aboutsummaryrefslogtreecommitdiffstats
path: root/famille.py
blob: 4739f25f8df2f86879ad11bc1d927a46c026a3fa (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90

# -*- coding: utf-8 -*-
import sqlite3
#all the imports
from flask import Flask, request, session, g, redirect, url_for, \
	 abort, render_template, flash, _app_ctx_stack
from functools import wraps
import hashlib

# configuration
app = Flask(__name__)
app.config.from_envvar('CONF')

def query_db(query, args=(), one=False):
    cur = g.db.execute(query, args)
    rv = cur.fetchone() if one else cur.fetchall()
    cur.close()
    return rv

@app.before_request
def before_request():
    conn = sqlite3.connect(app.config['DATABASE'])
    conn.row_factory = sqlite3.Row 
    g.db = conn

@app.teardown_appcontext
def close_db_connection(exception):
    """Closes the database again at the end of the request."""
    g.db.close()

def login_required(f):
    @wraps(f)
    def decorated_function(*args, **kwargs):
        if 'name' not in session:
            return redirect(url_for('login', next=request.url))
        return f(*args, **kwargs)
    return decorated_function

@app.route('/')
@login_required
def main():
    return redirect(url_for('list_news'))

@app.route('/news/')
@login_required
def list_news():
    print "toto"
    news = query_db("SELECT * FROM news LEFT JOIN users ON news.user_id = users.id")
    return render_template("news/list.html", news=news)

@app.route('/news/add/', methods=['GET', 'POST'])
@login_required
def add_news():
    if request.method == 'POST':
        cur = g.db.execute("INSERT INTO news ('title', 'content', 'user_id') "
                           "VALUES (?, ?, ?)",
                           (request.form['title'], request.form['content'],
                           session['user_id']))
        news_id = cur.lastrowid
        g.db.commit()
        return redirect(url_for('show_news', news_id=news_id))
    elif request.method == 'GET':
        return render_template("news/add.html")

@app.route('/news/<int:news_id>/')
@login_required
def show_news(news_id):
    news = query_db("SELECT * FROM news LEFT JOIN users ON news.user_id = users.id "
                    "WHERE news.id = ?", (news_id,), True)
    return render_template("news/show.html", news=news)
        
@app.route('/login', methods=['GET', 'POST'])
def login():
    error = None
    if request.method == 'POST':
        username = request.form['username']
        password = hashlib.md5(request.form['password']).hexdigest();
        user = query_db('select * from users where name = ?', (username,), True)
        if user:
            if user['password'] == password:
                session['name'] = user['name']
                session['user_id'] = user['id']
                return redirect(url_for('list_news'))
            else:
                error = u'Mot de passe incorrect'
        else:
            error = u'Utilisateur non enregistré'
    return render_template('login.html', error=error)

if __name__=="__main__":
    app.run()
generated by cgit v1.2.3-70-g09d2 (git 2.52.0) at 2025-12-21 13:27:22 +0000