def get_events():
sparm = request.args.get('start', None, type=float)
eparm = request.args.get('end', None, type=float)
if sparm == None or eparm == None:
flash("Invalid Request", "Error")
return default_view()
sdate = datetime.fromtimestamp(sparm)
edate = datetime.fromtimestamp(eparm)
events = Event.query.filter(Event.date_start >= sdate).\
filter(Event.date_end <= edate).all()
json_str = "[ "
for event in events:
jsobj = {
'id': event.id,
'title': event.get_title(),
'start': event.get_start_date(),
'end': event.get_end_date(),
'info': event.get_info(),
'location': event.get_location(),
'allDay': event.allday
}
json_str = json_str + jsonify(jsobj).data + ","
json_str += "{}]"
return Response(json_str, mimetype="application/json")
def view_post(postid):
post = NewsPost.query.get(postid)
if post == None:
return default_view()
return render_template('show_post.html', post=post)
def add_post():
error = None;
npost = NewsPost("<input id=\"post-title\" style=\"font-size: 24px; font-weight: bold; padding: 2px; width: 95%;height: 32px;\" type=text name=\"posttitle\" value=\"Post Title\">",
"<textarea style=\"width:100%;\" id=\"post-body-textbox\" name=\"postbody\">Post Body</textarea>",
current_user.id)
if request.method == 'POST':
ptitle = request.form['posttitle']
pbody = request.form['postbody']
if( ptitle != None and pbody != None ):
npost.set_title(ptitle)
npost.set_body(pbody)
db.session.add(npost)
db.session.commit()
flash('New entry was successfully posted', 'Message')
return redirect(url_for('.default'))
flash("Invalid Request", "Error")
return default_view()
return render_template('post_form.html',
post=npost,
form_action=url_for('.add_post'),
form_name='addpost')
def auth_register():
error = None
# #############################################################
# TODO: Add form input validation and sanitize everything and
# add bcrypt support
if request.method == 'POST':
uname = str(request.form['username'])
pw = str(request.form['password'])
pw2 = str(request.form['password2'])
email = str(request.form['email'])
unc_email = str(request.form['uncc_email'])
fname = str(request.form['firstname'])
lname = str(request.form['lastname'])
nick = str(request.form['nickname'])
degree_prog = int(request.form['degree_program'])
if len(uname) < 5:
flash('Username is too short: must be longer than five characters', 'Error')
return render_template('register.html',
error=error,
degrees=app.config['DEGREE_PROGRAMS'])
quser = User.query.filter_by(username = uname).first()
qemail = User.query.filter_by(uncc_email = unc_email).first()
if (quser is None) and (qemail is None):
if pw == pw2: # basic password validation
# generate password hash
passwd = hashpw(pw, gensalt())
usr = User(uname, passwd, email)
usr.set_fullname(fname,lname)
usr.set_uncc_email(unc_email)
usr.set_nickname(nick)
usr.set_degree_program(degree_prog)
db.session.add(usr)
db.session.commit()
flash('User created: You may now login.', 'Message')
return default_view()
else:
flash('Passwords do not math', 'Error')
else:
flash('Username or Email already in use.', 'Error')
return default_view('user/register.html')
def update_event():
eid = request.form.get('eventid', None, type=int)
etitle = request.form.get('eventtitle', None)
einfo = request.form.get('eventinfo', None)
elocation = request.form.get('eventlocation', None)
estr_start = request.form.get('eventstart', None)
estr_end = request.form.get('eventend', None)
estr_allday = request.form.get('eventallday', None)
if eid == None:
flash("Invalid Request", "Error")
return default()
evobj = Event.query.get(eid);
if evobj == None:
flash("Invalid Request", "Error")
return default_view()
if etitle != None:
evobj.set_title(etitle)
if einfo != None:
evobj.set_info(einfo)
if elocation != None:
evobj.set_location(elocation)
if estr_allday == 'on':
evobj.set_allday(True)
else:
evobj.set_allday(False)
if estr_start != None and estr_end != None:
estart = datetime.strptime(estr_start, '%m/%d/%Y %I:%M %p')
eend = datetime.strptime(estr_end, '%m/%d/%Y %I:%M %p')
evobj.set_start_date(estart)
evobj.set_end_date(eend)
else:
flash("Invalid Request", "Error")
return default_view()
db.session.commit()
return default()
def delete_post(postid):
pst = NewsPost.query.get(postid)
if pst == None:
flash("Invalid Request", "Error")
return default_view();
if current_user == pst.user:
for comment in pst.comments:
db.session.delete(comment)
db.session.delete(pst)
db.session.commit()
else:
flash("Insufficient Premissions", "Error")
return default_view()
return default_view()
def mailer():
msg = Message("client test")
msg.add_recipient("*****@*****.**")
msg.body = "Yo, shoot me a message"
base_app.mailer.send(msg)
return default_view()
def edit_post():
pid = int(request.form['postid'])
ptitle = str(request.form['posttitle'])
pnbody = str(request.form['postbody'])
newspost = NewsPost.query.get(pid)
if(newspost == None):
flash("Invalid Request", "Error")
return default_view()
if current_user.id != newspost.author:
flash("Invalid User Premissions", "Error")
return default_view()
newspost.body = pnbody
newspost.title = ptitle
db.session.commit()
return default_view()
def add_post_comment(postid):
post = NewsPost.query.get(postid)
if post == None:
return default_view("Invalid Request")
pbody = request.form['comment-body']
pauth = current_user.id
if( pbody != None ):
ncmt = NewsPostComment( post.id, pbody, pauth )
db.session.add(ncmt)
db.session.commit()
return render_template('show_post.html', post=post)
def auth_login():
if request.method == 'POST':
uname = str(request.form['username'])
pw = str(request.form['password'])
quser = User.query.filter_by(username = uname).first()
if( quser != None ):
pw_hash = hashpw(pw, quser.password)
if( pw_hash == quser.password ):
login_user(quser)
else:
flash('Invalid Username or password', 'Error')
else:
flash('Invalid Username or password', 'Error')
return default_view()
def auth_logout():
logout_user()
return default_view()
def forum_wrap():
if g.sijax.is_sijax_request:
return g.sijax.process_request()
return default_view()
