def user_create(login_session):
new_user = User(name=login_session['username'],
email=login_session['email'],
picture=login_session['picture'])
db_session.add(new_user)
db_session.commit()
user = db_session.query(User).filter_by(email=login_session['email']).one()
return user.id
def new_category():
form = CategoryForm(request.form)
if request.method == 'POST' and form.validate():
new = Categories(name=request.form['name'],
user_id=login_session['user_id'])
db_session.add(new)
db_session.commit()
flash('Category {} has been successfully created!'.format(new.name))
return redirect(url_for('home.index'))
return render_template('/newcategory.html', form=form)
def new_item(category_id):
form = ItemForm(request.form)
if request.method == 'POST' and form.validate():
new = Items(name=request.form['name'],
description=request.form['description'],
category_id=category_id,
user_id=login_session['user_id'])
db_session.add(new)
db_session.commit()
flash('New item {} successfully created!'.format(new.name))
return redirect(url_for('category_owner.show_categories',
category_id=category_id))
return render_template('newitem.html', category_id=category_id,
form=form)
def delete_category(category_id):
delete = db_session.query(Categories).filter_by(id=category_id).one()
form = CategoryForm(request.form)
if delete.user_id != login_session['user_id']:
flash('Unauthorized to delete this category')
return redirect(
url_for('category_owner.show_categories', category_id=category_id))
if request.method == 'POST':
db_session.delete(delete)
db_session.commit()
flash('Category {} successfully deleted!'.format(delete.name))
return redirect(url_for('home.index'))
else:
return render_template('/deletecategory.html',
category=delete,
form=form)
def delete_item(category_id, item_id):
delete = db_session.query(Items).filter_by(id=item_id).one()
form = ItemForm(request.form)
if delete.user_id != login_session['user_id']:
flash('Unauthorized to delete this item')
return redirect(url_for('category_owner.show_categories',
category_id=category_id))
if request.method == 'POST':
db_session.delete(delete)
db_session.commit()
flash('Item {} successfully deleted!'.format(delete.name))
return redirect(url_for('category_owner.show_categories',
category_id=category_id))
else:
return render_template('/deleteitem.html', category_id=category_id,
item_id=item_id, item=delete, form=form)
def edit_category(category_id):
edit = db_session.query(Categories).filter_by(id=category_id).one()
form = CategoryForm(request.form)
if edit.user_id != login_session['user_id']:
flash('Unauthorized to edit this category')
return redirect(
url_for('category_owner.showCategory', category_id=category_id))
if request.method == 'POST' and form.validate():
edit.name = request.form['name']
db_session.add(edit)
db_session.commit()
flash('Category {} has been successfully edited!'.format(edit.name))
return redirect(
url_for('category_owner.show_categories', category_id=category_id))
else:
return render_template('/editcategory.html', category=edit, form=form)
def edit_item(category_id, item_id):
edit = db_session.query(Items).filter_by(id=item_id).one()
category = db_session.query(Categories).filter_by(id=category_id).one()
form = ItemForm(request.form)
if edit.user_id != login_session['user_id']:
flash('Unauthorized to edit this item')
return redirect(url_for('category_owner.showCategory',
category_id=category_id))
if request.method == 'POST' and form.validate():
if request.form['name']:
edit.name = request.form['name']
if request.form['description']:
edit.description = request.form['description']
db_session.add(edit)
db_session.commit()
flash('Item {} edited successfully!'.format(edit.name))
return redirect(url_for('item_owner.show_item',
category_id=category_id, item_id=item_id))
else:
return render_template('/edititem.html', category=category,
item=edit, form=form)