def user_create(login_session): new_user = User(name=login_session['username'], email=login_session['email'], picture=login_session['picture']) db_session.add(new_user) db_session.commit() user = db_session.query(User).filter_by(email=login_session['email']).one() return user.id
def new_category(): form = CategoryForm(request.form) if request.method == 'POST' and form.validate(): new = Categories(name=request.form['name'], user_id=login_session['user_id']) db_session.add(new) db_session.commit() flash('Category {} has been successfully created!'.format(new.name)) return redirect(url_for('home.index')) return render_template('/newcategory.html', form=form)
def new_item(category_id): form = ItemForm(request.form) if request.method == 'POST' and form.validate(): new = Items(name=request.form['name'], description=request.form['description'], category_id=category_id, user_id=login_session['user_id']) db_session.add(new) db_session.commit() flash('New item {} successfully created!'.format(new.name)) return redirect(url_for('category_owner.show_categories', category_id=category_id)) return render_template('newitem.html', category_id=category_id, form=form)
def delete_category(category_id): delete = db_session.query(Categories).filter_by(id=category_id).one() form = CategoryForm(request.form) if delete.user_id != login_session['user_id']: flash('Unauthorized to delete this category') return redirect( url_for('category_owner.show_categories', category_id=category_id)) if request.method == 'POST': db_session.delete(delete) db_session.commit() flash('Category {} successfully deleted!'.format(delete.name)) return redirect(url_for('home.index')) else: return render_template('/deletecategory.html', category=delete, form=form)
def delete_item(category_id, item_id): delete = db_session.query(Items).filter_by(id=item_id).one() form = ItemForm(request.form) if delete.user_id != login_session['user_id']: flash('Unauthorized to delete this item') return redirect(url_for('category_owner.show_categories', category_id=category_id)) if request.method == 'POST': db_session.delete(delete) db_session.commit() flash('Item {} successfully deleted!'.format(delete.name)) return redirect(url_for('category_owner.show_categories', category_id=category_id)) else: return render_template('/deleteitem.html', category_id=category_id, item_id=item_id, item=delete, form=form)
def edit_category(category_id): edit = db_session.query(Categories).filter_by(id=category_id).one() form = CategoryForm(request.form) if edit.user_id != login_session['user_id']: flash('Unauthorized to edit this category') return redirect( url_for('category_owner.showCategory', category_id=category_id)) if request.method == 'POST' and form.validate(): edit.name = request.form['name'] db_session.add(edit) db_session.commit() flash('Category {} has been successfully edited!'.format(edit.name)) return redirect( url_for('category_owner.show_categories', category_id=category_id)) else: return render_template('/editcategory.html', category=edit, form=form)
def edit_item(category_id, item_id): edit = db_session.query(Items).filter_by(id=item_id).one() category = db_session.query(Categories).filter_by(id=category_id).one() form = ItemForm(request.form) if edit.user_id != login_session['user_id']: flash('Unauthorized to edit this item') return redirect(url_for('category_owner.showCategory', category_id=category_id)) if request.method == 'POST' and form.validate(): if request.form['name']: edit.name = request.form['name'] if request.form['description']: edit.description = request.form['description'] db_session.add(edit) db_session.commit() flash('Item {} edited successfully!'.format(edit.name)) return redirect(url_for('item_owner.show_item', category_id=category_id, item_id=item_id)) else: return render_template('/edititem.html', category=category, item=edit, form=form)