admin.py 9.22 KB
Newer Older
1
from flask import Blueprint, redirect, url_for, request, flash, abort, send_file, Response
YSelf Tool's avatar
YSelf Tool committed
2
3
4
from flask.ext.login import login_required
from passlib.hash import pbkdf2_sha256

5
6
from models.database import User, Topic, Event, Speaker, Statement
from models.forms import AdminUserForm, NewUserForm, NewTopicForm, NewEventForm, AddStatementForm
YSelf Tool's avatar
YSelf Tool committed
7

8
9
from shared import db, admin_permission
from utils import render_layout, speaker_by_name_or_number
YSelf Tool's avatar
YSelf Tool committed
10
11
12
13
14
15
16
17
18

admin = Blueprint("admin", __name__)


@admin.route("/")
@login_required
@admin_permission.require()
def index():
    users = User.query.limit(10).all()
Robin Sonnabend's avatar
Robin Sonnabend committed
19
20
    events = Event.query.limit(10).all()
    return render_layout("admin_index.html", users=users, events=events)
YSelf Tool's avatar
YSelf Tool committed
21
22
23
24
25
26

@admin.route("/user/")
@login_required
@admin_permission.require()
def user():
    users = User.query.all()
27
    return render_layout("admin_user_index.html", users=users)
YSelf Tool's avatar
YSelf Tool committed
28
29
30
31
32
33
34
35
36
37
38
39
40
41

@admin.route("/user/edit", methods=["GET", "POST"])
@login_required
@admin_permission.require()
def user_edit():
    user_id = request.args.get("id", None)
    if user_id is not None:
        user = db.session.query(User).filter_by(id=user_id).first()
        form = AdminUserForm(obj=user)
        if form.validate_on_submit():
            form.populate_obj(user)
            db.session.commit()
            return redirect(url_for(".index"))
        else:
42
            return render_layout("admin_user_edit.html", form=form, id=user_id)
YSelf Tool's avatar
YSelf Tool committed
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
    else:
        return redirect(url_for(".index"))
            

@admin.route("/user/delete")
@login_required
@admin_permission.require()
def user_delete():
    user_id = request.args.get("id", None)
    if user_id is not None:
        user = User.query.filter_by(id=user_id).first()
        db.session.delete(user)
        db.session.commit()
        flash("User deleted.", "alert-success")
    return redirect(url_for(".user"))

@admin.route("/user/new", methods=["GET", "POST"])
@login_required
@admin_permission.require()
def user_new():
    form = NewUserForm()
    if form.validate_on_submit():
        password_hash = pbkdf2_sha256.encrypt(form.password.data, rounds=200000, salt_size=16)
        user = User(form.fullname.data, form.username.data, password_hash)
        db.session.add(user)
        db.session.commit()
        return redirect(url_for(".user"))
70
    return render_layout("admin_user_new.html", form=form)
YSelf Tool's avatar
YSelf Tool committed
71

Hinrikus Wolf's avatar
Hinrikus Wolf committed
72
73
74
75
76
77
@admin.route("/event/")
@login_required
@admin_permission.require()
def event():
    events = Event.query.all()
    return render_layout("admin_event_index.html", events=events)
Robin Sonnabend's avatar
Robin Sonnabend committed
78
79
        

80
@admin.route("/event/show")
Robin Sonnabend's avatar
Robin Sonnabend committed
81
82
83
84
85
86
87
@login_required
@admin_permission.require()
def event_show():
    event_id = request.args.get("id", None)
    if event_id is not None:
        event = Event.query.filter_by(id=event_id).first()
        return render_layout("admin_event_show.html", event=event)
88
    return redirect(url_for(".index"))
Hinrikus Wolf's avatar
Hinrikus Wolf committed
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112


@admin.route("/event/new", methods=["GET", "POST"])
@login_required
@admin_permission.require()
def event_new():
    form = NewEventForm()
    if form.validate_on_submit():
        if Topic.query.filter_by(name=form.name.data).count() > 0:
            flash("There already is an event with that name.", "alert-error")
            return render_layout("admin_event_new.html", form=form)
        event = Event(form.name.data)
        db.session.add(event)
        db.session.commit()
        return redirect(url_for(".event"))
    return render_layout("admin_event_new.html", form=form)


@admin.route("/event/delete")
@login_required
@admin_permission.require()
def event_delete():
    event_id = request.args.get("id", None)
    if event_id is not None:
Robin Sonnabend's avatar
Robin Sonnabend committed
113
        event = Event.query.filter_by(id=event_id).first()
Hinrikus Wolf's avatar
Hinrikus Wolf committed
114
115
116
117
118
119
120
121
122
123
124
125
        db.session.delete(event)
        db.session.commit()
        flash("Event deleted.", "alert-success")
    return redirect(url_for(".event"))

@admin.route("/event/edit", methods=["GET", "POST"])
@login_required
@admin_permission.require()
def event_edit():
    event_id = request.args.get("id", None)
    if event_id is not None:
        event = db.session.query(Event).filter_by(id=event_id).first()
Robin Sonnabend's avatar
Robin Sonnabend committed
126
        form = NewEventForm(obj=event)
Hinrikus Wolf's avatar
Hinrikus Wolf committed
127
        if form.validate_on_submit():
Robin Sonnabend's avatar
Robin Sonnabend committed
128
            form.populate_obj(event)
Hinrikus Wolf's avatar
Hinrikus Wolf committed
129
130
131
132
133
134
135
            db.session.commit()
            return redirect(url_for(".index"))
        else:
            return render_layout("admin_event_edit.html", form=form, id=event_id)
    else:
        return redirect(url_for(".index"))

YSelf Tool's avatar
YSelf Tool committed
136

137
138
139
140
141
142
143
144
145
146
147
148
149
@admin.route("/topic/show")
@login_required
@admin_permission.require()
def topic_show():
    topic_id = request.args.get("id", None)
    if topic_id is not None:
        topic = Topic.query.filter_by(id=topic_id).first()
        form = AddStatementForm()
        form.topic.data = topic.id
        return render_layout("admin_topic_show.html", topic=topic, form=form)
    return redirect(url_for(".index"))
        

Hinrikus Wolf's avatar
Hinrikus Wolf committed
150
@admin.route("/topic/new", methods=["GET", "POST"])
YSelf Tool's avatar
YSelf Tool committed
151
152
@login_required
@admin_permission.require()
Hinrikus Wolf's avatar
Hinrikus Wolf committed
153
154
def topic_new():
    form = NewTopicForm()
YSelf Tool's avatar
YSelf Tool committed
155
    if form.validate_on_submit():
Hinrikus Wolf's avatar
Hinrikus Wolf committed
156
157
158
        if Topic.query.filter_by(name=form.name.data).count() > 0:
            flash("There already is an topic with that name.", "alert-error")
            return render_layout("admin_topic_new.html", form=form)
Hinrikus Wolf's avatar
Hinrikus Wolf committed
159
        topic = Topic(form.name.data, form.mode.data, form.event_id.data)
Hinrikus Wolf's avatar
Hinrikus Wolf committed
160
        db.session.add(topic)
YSelf Tool's avatar
YSelf Tool committed
161
        db.session.commit()
Hinrikus Wolf's avatar
Hinrikus Wolf committed
162
        return redirect(url_for(".topic"))
Robin Sonnabend's avatar
Robin Sonnabend committed
163
164
165
166
    event_id = request.args.get("event_id", None)
    if event_id is None:
        return redirect(url_for(".index"))
    form.event_id.data = event_id
Hinrikus Wolf's avatar
Hinrikus Wolf committed
167
    return render_layout("admin_topic_new.html", form=form)
YSelf Tool's avatar
YSelf Tool committed
168

Hinrikus Wolf's avatar
Hinrikus Wolf committed
169
@admin.route("/topic/delete")
YSelf Tool's avatar
YSelf Tool committed
170
171
@login_required
@admin_permission.require()
Hinrikus Wolf's avatar
Hinrikus Wolf committed
172
def topic_delete():
Hinrikus Wolf's avatar
Hinrikus Wolf committed
173
174
175
176
    topic_id = request.args.get("id", None)
    if topic_id is not None:
        topic  = Topic.query.filter_by(id=topic_id).first()
        db.session.delete(topic)
YSelf Tool's avatar
YSelf Tool committed
177
        db.session.commit()
Hinrikus Wolf's avatar
Hinrikus Wolf committed
178
179
        flash("Topic deleted.", "alert-success")
    return redirect(url_for(".topic"))
YSelf Tool's avatar
YSelf Tool committed
180

Hinrikus Wolf's avatar
Hinrikus Wolf committed
181
@admin.route("/topic/edit", methods=["GET", "POST"])
YSelf Tool's avatar
YSelf Tool committed
182
183
@login_required
@admin_permission.require()
Hinrikus Wolf's avatar
Hinrikus Wolf committed
184
185
186
187
188
def topic_edit():
    topic_id = request.args.get("id", None)
    if topic_id is not None:
        topic = db.session.query(Topic).filter_by(id=topic_id).first()
        form = NewTopicForm(obj=topic)
YSelf Tool's avatar
YSelf Tool committed
189
        if form.validate_on_submit():
Hinrikus Wolf's avatar
Hinrikus Wolf committed
190
            form.populate_obj(topic)
YSelf Tool's avatar
YSelf Tool committed
191
192
193
            db.session.commit()
            return redirect(url_for(".index"))
        else:
Hinrikus Wolf's avatar
Hinrikus Wolf committed
194
            return render_layout("admin_topic_edit.html", form=form, id=topic_id)
YSelf Tool's avatar
YSelf Tool committed
195
196
197
    else:
        return redirect(url_for(".index"))

Hinrikus Wolf's avatar
Hinrikus Wolf committed
198
@admin.route("/topic/")
YSelf Tool's avatar
YSelf Tool committed
199
200
@login_required
@admin_permission.require()
Hinrikus Wolf's avatar
Hinrikus Wolf committed
201
202
203
def topic():
    topics = Topic.query.all()
    return render_layout("admin_topic_index.html", topics=topics)
204
205


Hinrikus Wolf's avatar
Hinrikus Wolf committed
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
@admin.route("/speaker/rename", methods=["GET", "POST"])
@login_required
@admin_permission.require()
def rename():
    #speaker = Speaker.query.filter_by(number=number,event).first()
    #if speaker is not None:
    
    form = AddNameToSpeaker(obj=speaker)
    speaker = Speaker.query.filter_by(number=form.number.data, event_id=form.event_id.data).first()      
    if speaker is not None:
        if form.validate_on_submit():
            speaker.name = form.speaker_name.data
            db.session.commit()
            return redirect(url_for(".topic_show",id=form.topic_id.data))
    else:
        return redirect(url_for(".index"))
    
        
    
        
        
    


230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
@admin.route("/statement/")
@login_required
@admin_permission.require()
def statement():
    statements = Statement.query.all()
    return render_layout("admin_statement_index.html", statement=statement)

@admin.route("/statement/new", methods=["GET", "POST"])
@login_required
@admin_permission.require()
def statement_new():
    form = AddStatementForm()
    if form.validate_on_submit():
        topic = Topic.query.filter_by(id=form.topic.data).first()
        speaker = speaker_by_name_or_number(form.speaker_name.data, topic.event.id)
        if topic is not None and speaker is not None:
            if speaker.count_active(topic) == 0:
                statement = Statement(speaker.id, topic.id)
                db.session.add(statement)
                db.session.commit()
            return redirect(url_for(".topic_show", id=topic.id))
    return render_layout("admin_statement_new.html", form=form)

@admin.route("/statement/done")
@login_required
@admin_permission.require()
def statement_done():
    statement_id = request.args.get("id", None)
    if statement_id is not None:
        statement = Statement.query.filter_by(id=statement_id).first()
        if statement is not None:
            statement.done()
            db.session.commit()
    topic_id = request.args.get("topic_id", None)
    if topic_id is not None:
        return redirect(url_for(".topic_show", id=topic_id))
    return redirect(url_for(".index"))

@admin.route("/statement/delete")
@login_required
@admin_permission.require()
def statement_delete():
    statement_id = request.args.get("id", None)
    if statement_id is not None:
        statement = Statement.query.filter_by(id=statement_id).first()
        if statement is not None:
            db.session.delete(statement)
            db.session.commit()
    topic_id = request.args.get("topic_id", None)
    if topic_id is not None:
        return redirect(url_for(".topic_show", id=topic_id))
    return redirect(url_for(".index"))