| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 |
- #!/usr/bin/env python
- # -*- coding: utf-8 -*-
- from flask import Flask, request, session, g, redirect, url_for, abort, \
- render_template, flash
- import sqlite3
- from datetime import date
- DATABASE = '/tmp/cavote.db'
- SECRET_KEY = '{J@uRKO,xO-PK7B,jF?>iHbxLasF9s#zjOoy=+:'
- DEBUG = True
- USERNAME = 'admin'
- PASSWORD = 'admin'
- app = Flask(__name__)
- app.config.from_object(__name__)
- def connect_db():
- return sqlite3.connect(app.config['DATABASE'])
- @app.before_request
- def before_request():
- g.db = connect_db()
- @app.teardown_request
- def teardown_request(exception):
- g.db.close()
- @app.route('/admin/votes')
- def show_votes():
- cur = g.db.execute('select title, description from votes order by id desc')
- votes = [dict(title=row[0], description=row[1]) for row in cur.fetchall()]
- return render_template('show_votes.html', votes=votes)
- @app.route('/admin/vote/add', methods=['POST'])
- def add_vote():
- if not session.get('logged_in'):
- abort(401)
- g.db.execute('insert into votes (title, description) values (?, ?)',
- [request.form['title'], request.form['description']])
- g.db.commit()
- flash('New entry was successfully posted')
- return redirect(url_for('show_votes'))
- @app.route('/login', methods=['GET', 'POST'])
- def login():
- error = None
- if request.method == 'POST':
- if request.form['username'] != app.config['USERNAME']:
- error = 'Invalid username'
- elif request.form['password'] != app.config['PASSWORD']:
- error = 'Invalid password'
- else:
- session['logged_in'] = True
- flash('You were logged in')
- return redirect(url_for('show_votes'))
- return render_template('login.html', error=error)
- @app.route('/logout')
- def logout():
- session.pop('logged_in', None)
- flash('You were logged out')
- return redirect(url_for('show_votes'))
- if __name__ == '__main__':
- app.run()
|
