83 lines
3.9 KiB
Python
83 lines
3.9 KiB
Python
# -*- coding: utf-8 -*-
|
|
|
|
|
|
from flask import Blueprint, escape, render_template, session, redirect, url_for, request, flash, abort
|
|
import time
|
|
import sqlite3
|
|
from markdown import markdown
|
|
postit = Blueprint('post-it', __name__, template_folder='templates')
|
|
|
|
|
|
@postit.route('/post-it/', methods=['GET', 'POST'])
|
|
def racine_blog():
|
|
if 'username' in session:
|
|
UTILISATEUR='%s'% escape(session['username'])
|
|
if request.method == 'POST':
|
|
title= request.form['title']
|
|
content = markdown(request.form['content'])
|
|
#category = request.form['category']
|
|
status = request.form['status']
|
|
TIME=time.strftime("%A %d %B %Y %H:%M:%S")
|
|
conn = sqlite3.connect('base.db') # Connexion la base de donne
|
|
cursor = conn.cursor() # Création de l'objet "curseur"
|
|
cursor.execute("""INSERT INTO posts(title, content, time, author, status) VALUES(?, ?, ?, ?, ?)""",
|
|
(title, content, TIME, UTILISATEUR, status)) # Insérer des valeurs
|
|
conn.commit()
|
|
cursor.execute("""SELECT title, content, time, author, status, avatar, nom, prenom, age FROM posts INNER JOIN users ON author = name""")
|
|
posts = [dict(title=row[0], content=row[1], time=row[2], author=row[3],
|
|
status=row[4], avatar=row[5], nom=row[6], prenom=row[7], age=row[8])
|
|
for row in reversed(cursor.fetchall())]
|
|
conn.close()
|
|
return render_template('blog.html', posts=posts)
|
|
else:
|
|
conn = sqlite3.connect('base.db') # Connexion à la base de donnée
|
|
cursor = conn.cursor() # Création de l'objet "curseur"
|
|
cursor.execute("""SELECT title, content, time, author, status, avatar, nom, prenom, age FROM posts INNER JOIN users ON author = name""")
|
|
posts = [dict(title=row[0], content=row[1], time=row[2], author=row[3],
|
|
status=row[4], avatar=row[5], nom=row[6], prenom=row[7], age=row[8])
|
|
for row in reversed(cursor.fetchall())]
|
|
conn.close()
|
|
return render_template('blog.html', section='Post-it', posts=posts)
|
|
else:
|
|
return redirect(url_for('loginlogout.login', _external=True))
|
|
|
|
|
|
|
|
@postit.route('/delete/<post>')
|
|
def delete(post):
|
|
if 'username' in session :
|
|
conn = sqlite3.connect('base.db') # Connexion à la base de donnée
|
|
cursor = conn.cursor() # Création de l'objet "curseur"
|
|
cursor.execute("""DELETE FROM posts WHERE title=?""", (post,))
|
|
conn.commit()
|
|
conn.close()
|
|
return redirect(url_for('post-it.racine_blog'))
|
|
else:
|
|
return redirect(url_for('loginlogout.login', _external=True)) # sinon on redirige vers login
|
|
|
|
@postit.route('/edit/<post>', methods=['GET', 'POST'])
|
|
def edit(post):
|
|
if 'username' in session :
|
|
if request.method == 'POST' :
|
|
newtitle = request.form['title']
|
|
newcontent = markdown(request.form['content'])
|
|
newstatus = request.form['status']
|
|
conn = sqlite3.connect('base.db')
|
|
cursor = conn.cursor()
|
|
cursor.execute("""UPDATE posts SET title=?, content=?, status=? WHERE title=?""",
|
|
(newtitle, newcontent, newstatus, post,))
|
|
conn.commit()
|
|
conn.close()
|
|
return redirect(url_for('post-it.racine_blog'))
|
|
else:
|
|
conn = sqlite3.connect('base.db') # Connexion à la base de donnée
|
|
cursor = conn.cursor() # Création de l'objet "curseur"
|
|
cursor.execute("""SELECT title, content FROM posts WHERE title=?""", (post,))
|
|
oldpost = (cursor.fetchone())
|
|
conn.close()
|
|
return render_template('postedit.html',
|
|
section='Post-it',
|
|
oldpost=oldpost)
|
|
else:
|
|
return redirect(url_for('loginlogout.login', _external=True)) # sinon on redirige vers login)
|