def user_settings(db): ''' User Management Page ''' s = SettingSession() if auth(request) and request.method == 'POST': username = request.forms.get('username') password = request.forms.get('password') action = request.forms.get('action') if action == 'Create': s.add(User(username, password)) if action == 'Update': user = s.query(User).filter_by(name=username).one() user.update(password) s.merge(user) if action == 'Remove' and username != 'admin': user = s.query(User).filter_by(name=username).one() s.delete(user) s.commit() users = s.query(User).all() s.close() return env.get_template('settings_users.html').render( auth=auth(request), users=users )
def user_settings(db): ''' User Management Page ''' s = SettingSession() if auth(request) and request.method == 'POST': username = request.forms.get('username') password = request.forms.get('password') action = request.forms.get('action') if action == 'Create': s.add(User(username, password)) if action == 'Update': user = s.query(User).filter_by(name=username).one() user.update(password) s.merge(user) if action == 'Remove' and username != 'admin': user = s.query(User).filter_by(name=username).one() s.delete(user) s.commit() users = s.query(User).all() s.close() return env.get_template('settings_users.html').render(auth=auth(request), users=users)