def do_edit(request):
# This is where things get interesting
user = authbar.get_current_login()
if 'name' in request:
db.set_data(user, 'name', make_safe(request['name'].value))
if 'about' in request:
db.set_data(user, 'about', make_safe(request['about'].value))
if 'gender' in request:
db.set_data(user, 'gender', make_safe(request['gender'].value))
if 'degree' in request:
db.set_data(user, 'degree', make_safe(request['degree'].value))
if 'student_number' in request:
db.set_data(user, 'student_number', make_safe(request['student_number'].value))
# Reload the edited page
return '<script type="text/javascript">window.location.href="unswmate.cgi?who=' + user + '"</script>'
def render(request):
searchterm = request['search'].value
results = search(searchterm)
if results:
result_string = render_results(results)
else:
result_string = "No Results for " + make_safe(searchterm)
data = dict(
search_result = result_string
)
return tempy.render('search.template', data)
def do_news(request):
poster = authbar.get_current_login()
if 'user' in request:
user = request['user'].value
else:
user = ''
if 'message' in request:
message = request['message'].value
else:
message = ''
if 'image' in request:
image = request['image'].value
else:
image = ''
if user and message and poster:
if poster in matedb.get_all_mates(user) or user == poster:
matedb.post_news(user, poster, safety.make_safe(message), safety.make_safe(image))
return '<script type="text/javascript">window.location.href="unswmate.cgi?who=' + user + '"</script>'
def do_comment(request):
poster = authbar.get_current_login()
if 'news_item_id' in request:
news_item_id = request['news_item_id'].value
else:
news_item_id = ''
if 'message' in request:
message = request['message'].value
else:
message = ''
# Rip the value out of the resulting tuple, if it exists
user = matedb.get_owner(news_item_id)
if user:
user = user[0]
if news_item_id and message:
if poster in matedb.get_all_mates(user) or user == poster:
matedb.post_comment(news_item_id, poster, safety.make_safe(message))
return '<script type="text/javascript">window.location.href="unswmate.cgi?who=' + user + '"</script>'
def render(request):
course = request["course"].value
d = {"course": safety.make_safe(course)}
d["members"] = userlist.render(db.get_course_members(course))
return tempy.render("courses.template", d)
