app/blueprints/admin/tagseditor.py

   1 # ContentDB
   2 # Copyright (C) 2018  rubenwardy
   3 #
   4 # This program is free software: you can redistribute it and/or modify
   5 # it under the terms of the GNU General Public License as published by
   6 # the Free Software Foundation, either version 3 of the License, or
   7 # (at your option) any later version.
   8 #
   9 # This program is distributed in the hope that it will be useful,
  10 # but WITHOUT ANY WARRANTY; without even the implied warranty of
  11 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12 # GNU General Public License for more details.
  13 #
  14 # You should have received a copy of the GNU General Public License
  15 # along with this program.  If not, see <https://www.gnu.org/licenses/>.
  16
  17
  18 from flask import *
  19 from flask_user import *
  20 from . import bp
  21 from app.models import *
  22 from flask_wtf import FlaskForm
  23 from wtforms import *
  24 from wtforms.validators import *
  25 from app.utils import rank_required
  26
  27 @bp.route("/tags/")
  28 @login_required
  29 def tag_list():
  30         if not Permission.EDIT_TAGS.check(current_user):
  31                 abort(403)
  32
  33         return render_template("admin/tags/list.html", tags=Tag.query.order_by(db.asc(Tag.title)).all())
  34
  35 class TagForm(FlaskForm):
  36         title    = StringField("Title", [InputRequired(), Length(3,100)])
  37         name     = StringField("Name", [Optional(), Length(1, 20), Regexp("^[a-z0-9_]", 0, "Lower case letters (a-z), digits (0-9), and underscores (_) only")])
  38         submit   = SubmitField("Save")
  39
  40 @bp.route("/tags/new/", methods=["GET", "POST"])
  41 @bp.route("/tags/<name>/edit/", methods=["GET", "POST"])
  42 @login_required
  43 def create_edit_tag(name=None):
  44         tag = None
  45         if name is not None:
  46                 tag = Tag.query.filter_by(name=name).first()
  47                 if tag is None:
  48                         abort(404)
  49
  50         if not Permission.checkPerm(current_user, Permission.EDIT_TAGS if tag else Permission.CREATE_TAG):
  51                 abort(403)
  52
  53         form = TagForm(formdata=request.form, obj=tag)
  54         if request.method == "POST" and form.validate():
  55                 if tag is None:
  56                         tag = Tag(form.title.data)
  57                         db.session.add(tag)
  58                 else:
  59                         form.populate_obj(tag)
  60                 db.session.commit()
  61
  62                 if Permission.EDIT_TAGS.check(current_user):
  63                         return redirect(url_for("admin.create_edit_tag", name=tag.name))
  64                 else:
  65                         return redirect(url_for("homepage.home"))
  66
  67         return render_template("admin/tags/edit.html", tag=tag, form=form)