def edit_comment(id):
comment = Comment.query.get(id)
if comment is None:
abort(404)
snippet = comment.snippet
form = dict(title=comment.title, text=comment.text)
if request.method == 'POST':
if 'delete' in request.form:
db_session.delete(comment)
db_session.commit()
flash(u'Comment was deleted.')
return redirect(snippet.url)
elif 'cancel' in request.form:
return redirect(snippet.url)
form['title'] = request.form['title']
form['text'] = request.form['text']
if not form['text']:
flash(u'Error: comment text is required.')
else:
comment.title = form['title']
comment.text = form['text']
db_session.commit()
flash(u'Comment was updated.')
return redirect(snippet.url)
return render_template('snippets/edit_comment.html', form=form,
comment=comment)
def new():
category_id = None
preview = None
if 'category' in request.args:
rv = Category.query.filter_by(slug=request.args['category']).first()
if rv is not None:
category_id = rv.id
if request.method == 'POST':
category_id = request.form.get('category', type=int)
if 'preview' in request.form:
preview = format_creole(request.form['body'])
else:
title = request.form['title']
body = request.form['body']
if not body:
flash(u'Error: you have to enter a snippet')
else:
category = Category.query.get(category_id)
if category is not None:
snippet = Snippet(g.user, title, body, category)
db_session.add(snippet)
db_session.commit()
flash(u'Your snippet was added')
return redirect(snippet.url)
return render_template('snippets/new.html',
categories=Category.query.order_by(Category.name).all(),
active_category=category_id, preview=preview)
def edit_comment(id):
comment = Comment.query.get(id)
if comment is None:
abort(404)
snippet = comment.snippet
form = dict(title=comment.title, text=comment.text)
if request.method == 'POST':
if 'delete' in request.form:
db_session.delete(comment)
db_session.commit()
flash(u'Comment was deleted.')
return redirect(snippet.url)
elif 'cancel' in request.form:
return redirect(snippet.url)
form['title'] = request.form['title']
form['text'] = request.form['text']
if not form['text']:
flash(u'Error: comment text is required.')
else:
comment.title = form['title']
comment.text = form['text']
db_session.commit()
flash(u'Comment was updated.')
return redirect(snippet.url)
return render_template('snippets/edit_comment.html',
form=form,
comment=comment)
def removeAssociation(self, server_url, handle):
try:
return OpenIDAssociation.query.filter(
(OpenIDAssociation.server_url == server_url)
& (OpenIDAssociation.handle == handle)).delete()
finally:
db_session.commit()
def cleanupNonces(self):
try:
return OpenIDUserNonce.query.filter(
OpenIDUserNonce.timestamp <= int(time() -
nonce.SKEW)).delete()
finally:
db_session.commit()
def new():
category_id = None
preview = None
if 'category' in request.args:
rv = Category.query.filter_by(slug=request.args['category']).first()
if rv is not None:
category_id = rv.id
if request.method == 'POST':
category_id = request.form.get('category', type=int)
if 'preview' in request.form:
preview = format_creole(request.form['body'])
else:
title = request.form['title']
body = request.form['body']
if not body:
flash(u'Error: you have to enter a snippet')
else:
category = Category.query.get(category_id)
if category is not None:
snippet = Snippet(g.user, title, body, category)
db_session.add(snippet)
db_session.commit()
flash(u'Your snippet was added')
return redirect(snippet.url)
return render_template('snippets/new.html',
categories=Category.query.order_by(
Category.name).all(),
active_category=category_id,
preview=preview)
def delete_category(id):
category = Category.query.get(id)
if category is None:
abort(404)
if request.method == 'POST':
if 'cancel' in request.form:
flash(u'Deletion was aborted')
return redirect(url_for('.manage_categories'))
move_to_id = request.form.get('move_to', type=int)
if move_to_id:
move_to = Category.query.get(move_to_id)
if move_to is None:
flash(u'Category was removed in the meantime')
else:
for snippet in category.snippets.all():
snippet.category = move_to
db_session.delete(category)
flash(u'Category %s deleted and entries moved to %s.' %
(category.name, move_to.name))
else:
category.snippets.delete()
db_session.delete(category)
flash(u'Category %s deleted' % category.name)
db_session.commit()
return redirect(url_for('.manage_categories'))
return render_template('snippets/delete_category.html',
category=category,
other_categories=Category.query.filter(
Category.id != category.id).all())
def removeAssociation(self, server_url, handle):
try:
return OpenIDAssociation.query.filter(
(OpenIDAssociation.server_url == server_url) & (OpenIDAssociation.handle == handle)
).delete()
finally:
db_session.commit()
def delete_category(id):
category = Category.query.get(id)
if category is None:
abort(404)
if request.method == 'POST':
if 'cancel' in request.form:
flash(u'Deletion was aborted')
return redirect(url_for('.manage_categories'))
move_to_id = request.form.get('move_to', type=int)
if move_to_id:
move_to = Category.query.get(move_to_id)
if move_to is None:
flash(u'Category was removed in the meantime')
else:
for snippet in category.snippets.all():
snippet.category = move_to
db_session.delete(category)
flash(u'Category %s deleted and entries moved to %s.' %
(category.name, move_to.name))
else:
category.snippets.delete()
db_session.delete(category)
flash(u'Category %s deleted' % category.name)
db_session.commit()
return redirect(url_for('.manage_categories'))
return render_template('snippets/delete_category.html',
category=category,
other_categories=Category.query
.filter(Category.id != category.id).all())
def storeAssociation(self, server_url, association):
assoc = OpenIDAssociation(server_url=server_url,
handle=association.handle,
secret=association.secret.encode('base64'),
issued=association.issued,
lifetime=association.lifetime,
assoc_type=association.assoc_type)
db_session.add(assoc)
db_session.commit()
def manage_categories():
categories = Category.query.order_by(Category.name).all()
if request.method == 'POST':
for category in categories:
category.name = request.form['name.%d' % category.id]
category.slug = request.form['slug.%d' % category.id]
db_session.commit()
flash(u'Categories updated')
return redirect(url_for('.manage_categories'))
return render_template('snippets/manage_categories.html',
categories=categories)
def manage_categories():
categories = Category.query.order_by(Category.name).all()
if request.method == 'POST':
for category in categories:
category.name = request.form['name.%d' % category.id]
category.slug = request.form['slug.%d' % category.id]
db_session.commit()
flash(u'Categories updated')
return redirect(url_for('.manage_categories'))
return render_template('snippets/manage_categories.html',
categories=categories)
def storeAssociation(self, server_url, association):
assoc = OpenIDAssociation(
server_url=server_url,
handle=association.handle,
secret=association.secret.encode("base64"),
issued=association.issued,
lifetime=association.lifetime,
assoc_type=association.assoc_type,
)
db_session.add(assoc)
db_session.commit()
def profile():
name = g.user.name
if request.method == 'POST':
name = request.form['name'].strip()
if not name:
flash(u'Error: a name is required')
else:
g.user.name = name
db_session.commit()
flash(u'User profile updated')
return redirect(url_for('.index'))
return render_template('general/profile.html', name=name)
def create_or_login(resp):
session["openid"] = resp.identity_url
user = g.user or User.query.filter_by(openid=resp.identity_url).first()
if user is None:
return redirect(url_for(".first_login", next=oid.get_next_url(), name=resp.fullname or resp.nickname))
if user.openid != resp.identity_url:
user.openid = resp.identity_url
db_session.commit()
flash(u"OpenID identity changed")
else:
flash(u"Successfully signed in")
return redirect(oid.get_next_url())
def profile():
name = g.user.name
if request.method == "POST":
name = request.form["name"].strip()
if not name:
flash(u"Error: a name is required")
else:
g.user.name = name
db_session.commit()
flash(u"User profile updated")
return redirect(url_for(".index"))
return render_template("general/profile.html", name=name)
def profile():
name = g.user.name
if request.method == 'POST':
name = request.form['name'].strip()
if not name:
flash(u'Error: a name is required')
else:
g.user.name = name
db_session.commit()
flash(u'User profile updated')
return redirect(url_for('.index'))
return render_template('general/profile.html', name=name)
def first_login():
if g.user is not None or "openid" not in session:
return redirect(url_for(".login"))
if request.method == "POST":
if "cancel" in request.form:
del session["openid"]
flash(u"Login was aborted")
return redirect(url_for("general.login"))
db_session.add(User(request.form["name"], session["openid"]))
db_session.commit()
flash(u"Successfully created profile and logged in")
return redirect(oid.get_next_url())
return render_template("general/first_login.html", next=oid.get_next_url(), openid=session["openid"])
def useNonce(self, server_url, timestamp, salt):
if abs(timestamp - time()) > nonce.SKEW:
return False
rv = OpenIDUserNonce.query.filter(
(OpenIDUserNonce.server_url == server_url)
& (OpenIDUserNonce.timestamp == timestamp)
& (OpenIDUserNonce.salt == salt)
).first()
if rv is not None:
return False
rv = OpenIDUserNonce(server_url=server_url, timestamp=timestamp, salt=salt)
db_session.add(rv)
db_session.commit()
return True
def show(id):
snippet = Snippet.query.get(id)
if snippet is None:
abort(404)
if request_wants_json():
return jsonify(snippet=snippet.to_json())
if request.method == 'POST':
title = request.form['title']
text = request.form['text']
if text:
db_session.add(Comment(snippet, g.user, title, text))
db_session.commit()
flash(u'Your comment was added')
return redirect(snippet.url)
return render_template('snippets/show.html', snippet=snippet)
def create_or_login(resp):
session['openid'] = resp.identity_url
user = g.user or User.query.filter_by(openid=resp.identity_url).first()
if user is None:
return redirect(
url_for('.first_login',
next=oid.get_next_url(),
name=resp.fullname or resp.nickname))
if user.openid != resp.identity_url:
user.openid = resp.identity_url
db_session.commit()
flash(u'OpenID identity changed')
else:
flash(u'Successfully signed in')
return redirect(oid.get_next_url())
def useNonce(self, server_url, timestamp, salt):
if abs(timestamp - time()) > nonce.SKEW:
return False
rv = OpenIDUserNonce.query.filter(
(OpenIDUserNonce.server_url == server_url)
& (OpenIDUserNonce.timestamp == timestamp)
& (OpenIDUserNonce.salt == salt)).first()
if rv is not None:
return False
rv = OpenIDUserNonce(server_url=server_url,
timestamp=timestamp,
salt=salt)
db_session.add(rv)
db_session.commit()
return True
def first_login():
if g.user is not None or 'openid' not in session:
return redirect(url_for('.login'))
if request.method == 'POST':
if 'cancel' in request.form:
del session['openid']
flash(u'Login was aborted')
return redirect(url_for('general.login'))
db_session.add(User(request.form['name'], session['openid']))
db_session.commit()
flash(u'Successfully created profile and logged in')
return redirect(oid.get_next_url())
return render_template('general/first_login.html',
next=oid.get_next_url(),
openid=session['openid'])
def first_login():
if g.user is not None or 'openid' not in session:
return redirect(url_for('.login'))
if request.method == 'POST':
if 'cancel' in request.form:
del session['openid']
flash(u'Login was aborted')
return redirect(url_for('general.login'))
db_session.add(User(request.form['name'], session['openid']))
db_session.commit()
flash(u'Successfully created profile and logged in')
return redirect(oid.get_next_url())
return render_template('general/first_login.html',
next=oid.get_next_url(),
openid=session['openid'])
def show(id):
snippet = Snippet.query.get(id)
if snippet is None:
abort(404)
if request_wants_json():
return jsonify(snippet=snippet.to_json())
if request.method == 'POST':
title = request.form['title']
text = request.form['text']
if text:
db_session.add(Comment(snippet, g.user, title, text))
db_session.commit()
flash(u'Your comment was added')
return redirect(snippet.url)
return render_template('snippets/show.html', snippet=snippet)
def edit(id):
snippet = Snippet.query.get(id)
if snippet is None:
abort(404)
if g.user is None or (not g.user.is_admin and snippet.author != g.user):
abort(401)
preview = None
form = dict(title=snippet.title,
body=snippet.body,
category=snippet.category.id)
if request.method == 'POST':
form['title'] = request.form['title']
form['body'] = request.form['body']
form['category'] = request.form.get('category', type=int)
if 'preview' in request.form:
preview = format_creole(request.form['body'])
elif 'delete' in request.form:
for comment in snippet.comments:
db_session.delete(comment)
db_session.delete(snippet)
db_session.commit()
flash(u'Your snippet was deleted')
return redirect(url_for('snippets.index'))
else:
category_id = request.form.get('category', type=int)
if not form['body']:
flash(u'Error: you have to enter a snippet')
else:
category = Category.query.get(category_id)
if category is not None:
snippet.title = form['title']
snippet.body = form['body']
snippet.category = category
db_session.commit()
flash(u'Your snippet was modified')
return redirect(snippet.url)
return render_template('snippets/edit.html',
snippet=snippet,
preview=preview,
form=form,
categories=Category.query.order_by(
Category.name).all())
def edit(id):
snippet = Snippet.query.get(id)
if snippet is None:
abort(404)
if g.user is None or (not g.user.is_admin and snippet.author != g.user):
abort(401)
preview = None
form = dict(title=snippet.title, body=snippet.body,
category=snippet.category.id)
if request.method == 'POST':
form['title'] = request.form['title']
form['body'] = request.form['body']
form['category'] = request.form.get('category', type=int)
if 'preview' in request.form:
preview = format_creole(request.form['body'])
elif 'delete' in request.form:
for comment in snippet.comments:
db_session.delete(comment)
db_session.delete(snippet)
db_session.commit()
flash(u'Your snippet was deleted')
return redirect(url_for('snippets.index'))
else:
category_id = request.form.get('category', type=int)
if not form['body']:
flash(u'Error: you have to enter a snippet')
else:
category = Category.query.get(category_id)
if category is not None:
snippet.title = form['title']
snippet.body = form['body']
snippet.category = category
db_session.commit()
flash(u'Your snippet was modified')
return redirect(snippet.url)
return render_template('snippets/edit.html',
snippet=snippet, preview=preview, form=form,
categories=Category.query.order_by(Category.name).all())
def cleanupAssociations(self):
try:
return OpenIDAssociation.query.filter(
OpenIDAssociation.lifetime < int(time())).delete()
finally:
db_session.commit()
def new_category():
category = Category(name=request.form['name'])
db_session.add(category)
db_session.commit()
flash(u'Category %s created.' % category.name)
return redirect(url_for('.manage_categories'))
def new_category():
category = Category(name=request.form['name'])
db_session.add(category)
db_session.commit()
flash(u'Category %s created.' % category.name)
return redirect(url_for('.manage_categories'))
def cleanupNonces(self):
try:
return OpenIDUserNonce.query.filter(OpenIDUserNonce.timestamp <= int(time() - nonce.SKEW)).delete()
finally:
db_session.commit()
def cleanupAssociations(self):
try:
return OpenIDAssociation.query.filter(OpenIDAssociation.lifetime < int(time())).delete()
finally:
db_session.commit()
