lucaspalomodevelop/eventcally
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/eventcally.git synced 2026-03-13 00:07:22 +00:00
Code Issues Packages Projects Releases Wiki Activity
eventcally/project/views/admin_unit_member.py
Daniel Grams be86363dc4 Update admin member of self #460
2023-05-04 13:41:27 +02:00

89 lines
3.1 KiB
Python
Raw Blame History

from flask import flash, redirect, render_template, url_for
from flask_babel import gettext
from flask_security import auth_required, current_user
from sqlalchemy.exc import SQLAlchemyError
from project import app, db
from project.access import has_access
from project.forms.admin_unit_member import (
DeleteAdminUnitMemberForm,
UpdateAdminUnitMemberForm,
)
from project.models import AdminUnitMember, AdminUnitMemberRole
from project.services.admin_unit import add_roles_to_admin_unit_member
from project.views.utils import (
flash_errors,
handleSqlError,
non_match_for_deletion,
permission_missing,
)
@app.route("/manage/member/<int:id>/update", methods=("GET", "POST"))
@auth_required()
def manage_admin_unit_member_update(id):
member = AdminUnitMember.query.get_or_404(id)
admin_unit = member.adminunit
if not has_access(admin_unit, "admin_unit.members:update"):
return permission_missing(url_for("manage_admin_unit", id=admin_unit.id))
form = UpdateAdminUnitMemberForm()
form.roles.choices = [
(c.name, gettext(c.title))
for c in AdminUnitMemberRole.query.order_by(AdminUnitMemberRole.id).all()
]
if form.validate_on_submit():
member.roles.clear()
add_roles_to_admin_unit_member(member, form.roles.data)
if member.user_id == current_user.id and not current_user.has_role("admin"):
add_roles_to_admin_unit_member(member, ["admin"])
try:
db.session.commit()
flash(gettext("Member successfully updated"), "success")
return redirect(url_for("manage_admin_unit_members", id=admin_unit.id))
except SQLAlchemyError as e:
db.session.rollback()
flash(handleSqlError(e), "danger")
else:
form.roles.data = [c.name for c in member.roles]
return render_template(
"admin_unit/update_member.html", admin_unit=admin_unit, member=member, form=form
)
@app.route("/manage/member/<int:id>/delete", methods=("GET", "POST"))
@auth_required()
def manage_admin_unit_member_delete(id):
member = AdminUnitMember.query.get_or_404(id)
admin_unit = member.adminunit
if member.user_id == current_user.id:
return redirect(url_for("manage_admin_unit_delete_membership", id=id))
if not has_access(admin_unit, "admin_unit.members:delete"): # pragma: no cover
return permission_missing(url_for("manage_admin_unit", id=admin_unit.id))
form = DeleteAdminUnitMemberForm()
if form.validate_on_submit():
if non_match_for_deletion(form.email.data, member.user.email):
flash(gettext("Entered email does not match member email"), "danger")
else:
try:
db.session.delete(member)
db.session.commit()
flash(gettext("Member successfully deleted"), "success")
return redirect(url_for("manage_admin_unit_members", id=admin_unit.id))
except SQLAlchemyError as e:
db.session.rollback()
flash(handleSqlError(e), "danger")
else:
flash_errors(form)
return render_template("manage/delete_member.html", form=form, member=member)
Reference in New Issue View Git Blame Copy Permalink