-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathapp.py
127 lines (107 loc) · 4.51 KB
/
app.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
from flask import Flask, render_template, request, redirect, url_for, flash
from config import Config
from flask_sqlalchemy import SQLAlchemy
from flask_login import current_user, login_user, LoginManager, logout_user, login_required
app = Flask(__name__)
app.config.from_object(Config) # loads the configuration for the database
db = SQLAlchemy(app) # creates the db object using the configuration
login = LoginManager(app)
login.login_view = 'login'
from forms import ContactForm, LoginForm, RegistrationForm, ResetPasswordForm
from models import Contact, User
# Error Routes
@app.errorhandler(404)
def page_not_found(e):
return render_template("404.html", user=current_user), 404
@app.errorhandler(500)
def internal_server_error(e):
return render_template("500.html", user=current_user), 500
@app.route('/')
def index():
return render_template("index.html", title="Home", user=current_user)
@app.route('/history')
def history():
return render_template("history.html", title="History of Ngunnawal", user=current_user)
@app.route("/contact", methods=["POST", "GET"])
def contact():
form = ContactForm()
if form.validate_on_submit():
new_contact = Contact(name=form.name.data, email=form.email.data, message=form.message.data)
db.session.add(new_contact)
db.session.commit()
flash("Your message has been sent!")
return redirect(url_for("homepage"))
return render_template("contact.html", title="Contact Us", form=form, user=current_user)
@app.route('/gallery')
def gallery():
return render_template("gallery.html", title="Photo Gallery", user=current_user)
@app.route("/register", methods=["GET", "POST"])
def register():
form = RegistrationForm()
if form.validate_on_submit():
new_user = User(email_address=form.email_address.data, name=form.name.data, user_level=1, active=True) # defaults to regular user
new_user.set_password(form.password.data)
db.session.add(new_user)
db.session.commit()
flash("Successfully registered!")
return redirect(url_for("index"))
return render_template("registration.html", title="User Registration", form=form, user=current_user)
@app.route('/login', methods=["POST", "GET"])
def login():
form = LoginForm()
if form.validate_on_submit():
user = User.query.filter_by(email_address=form.email_address.data).first()
print(user)
if user is not None and user.check_password(form.password.data):
# User has been authenticated
login_user(user)
print("DEBUG: Login Successful")
flash("Success!")
return redirect(url_for("index"))
else:
print("DEBUG: Login Failed")
# Username or password incorrect
flash("Username or passphrase are incorrect.")
return redirect(url_for("login"))
return render_template("login.html", title="Login", form=form, user=current_user)
@app.route('/logout')
def logout():
logout_user()
return redirect(url_for("index"))
@app.route('/passwordreset', methods=['GET', 'POST'])
@login_required
def reset_password():
form = ResetPasswordForm()
if form.validate_on_submit():
user = User.query.filter_by(email_address=current_user.email_address).first()
user.set_password(form.new_password.data)
db.session.commit()
flash("Your password has been changed.")
return redirect(url_for('index'))
return render_template("passwordreset.html", title='Reset Password', form=form, user=current_user)
@app.route('/contact_messages')
@login_required
def view_contact_messages():
if current_user.is_admin():
contact_messages = Contact.query.all()
return render_template("contactMessages.html", title="Contact Messages", user=current_user, messages=contact_messages)
else:
return redirect(url_for("homepage"))
@app.route('/admin/list_all_users')
@login_required
def list_all_users():
if current_user.is_admin():
all_users = User.query.all()
return render_template("listAllUsers.html", title="All Active Users", user=current_user, users=all_users)
else:
flash("You must be an administrator to access this functionality.")
return redirect(url_for("homepage"))
@app.route('/admin/user_enable/<userid>')
@login_required
def user_enable(userid):
user = User.query.filter_by(id=userid).first()
user.active = not user.active
db.session.commit()
return redirect(url_for("list_all_users"))
if __name__ == '__main__':
app.run()