import functools from flask import Flask, g, render_template, request, redirect, session import db import model app = Flask(__name__) app.secret_key = 'THIS IS A TEST KEY' ROLES = { '123': 'readonly', '1234': 'editor' } @app.cli.command('initdb') def init_db_command(): """Initializes the database.""" db.init_db() @app.teardown_appcontext def close_connection(exception): db = getattr(g, '_database', None) if db is not None: db.close() def set_user_role(data): """Set the users role in the flask g object for later usage""" g.is_editor = data == 'editor' def authorize(func): @functools.wraps(func) def wrapper(*args, **kwargs): try: set_user_role(session['role']) except KeyError: return redirect('/login') return func(*args, **kwargs) return wrapper @app.route('/login', methods=['GET', 'POST']) def login(): if request.method == 'GET': return render_template('login.html') else: try: password = request.form['password'] session['role'] = ROLES[password] return redirect('/') except KeyError: return redirect('login') @app.route('/logout') def logout(): session.pop('role', None) return redirect('login') @app.route('/') @authorize def landing(): if 'editor' in session['role']: print('editor') else: print('not editor') return render_template('seasons.html') @app.route('/seasons') @authorize def seasons(): return render_template('seasons.html') @app.route('/newplayer', methods=['GET']) @authorize def new_player(): return render_template('editplayer.html', model={}) @app.route('/saveplayer', methods=['POST']) @authorize def update_player(): data = request.form player = model.Player( id=data.get('id', None), real_name=data['real_name'], alias=data['alias'], hex_id=data['hex_id'], anon=data.get('anon', False)) res = db.save_player(player) return redirect('/players') @app.route('/players') @authorize def players(): loaded = db.load_players() model = { 'player_list': loaded, 'columns': [('id', 'ID'), ('name', 'Player Name'), ('alias', 'Alias'), ('hex_id', 'Hex ID')], 'controls': [('edit', 'Edit')] } return render_template('players.html', model=model) @app.route('/players/', methods=['GET']) @authorize def edit_player(id: int): loaded = db.load_players(id)[0] return render_template('editplayer.html', model=loaded) @app.route('/drinks') @authorize def drinks(): loaded = db.load_drinks() model = { 'drinks': loaded, 'columns': [ ('id', 'ID'), ('name', 'Drink Name'), ('vol', 'Alcohol %') ], 'controls': [('edit', 'Edit')] } return render_template('drinks.html', model=model) @app.route('/drinks/', methods=['GET']) @authorize def show_drink(id: int): loaded = db.load_drinks(id)[0] return render_template('editdrink.html', model=loaded) @app.route('/newdrink', methods=['GET']) @authorize def new_drink(): return render_template('editdrink.html', model={}) @app.route('/savedrink', methods=['POST']) @authorize def save_drink(): drink = model.Drink.from_form(request.form) res = db.save_drink(drink) return redirect('/drinks') @app.route('/enemies') @authorize def enemies(): loaded = db.load_enemies() model = { 'enemies': loaded, 'columns': [ ('id', 'ID'), ('name', 'Enemy Name'), ('vol', 'Is Boss') ], 'controls': [('edit', 'Edit')] } return render_template('enemies.html', model=model) if __name__ == '__main__': app.run()