def load_logged_in_user():
user_id = session.get('user_id')
if user_id is None:
g.user = None
else:
g.user = get_db().execute('SELECT * FROM user WHERE id = ?',
(user_id, )).fetchone()
def get_book(id):
db = get_db()
book = db.execute(
'SELECT b.id, title, author, publisher_name, year, rating, category_name,'
' current_page, total_pages, finished, review, cover FROM book b'
' LEFT JOIN category c ON b.category = c.id'
' LEFT JOIN publisher p ON b.publisher = p.id'
' WHERE b.id = ?', (id, )).fetchone()
return book
def delete_book(id):
book = get_book(id)
if book['cover'] != '':
filepath = os.path.join(os.path.abspath(os.path.dirname(__file__)),
current_app.config['UPLOAD_FOLDER'],
book['cover'])
if os.path.exists(filepath):
os.remove(filepath)
db = get_db()
db.execute('DELETE FROM book WHERE id = ?', (id, ))
db.commit()
return redirect(url_for('index'))
def index():
finished_filter = request.args.get('filter')
view_filters = {'current': 'checked', 'finished': 'checked'}
db = get_db()
if finished_filter == 'finished':
view_filters = {'current': '', 'finished': 'checked'}
books = db.execute(
'SELECT b.id, title, rating, author, publisher_name, year, review, category_name, current_page, total_pages, finished, cover'
' FROM book b LEFT JOIN publisher p ON b.publisher = p.id'
' LEFT JOIN category c ON b.category = c.id'
' WHERE b.finished = "True"'
' ORDER by created DESC').fetchall()
elif finished_filter == 'current':
view_filters = {'current': 'checked', 'finished': ''}
books = db.execute(
'SELECT b.id, title, rating, author, publisher_name, year, review, category_name, current_page, total_pages, finished, cover'
' FROM book b LEFT JOIN publisher p ON b.publisher = p.id'
' LEFT JOIN category c ON b.category = c.id'
' WHERE b.finished = "False"'
' ORDER by created DESC').fetchall()
elif finished_filter == 'none':
view_filters = {'current': '', 'finished': ''}
books = []
else:
view_filters = {'current': 'checked', 'finished': 'checked'}
finished_filter = 'all'
books = db.execute(
'SELECT b.id, title, rating, author, publisher_name, year, review, category_name, current_page, total_pages, finished, cover'
' FROM book b LEFT JOIN publisher p ON b.publisher = p.id'
' LEFT JOIN category c ON b.category = c.id'
' ORDER by created DESC').fetchall()
book_ratings = []
for book in books:
rating = {
'rating-fill': '*' * book['rating'],
'rating-empty': '*' * (5 - book['rating'])
}
book_ratings.append(rating)
return render_template('books/index.html',
books=books,
book_ratings=book_ratings,
view_filters=view_filters)
def login():
username = request.form['username']
password = request.form['password']
db = get_db()
error = None
user = db.execute('SELECT * FROM user WHERE username = ?',
(username, )).fetchone()
if user is None:
error = 'Incorrect username.'
elif not check_password_hash(user['password'], password):
error = 'Incorrect password.'
if error is None:
session.clear()
session['user_id'] = user['id']
return redirect(url_for('index'))
flash(error)
return redirect(url_for('index'))
def register():
if request.method == 'POST':
username = request.form['username']
password = request.form['password']
db = get_db()
error = None
if not username:
error = 'username is required.'
elif not password:
error = 'password is required.'
elif db.execute('SELECT id FROM user WHERE username = ?',
(username, )).fetchone() is not None:
error = 'user {} is already registered.'.format(username)
if error is None:
db.execute('INSERT INTO user (username, password) values (?, ?)',
(username, generate_password_hash(password)))
db.commit()
return redirect(url_for('index'))
flash(error)
return render_template('auth/register.html')
def edit_book(id):
db = get_db()
book = get_book(id)
if book is None:
abort(404, "Book id {0} doesn't exist.".format(id))
if request.method == 'POST':
title = request.form['title']
author = request.form['author']
publisher = request.form['publisher']
year = request.form['year']
rating = request.form['rating']
category = request.form['category']
current_page = request.form['current-page']
total_pages = request.form['total-pages']
review = request.form['review']
if (request.form.get('finished') != None):
finished = 'True'
else:
finished = 'False'
if 'cover-file' in request.files:
cover_file = request.files['cover-file']
if cover_file.filename != '' and allowed_filename(
cover_file.filename):
file_extension = cover_file.filename.rsplit('.', 1)[-1]
filename = secure_filename(title) + '.' + file_extension
#filename = secure_filename(cover_file.filename)
basedir = os.path.abspath(os.path.dirname(__file__))
tmp_index = 0
while os.path.exists(
os.path.join(basedir,
current_app.config['UPLOAD_FOLDER'],
filename)):
filename = "{0}{1}".format(tmp_index, filename)
tmp_index += 1
cover_file.save(
os.path.join(basedir, current_app.config['UPLOAD_FOLDER'],
filename))
db.execute('UPDATE book SET cover = ? WHERE id = ?',
(filename, id))
db.commit()
elif cover_file.filename != '':
flash("Allowed image types are: png, jpg, jpeg and gif")
publisher_id = get_item_id(db, publisher, 'publisher')
category_id = get_item_id(db, category, 'category')
error = None
if error is not None:
flash(error)
else:
db.execute(
'UPDATE book SET title = ?, author = ?, publisher = ?, year = ?,'
' rating = ?, category = ?, current_page = ?, total_pages = ?,'
' finished = ?, review = ? WHERE id = ?',
(title, author, publisher_id, year, rating, category_id,
current_page, total_pages, finished, review, id))
db.commit()
return redirect(url_for('index'))
publishers = db.execute('SELECT * FROM publisher').fetchall()
categories = db.execute('SELECT * FROM category').fetchall()
return render_template('books/edit.html',
book=book,
publishers=publishers,
categories=categories)
def add_book():
db = get_db()
if request.method == 'POST':
title = request.form['title']
author = request.form['author']
publisher = request.form['publisher']
year = request.form['year']
rating = request.form['rating']
category = request.form['category']
current_page = request.form['current-page']
total_pages = request.form['total-pages']
review = request.form['review']
if (request.form.get('finished') != None):
finished = 'True'
else:
finished = 'False'
cover = ''
if 'cover-file' not in request.files:
cover = ''
else:
cover_file = request.files['cover-file']
if cover_file.filename != '' and allowed_filename(
cover_file.filename):
file_extension = cover_file.filename.rsplit('.', 1)[-1]
filename = secure_filename(title) + '.' + file_extension
#filename = secure_filename(cover_file.filename)
basedir = os.path.abspath(os.path.dirname(__file__))
tmp_index = 0
while os.path.exists(
os.path.join(basedir,
current_app.config['UPLOAD_FOLDER'],
filename)):
filename = "{0}{1}".format(tmp_index, filename)
tmp_index += 1
cover_file.save(
os.path.join(basedir, current_app.config['UPLOAD_FOLDER'],
filename))
cover = filename
elif cover_file.filename != '':
flash("Allowed image types are: png, jpg, jpeg and gif")
publisher_id = get_item_id(db, publisher, 'publisher')
category_id = get_item_id(db, category, 'category')
error = None
if error is not None:
flash(error)
else:
db.execute(
'INSERT INTO book (title, author, publisher, year, rating, category, current_page, total_pages, cover, finished, review)'
' VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)',
(title, author, publisher_id, year, rating, category_id,
current_page, total_pages, cover, finished, review))
db.commit()
return redirect(url_for('index'))
publishers = db.execute('SELECT * FROM publisher').fetchall()
categories = db.execute('SELECT * FROM category').fetchall()
return render_template('books/add.html',
publishers=publishers,
categories=categories)