def share(image_url, caption):
db = get_db()
user_id = g.user['user_id']
caption = "Shared: " + caption
num_post = db.execute(
"""
SELECT num_posts
FROM user
WHERE user_id = ?
""",
(user_id,)
).fetchone()[0]
post_info, extension = image_url.rsplit(".", 1)
post_user_id, post_id = post_info.rsplit("_", 1)
share_image_url = f"{user_id}_{num_post+1}.{extension}"# + image_url.rsplit(".")[-1]
# file.save(os.path.join(current_app.config['IMAGE_FOLDER'], image_url))
src = f"{current_app.config['IMAGE_FOLDER']}/{image_url}"
dst = f"{current_app.config['IMAGE_FOLDER']}/{share_image_url}"
copyfile(src, dst)
db.execute(
"""
INSERT INTO posts
(image_caption, image_url, post_user_id, post_id)
VALUES (?, ?, ?, ?)
""",
(caption, share_image_url, user_id, num_post + 1)
)
db.execute(
"""
INSERT INTO share
(user_id, post_id, post_user_id)
VALUES (?, ?, ?)
""",
(user_id, post_user_id, post_id)
)
db.execute(
"""
UPDATE user
SET num_posts = num_posts+1
WHERE user_id = ?
""",
(user_id,)
)
db.commit()
# keep track of user share activity
db.execute(
"""
INSERT INTO user_activity(user_id, post_id, post_user_id, type_of_activity)
VALUES (?, ?, ?, ?)
""", (g.user['user_id'], num_post + 1, g.user['user_id'], 3))
db.commit()
return redirect(url_for('socialize.user_feed'))
def load_logged_in_user():
user_id = session.get('user_id')
if user_id is None:
g.user = None
else:
g.user = get_db().execute('SELECT * FROM user_info WHERE user_id = ?',
(user_id, )).fetchone()
def profile_update():
if request.method != 'POST':
return redirect(url_for('socialize.profile'))
username = request.form['username']
old_password = request.form['old_password']
new_password = request.form['new_password']
birthday = request.form['birthday']
email = request.form['email']
phone = request.form['phone']
# if not all((username, old_password, new_password, birthday, email, phone,)):
# flash("Please fill all the details!")
# return redirect(url_for('socialize.profile'))
db = get_db()
curr_password = db.execute(
"""
SELECT password
FROM user_info
WHERE user_id = ?
""",
(g.user['user_id'],)
).fetchone()[0]
# if (not new_password) or (curr_password != old_password):
# flash("Old password was wrongly entered!")
# return redirect(url_for('socialize.profile'))
print(old_password, new_password, curr_password)
if new_password:
if curr_password != old_password:
flash("Old password was wrongly entered!")
return redirect(url_for('socialize.profile'))
else:
new_password = curr_password
db.execute(
"""
UPDATE user_info
SET username = ?,
password = ?,
data_of_birth = ?,
email_id = ?,
phone_number = ?
WHERE user_id = ?
""",
(username, new_password, birthday, email, phone, g.user['user_id'])
)
db.commit()
return redirect(url_for('socialize.user_feed'))
def comment(post_id, post_user_id):
db = get_db()
if request.method == 'POST':
num_user_comments = db.execute(
"""
SELECT COUNT(comment_id)
FROM comments
WHERE post_id = ?
AND post_user_id = ?
AND user_id = ?
""",
(post_id, post_user_id, g.user['user_id'])
).fetchone()[0]
comment_text = request.form['comment']
db.execute(
"""
INSERT INTO comments
(comment_id, user_id, post_id, post_user_id, comment_text)
VALUES (?, ?, ?, ?, ?)
""",
(num_user_comments + 1, g.user['user_id'], post_id, post_user_id, comment_text))
db.execute(
"""
UPDATE posts
set num_comments = num_comments + 1 where
post_id = ? and post_user_id + ?
""",
(post_id, post_user_id))
db.commit()
# keep track of the comments activity
db.execute(
"""
INSERT INTO user_activity(user_id, post_id, post_user_id, type_of_activity)
VALUES (?, ?, ?, ?)
""", (g.user['user_id'], post_id, post_user_id, 2))
db.commit()
# select all the comments for the post to display
comments = db.execute(
"""
SELECT comments.user_id, comment_text, created, username
FROM comments, user_info
WHERE post_id = ?
AND post_user_id = ?
AND user_info.user_id = comments.user_id
ORDER BY created DESC
""",
(post_id, post_user_id)).fetchall()
return render_template('socialize/comment.html', comments=comments,
post_id=post_id, post_user_id=post_user_id)
def index():
db = get_db()
posts = db.execute(
"""
SELECT username, post_user_id, post_id, image_url, image_caption, created
FROM posts, user_info
WHERE post_user_id = user_id
ORDER BY created DESC
LIMIT 10
"""
).fetchall()
return render_template('socialize/feed.html', posts=posts)
def register():
if request.method == 'POST':
username = request.form['username']
password = request.form['password']
birthday = request.form['birthday']
email = request.form['email']
phone = request.form['phone']
print(username, password, birthday, email, phone)
print(type(username), type(password), type(birthday), type(email),
type(phone))
db = get_db()
error = None
if not username:
error = 'Username is required.'
elif not password:
error = 'Password is required.'
elif db.execute('SELECT user_id FROM user_info WHERE username = ?',
(username, )).fetchone() is not None:
error = 'User {} is already registered.'.format(username)
if error is None:
# inserts into user_info table
# INSERT INTO user_info (username, password, email_id)
db.execute(
"""
INSERT INTO user_info (username, password, data_of_birth, email_id, phone_number)
VALUES (?, ?, ?, ?, ?)
""", (username, password, birthday, email, phone)
# (username, password, email)
# (username, generate_password_hash(password))
)
user_id = db.execute(
'SELECT user_id FROM user_info WHERE username = ?',
(username, )).fetchone()[0]
# inserts into user table
db.execute(
"""
INSERT INTO user (user_id)
VALUES (?)
""", (user_id, ))
db.commit()
return redirect(url_for('auth.login'))
flash(error)
return render_template('auth/register.html')
def profile():
db = get_db()
user_info = db.execute(
"""
SELECT username, data_of_birth, email_id, phone_number, num_followers, num_followings, num_posts
FROM user_info, user
WHERE user_info.user_id = ?
AND user_info.user_id = user.user_id
""",
(g.user['user_id'],)
).fetchone()
return render_template('socialize/profile.html', user_info=user_info)
def user_connection():
db = get_db()
user_friends = db.execute(
"""
SELECT user_id, username
FROM user_info
WHERE user_id IN (
SELECT user_id_following
FROM connections
WHERE user_id_follower = ?
)
""",
(g.user['user_id'], )).fetchall()
return render_template('socialize/user_connection.html', user_friends=user_friends)
def user_activity():
db = get_db()
user_activities = db.execute(
"""
SELECT my_activity.*, user_data.username from (
SELECT post_id, post_user_id, type_of_activity, created from user_activity where
user_id = ?
ORDER BY created DESC
) AS my_activity
JOIN
user_info as user_data on
user_data.user_id = my_activity.post_user_id
""",
(g.user['user_id'], )).fetchall()
return render_template('socialize/user_activity.html', user_activities=user_activities)
def connection():
db = get_db()
if request.method == 'POST':
connection_user_id = request.form['new_user_id']
db.execute(
"""
INSERT INTO connections
(user_id_follower, user_id_following)
VALUES (?, ?)
""",
(g.user['user_id'], connection_user_id))
db.execute(
"""
UPDATE user
SET num_followings = num_followings + 1
where user_id = ?
""",
(g.user['user_id'], ))
db.execute(
"""
UPDATE user
SET num_followers = num_followers + 1
where user_id = ?
""",
(connection_user_id, ))
db.commit()
return redirect(url_for('socialize.connection'))
else:
peoples = db.execute(
"""
SELECT user_id, username
FROM user_info
WHERE user_id NOT IN (
SELECT user_id_following
FROM connections
WHERE user_id_follower = ?
)
AND user_id != ?
""",
(g.user['user_id'], g.user['user_id'])
).fetchall()
return render_template('socialize/connection.html', users=peoples)
def delete(post_id, image_url):
db = get_db()
db.execute('DELETE FROM posts WHERE post_id = ? AND post_user_id = ?',
(post_id, g.user['user_id']))
db.execute(
"""
UPDATE user
SET num_posts = num_posts-1
WHERE user_id = ?
""",
(g.user['user_id'],))
db.commit()
# keep track of user delete activity
db.execute(
"""
INSERT INTO user_activity(user_id, post_id, post_user_id, type_of_activity)
VALUES (?, ?, ?, ?)
""", (g.user['user_id'], post_id, g.user['user_id'], 5))
db.commit()
return redirect(url_for('socialize.user_feed'))
def login():
if request.method == 'POST':
username = request.form['username']
password = request.form['password']
db = get_db()
error = None
user = db.execute('SELECT * FROM user_info WHERE username = ?',
(username, )).fetchone()
if user is None:
error = 'Incorrect username.'
# elif not check_password_hash(user['password'], password):
elif user['password'] != password:
error = 'Incorrect password.'
if error is None:
session.clear()
session['user_id'] = user['user_id']
return redirect(url_for('socialize.user_feed'))
flash(error)
return render_template('auth/login.html')
def user_feed():
db = get_db()
posts = db.execute(
"""
SELECT allposts.*, user_like.created
FROM (
SELECT post_user_id, post_id, num_likes, num_comments,
image_url, image_caption, created
FROM (
SELECT post_user_id, post_id, num_likes, num_comments,
image_url, image_caption, created
FROM posts
WHERE post_user_id IN (
SELECT user_id_following
FROM connections
WHERE user_id_follower = ?
)
UNION
SELECT post_user_id, post_id, num_likes, num_comments,
image_url, image_caption, created
FROM posts
WHERE post_user_id = ?
)
ORDER BY created DESC
) AS allposts
LEFT JOIN likes AS user_like
ON user_like.post_id = allposts.post_id
AND user_like.post_user_id = allposts.post_user_id
AND user_like.user_id = ?
""",
(g.user['user_id'], g.user['user_id'], g.user['user_id'])).fetchall()
return render_template('socialize/feed.html', posts=posts)
def create():
if request.method == 'POST':
caption = request.form['image_caption']
if not caption:
flash('Caption is required.')
# check if POST object has a file
elif 'file' not in request.files:
flash('No file part')
# accept only if file has a name
elif request.files['file'].filename == '':
flash('No selected file')
else:
db = get_db()
user_id = g.user['user_id']
num_post = db.execute(
"""
SELECT num_posts
FROM user
WHERE user_id = ?
""",
(user_id,)
).fetchone()['num_posts']
image_url = f"{user_id}_{num_post+1}"
file = request.files['file']
if file and allowed_file(file.filename):
extension = file.filename.rsplit('.', 1)[1].lower()
# sanitize the filename
image_url = secure_filename(image_url) + '.' + extension
file.save(os.path.join(current_app.config['IMAGE_FOLDER'], image_url))
db.execute(
"""
INSERT INTO posts
(image_caption, image_url, post_user_id, post_id)
VALUES (?, ?, ?, ?)
""",
(caption, image_url, user_id, num_post + 1)
)
db.execute(
"""
UPDATE user
SET num_posts = num_posts+1
WHERE user_id = ?
""",
(user_id,)
)
db.commit()
# keep track of the user post acitivity
db.execute(
"""
INSERT INTO user_activity(user_id, post_id, post_user_id, type_of_activity)
VALUES (?, ?, ?, ?)
""",
(user_id, num_post + 1, user_id, 0))
db.commit()
return redirect(url_for('socialize.user_feed'))
return render_template('socialize/create.html')
def like(post_id, post_user_id):
db = get_db()
# checking is the user has already liked the post
user_id_like = db.execute(
"""
SELECT user_id from likes where
post_id = ? and
post_user_id = ? and
user_id = ?
""",
(post_id, post_user_id, g.user['user_id'])).fetchone()
# if the user has already liked post then do unlike else do like operation
if user_id_like is not None:
db.execute(
"""
DELETE from likes where
post_id = ? and
post_user_id = ? and
user_id = ?
""",
(post_id, post_user_id, g.user['user_id'])
)
db.execute(
"""
UPDATE posts
SET num_likes = num_likes - 1 where
post_id = ? and
post_user_id = ?
""",
(post_id, post_user_id))
db.commit()
# keep track of user unlike activity
db.execute(
"""
INSERT INTO user_activity(user_id, post_id, post_user_id, type_of_activity)
VALUES (?, ?, ?, ?)
""", (g.user['user_id'], post_id, post_user_id, 4))
db.commit()
else :
db.execute(
"""
INSERT INTO likes (user_id, post_id, post_user_id)
VALUES (?, ?, ?)
""",
(g.user['user_id'], post_id, post_user_id))
db.execute(
"""
UPDATE posts
SET num_likes = num_likes + 1 where
post_id = ? and
post_user_id = ?
""",
(post_id, post_user_id))
db.commit()
# keep track of user like activity
db.execute(
"""
INSERT INTO user_activity(user_id, post_id, post_user_id, type_of_activity)
VALUES (?, ?, ?, ?)
""", (g.user['user_id'], post_id, post_user_id, 1))
db.commit()
return redirect(url_for('socialize.user_feed'))