.timedelta(days=365)
access_token = create_access_token(identity=(new_user.user_name,
new_user.user_id),
expires_delta=expires)
refresh_token = create_refresh_token(identity=(new_user.user_name,
new_user.user_id))
return {
'message': 'Success',
'access_token': access_token,
'refresh_token': refresh_token
}
except:
e = sys.exc_info()[0]
print(f'Error : {e}')
return {'message': 'Something went wrong'}, 500
def get(self):
data = ratings_parse.parse_args()
res = dict()
res['data'] = []
v = validate_book_id(data['book_id'])
if not v[0]:
return 'Book does not exist', 400
book_details = v[1]
rating_details = RatingDetails.find_by_book(book_details.ISBN,
data['limit'],
data['page'])
for each_rating in rating_details:
each_res = dict()
each_res['rating_num'] = each_rating['rating_num']
each_res['rating_comment'] = each_rating['rating_comment']
each_res['email'] = UserDetails.find_by_id(
each_rating['user_id']).email
res['data'].append(each_res)
return res, 200
def get(self):
data = ratings_parse.parse_args()
res = dict()
res['data'] = []
v = validate_book_id(data['book_id'])
if not v[0]:
return 'Book does not exist', 400
book_details = v[1]
rating_details = RatingDetails.find_by_book(book_details.book_id, data['limit'], data['page'])
for each_rating in rating_details:
user = UserDetails.find_by_id(each_rating['user_id'])
each_res = dict()
each_res['rating_num'] = each_rating['rating_num']
each_res['rating_comment'] = each_rating['rating_comment']
each_res['user_name'] = user.user_name
each_res['full_name'] = refactor_name( user.last_name, user.first_name)
each_res['avatar'] = user.avatar
res['data'].append(each_res)
return res, 200
def delete(self):
return UserDetails.delete_all()
def get(self):
return UserDetails.return_all()