#!/usr/bin/env python # -*- coding: utf-8 -*- from flask import Flask, request, session, g, redirect, url_for, abort, \ render_template, flash import sqlite3 from datetime import date, timedelta import locale locale.setlocale(locale.LC_ALL, '') DATABASE = '/tmp/cavote.db' SECRET_KEY = '{J@uRKO,xO-PK7B,jF?>iHbxLasF9s#zjOoy=+:' DEBUG = True USERNAME = 'admin' PASSWORD = 'admin' app = Flask(__name__) app.config.from_object(__name__) def connect_db(): return sqlite3.connect(app.config['DATABASE']) @app.before_request def before_request(): g.db = connect_db() @app.teardown_request def teardown_request(exception): g.db.close() @app.route('/admin/votes') def show_votes(): cur = g.db.execute('select title, description, date from votes order by id desc') votes = [dict(title=row[0], description=row[1], date=row[2]) for row in cur.fetchall()] return render_template('show_votes.html', votes=votes) @app.route('/admin/vote/add', methods=['POST']) def add_vote(): if not session.get('logged_in'): abort(401) daten = date.today() + timedelta(days=60) ndate = daten.strftime('%d %B %Y') g.db.execute('insert into votes (title, description, date) values (?, ?, ?)', [request.form['title'], request.form['description'], ndate]) g.db.commit() flash('New entry was successfully posted') return redirect(url_for('show_votes')) @app.route('/login', methods=['GET', 'POST']) def login(): error = None if request.method == 'POST': if request.form['username'] != app.config['USERNAME']: error = 'Invalid username' elif request.form['password'] != app.config['PASSWORD']: error = 'Invalid password' else: session['logged_in'] = True flash('You were logged in') return redirect(url_for('show_votes')) return render_template('login.html', error=error) @app.route('/logout') def logout(): session.pop('logged_in', None) flash('You were logged out') return redirect(url_for('show_votes')) if __name__ == '__main__': app.run()