-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathapp.py
134 lines (116 loc) · 5.02 KB
/
app.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
from flask import Flask, render_template, request, redirect, url_for, flash
from config import Config
from flask_sqlalchemy import SQLAlchemy
from flask_login import current_user, login_user, LoginManager, logout_user, login_required
app = Flask(__name__)
app.config.from_object(Config) # loads the configuration for the database
db = SQLAlchemy(app) # creates the db object using the configuration
login = LoginManager(app)
login.login_view = 'login'
from forms import ContactForm, LoginForm, RegistrationForm, ResetPasswordForm
from models import Contact, User
@app.route('/')
def home(): # put application's code here
return render_template("index.html", title="Homepage", user=current_user)
@app.route('/forums')
def forums(): # put application's code here
return render_template("forums.html", title="TippyTechnologies Forums", user=current_user)
@app.route("/contactus", methods=["POST", "GET"])
def contact():
form = ContactForm()
if form.validate_on_submit():
new_contact = Contact(name=form.name.data, email=form.email.data, message=form.message.data)
db.session.add(new_contact)
db.session.commit()
flash("Your message has been sent to administrators.")
return redirect(url_for("home"))
return render_template("contactus.html", title="Contact Us", form=form, user=current_user)
@app.route("/register", methods=["GET", "POST"])
def register():
form = RegistrationForm()
if form.validate_on_submit():
new_user = User(email_address=form.email_address.data, name=form.name.data, user_level=1, active=True) # defaults to regular user
new_user.set_password(form.password.data)
db.session.add(new_user)
db.session.commit()
return redirect(url_for("home"))
return render_template("registration.html", title="User Registration", form=form, user=current_user)
@app.route('/login', methods=["POST", "GET"])
def login():
form = LoginForm()
if form.validate_on_submit():
user = User.query.filter_by(email_address=form.email_address.data).first()
print(user)
if user is not None and user.check_password(form.password.data):
# User has been authenticated
login_user(user)
print("DEBUG: Login Successful")
return redirect(url_for("home"))
else:
print("DEBUG: Login Failed")
flash("Username or Password incorrect")
return redirect(url_for("login"))
return render_template("login.html", title="Login", form=form, user=current_user)
@app.route('/passwordreset', methods=['GET', 'POST'])
@login_required
def reset_password():
form = ResetPasswordForm()
if form.validate_on_submit():
user = User.query.filter_by(email_address=current_user.email_address).first()
user.set_password(form.new_password.data)
db.session.commit()
flash("Your password has been changed.")
return redirect(url_for("home"))
return render_template("passwordreset.html", title='Reset Password', form=form, user=current_user)
@app.route('/logout')
def logout():
logout_user()
return redirect(url_for("home"))
# Error Handlers
@app.errorhandler(404)
def page_not_found(e):
return render_template("404.html", user=current_user), 404
@app.errorhandler(500)
def internal_server_error(e):
return render_template("500.html", user=current_user), 500
@app.route('/contact_messages')
@login_required
def view_contact_messages():
if current_user.is_admin():
contact_messages = Contact.query.all()
return render_template("contactMessages.html", title="Contact Messages", user=current_user, messages=contact_messages)
else:
return redirect(url_for("homepage"))
@app.route('/admin/list_all_users')
@login_required
def list_all_users():
if current_user.is_admin():
all_users = User.query.all()
return render_template("listAllUsers.html", title="All Active Users", user=current_user, users=all_users)
else:
flash("You must be an administrator to access this functionality.")
return redirect(url_for("homepage"))
@app.route('/reset_password/<userid>', methods=['GET', 'POST'])
@login_required
def reset_user_password(userid):
form = ResetPasswordForm()
user = User.query.filter_by(id=userid).first()
if form.validate_on_submit():
user.set_password(form.new_password.data)
db.session.commit()
flash('Password has been reset for user {}'.format(user.name))
return redirect(url_for('homepage'))
return render_template("passwordreset.html", title='Reset Password', form=form, user=user)
@app.route('/admin/user_enable/<userid>')
@login_required
def user_enable(userid):
if current_user.is_admin():
user = User.query.filter_by(id=userid).first()
user.active = not user.active
db.session.commit()
return redirect(url_for("list_all_users"))
else:
flash("You must be an administrator to access this functionality.")
return redirect(url_for("homepage"))
if __name__ == '__main__':
app.run()