todo.sr.ht/todosrht/blueprints/html.py

from flask import Blueprint, render_template, request, abort
from todosrht.access import get_tracker, get_access
from todosrht.tickets import get_participant_for_user
from todosrht.types import Tracker, Ticket, Event, EventNotification, EventType
from todosrht.types import User, Participant
from srht.config import cfg
from srht.oauth import current_user
from srht.flask import paginate_query, session
from sqlalchemy import and_, or_

html = Blueprint('html', __name__)

def filter_authorized_events(events):
    events = (events
        .join(Ticket, Ticket.id == Event.ticket_id)
        .join(Tracker, Tracker.id == Ticket.tracker_id))
    if current_user:
        participant = get_participant_for_user(current_user)
        events = (events.filter(
            or_(
                and_(
                    Ticket.submitter_perms != None,
                    Ticket.submitter_id == participant.id,
                    Ticket.submitter_perms > 0),
                and_(
                    Ticket.user_perms != None,
                    Ticket.user_perms > 0),
                and_(
                    Ticket.anonymous_perms != None,
                    Ticket.anonymous_perms > 0),
                and_(
                    Ticket.submitter_perms == None,
                    Ticket.submitter_id == participant.id,
                    Tracker.default_submitter_perms > 0),
                and_(
                    Ticket.user_perms == None,
                    Tracker.default_user_perms > 0),
                and_(
                    Ticket.anonymous_perms == None,
                    Tracker.default_anonymous_perms > 0))))
    else:
        events = (events.filter(
            or_(
                and_(
                    Ticket.anonymous_perms != None,
                    Ticket.anonymous_perms > 0),
                and_(
                    Ticket.anonymous_perms == None,
                    Tracker.default_anonymous_perms > 0))))
    return events

@html.route("/")
def index():
    if not current_user:
        return render_template("index.html")
    trackers = (Tracker.query
        .filter(Tracker.owner_id == current_user.id)
        .order_by(Tracker.updated.desc())
    )
    limit_trackers = 10
    total_trackers = trackers.count()
    trackers = trackers.limit(limit_trackers).all()

    events = (Event.query
            .join(EventNotification)
            .filter(EventNotification.user_id == current_user.id)
            .order_by(Event.created.desc()))
    events = events.limit(10).all()

    notice = session.get("notice")
    if notice:
        del session["notice"]

    return render_template("dashboard.html",
        trackers=trackers, notice=notice,
        tracker_list_msg="Your Trackers",
        more_trackers=total_trackers > limit_trackers,
        events=events, EventType=EventType)

@html.route("/~<username>")
def user_GET(username):
    user = User.query.filter(User.username == username.lower()).first()
    if not user:
        abort(404)

    trackers = Tracker.query.filter(Tracker.owner_id == user.id)
    if current_user and current_user != user:
        trackers = trackers.filter(Tracker.default_user_perms > 0)
    elif not current_user:
        trackers = trackers.filter(Tracker.default_anonymous_perms > 0)
    limit_trackers = 10
    total_trackers = trackers.count()
    trackers = (trackers
        .order_by(Tracker.updated.desc())
        .limit(limit_trackers)
    ).all()

    # TODO: Join on stuff the user has explicitly been granted access to
    events = (Event.query
            .join(Participant, Event.participant_id == Participant.id)
            .filter(Participant.user_id == user.id)
            .order_by(Event.created.desc()))
    if not current_user or current_user.id != user.id:
        events = filter_authorized_events(events)
    events = events.limit(10).all()

    return render_template("dashboard.html",
        user=user,
        trackers=trackers,
        tracker_list_msg="Trackers",
        more_trackers=total_trackers > limit_trackers,
        events=events,
        EventType=EventType)

@html.route("/trackers/~<username>")
def trackers_for_user(username):
    user = User.query.filter(User.username == username.lower()).first()
    if not user:
        abort(404)

    trackers = Tracker.query.filter(Tracker.owner_id == user.id)
    if current_user and current_user != user:
        trackers = trackers.filter(Tracker.default_user_perms > 0)
    elif not current_user:
        trackers = trackers.filter(Tracker.default_anonymous_perms > 0)

    search = request.args.get("search")
    if search:
        trackers = trackers.filter(or_(
            Tracker.name.ilike("%" + search + "%"),
            Tracker.description.ilike("%" + search + "%")))

    trackers = trackers.order_by(Tracker.updated.desc())
    trackers, pagination = paginate_query(trackers)

    return render_template("trackers.html",
            user=user, trackers=trackers, search=search, **pagination)
Use srht.flask.session instead of flask.session 2019-07-12 20:13:40 +02:00			`from flask import Blueprint, render_template, request, abort`
Filter private events from events feed 2018-06-23 21:38:46 +02:00			`from todosrht.access import get_tracker, get_access`
Generalize users into participants 2019-08-21 08:35:44 +02:00			`from todosrht.tickets import get_participant_for_user`
Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`from todosrht.types import Tracker, Ticket, Event, EventNotification, EventType`
Generalize users into participants 2019-08-21 08:35:44 +02:00			`from todosrht.types import User, Participant`
Add profile info to user pages 2017-11-10 04:29:34 +01:00			`from srht.config import cfg`
Updates for single-sign-on support 2019-11-30 16:17:42 +01:00			`from srht.oauth import current_user`
Use srht.flask.session instead of flask.session 2019-07-12 20:13:40 +02:00			`from srht.flask import paginate_query, session`
Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`from sqlalchemy import and_, or_`
Initial commit 2017-07-22 03:00:00 +02:00
			`html = Blueprint('html', __name__)`

Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`def filter_authorized_events(events):`
			`events = (events`
			`.join(Ticket, Ticket.id == Event.ticket_id)`
			`.join(Tracker, Tracker.id == Ticket.tracker_id))`
			`if current_user:`
Generalize users into participants 2019-08-21 08:35:44 +02:00			`participant = get_participant_for_user(current_user)`
Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`events = (events.filter(`
			`or_(`
			`and_(`
			`Ticket.submitter_perms != None,`
Generalize users into participants 2019-08-21 08:35:44 +02:00			`Ticket.submitter_id == participant.id,`
Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`Ticket.submitter_perms > 0),`
			`and_(`
			`Ticket.user_perms != None,`
			`Ticket.user_perms > 0),`
			`and_(`
			`Ticket.anonymous_perms != None,`
			`Ticket.anonymous_perms > 0),`
			`and_(`
			`Ticket.submitter_perms == None,`
Generalize users into participants 2019-08-21 08:35:44 +02:00			`Ticket.submitter_id == participant.id,`
Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`Tracker.default_submitter_perms > 0),`
			`and_(`
			`Ticket.user_perms == None,`
			`Tracker.default_user_perms > 0),`
			`and_(`
			`Ticket.anonymous_perms == None,`
			`Tracker.default_anonymous_perms > 0))))`
			`else:`
			`events = (events.filter(`
			`or_(`
			`and_(`
			`Ticket.anonymous_perms != None,`
			`Ticket.anonymous_perms > 0),`
			`and_(`
			`Ticket.anonymous_perms == None,`
			`Tracker.default_anonymous_perms > 0))))`
Filter private events from events feed 2018-06-23 21:38:46 +02:00			`return events`

Initial commit 2017-07-22 03:00:00 +02:00			`@html.route("/")`
			`def index():`
Implement initial dashboard 2017-11-09 14:59:47 +01:00			`if not current_user:`
			`return render_template("index.html")`
Add profile info to user pages 2017-11-10 04:29:34 +01:00			`trackers = (Tracker.query`
Add repo list page and search 2018-07-11 14:21:20 +02:00			`.filter(Tracker.owner_id == current_user.id)`
			`.order_by(Tracker.updated.desc())`
			`)`
Show more trackers on the dashboard & user pages 2019-03-28 02:24:27 +01:00			`limit_trackers = 10`
Add repo list page and search 2018-07-11 14:21:20 +02:00			`total_trackers = trackers.count()`
			`trackers = trackers.limit(limit_trackers).all()`

Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`events = (Event.query`
			`.join(EventNotification)`
			`.filter(EventNotification.user_id == current_user.id)`
			`.order_by(Event.created.desc()))`
			`events = events.limit(10).all()`
Add repo list page and search 2018-07-11 14:21:20 +02:00
Implement tracker deletion 2018-12-13 04:48:43 +01:00			`notice = session.get("notice")`
			`if notice:`
			`del session["notice"]`

Implement initial dashboard 2017-11-09 14:59:47 +01:00			`return render_template("dashboard.html",`
Implement tracker deletion 2018-12-13 04:48:43 +01:00			`trackers=trackers, notice=notice,`
Filter private events from events feed 2018-06-23 21:38:46 +02:00			`tracker_list_msg="Your Trackers",`
Add repo list page and search 2018-07-11 14:21:20 +02:00			`more_trackers=total_trackers > limit_trackers,`
Implement tracker deletion 2018-12-13 04:48:43 +01:00			`events=events, EventType=EventType)`
Add user trackers page 2017-11-10 04:23:02 +01:00
			`@html.route("/~<username>")`
			`def user_GET(username):`
			`user = User.query.filter(User.username == username.lower()).first()`
			`if not user:`
			`abort(404)`
Order trackers by updated 2018-07-11 14:02:48 +02:00
Add repo list page and search 2018-07-11 14:21:20 +02:00			`trackers = Tracker.query.filter(Tracker.owner_id == user.id)`
			`if current_user and current_user != user:`
			`trackers = trackers.filter(Tracker.default_user_perms > 0)`
			`elif not current_user:`
			`trackers = trackers.filter(Tracker.default_anonymous_perms > 0)`
Show more trackers on the dashboard & user pages 2019-03-28 02:24:27 +01:00			`limit_trackers = 10`
Add repo list page and search 2018-07-11 14:21:20 +02:00			`total_trackers = trackers.count()`
			`trackers = (trackers`
			`.order_by(Tracker.updated.desc())`
			`.limit(limit_trackers)`
			`).all()`

Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`# TODO: Join on stuff the user has explicitly been granted access to`
			`events = (Event.query`
Generalize users into participants 2019-08-21 08:35:44 +02:00			`.join(Participant, Event.participant_id == Participant.id)`
			`.filter(Participant.user_id == user.id)`
Improve event lists on user and index pages 2018-08-21 01:21:33 +02:00			`.order_by(Event.created.desc()))`
			`if not current_user or current_user.id != user.id:`
			`events = filter_authorized_events(events)`
			`events = events.limit(10).all()`
Order trackers by updated 2018-07-11 14:02:48 +02:00
Add user trackers page 2017-11-10 04:23:02 +01:00			`return render_template("dashboard.html",`
Filter private events from events feed 2018-06-23 21:38:46 +02:00			`user=user,`
			`trackers=trackers,`
			`tracker_list_msg="Trackers",`
Add repo list page and search 2018-07-11 14:21:20 +02:00			`more_trackers=total_trackers > limit_trackers,`
Filter private events from events feed 2018-06-23 21:38:46 +02:00			`events=events,`
			`EventType=EventType)`
Add repo list page and search 2018-07-11 14:21:20 +02:00
			`@html.route("/trackers/~<username>")`
			`def trackers_for_user(username):`
			`user = User.query.filter(User.username == username.lower()).first()`
			`if not user:`
			`abort(404)`

			`trackers = Tracker.query.filter(Tracker.owner_id == user.id)`
			`if current_user and current_user != user:`
			`trackers = trackers.filter(Tracker.default_user_perms > 0)`
			`elif not current_user:`
			`trackers = trackers.filter(Tracker.default_anonymous_perms > 0)`

			`search = request.args.get("search")`
			`if search:`
			`trackers = trackers.filter(or_(`
			`Tracker.name.ilike("%" + search + "%"),`
			`Tracker.description.ilike("%" + search + "%")))`

			`trackers = trackers.order_by(Tracker.updated.desc())`
			`trackers, pagination = paginate_query(trackers)`

			`return render_template("trackers.html",`
Source user profile info from database 2019-02-13 20:14:00 +01:00			`user=user, trackers=trackers, search=search, **pagination)`