from datetime import datetime from flask import (Blueprint, render_template, redirect, flash, url_for) from flask.ext.babel import gettext, format_timedelta from flask.ext.login import login_required, current_user from werkzeug import generate_password_hash from web.views.common import admin_permission from web.lib.utils import redirect_url from web.controllers import UserController, ArticleController from web.forms import InformationMessageForm, UserForm admin_bp = Blueprint('admin', __name__, url_prefix='/admin') @admin_bp.route('/dashboard', methods=['GET', 'POST']) @login_required @admin_permission.require(http_exception=403) def dashboard(): last_cons, now = {}, datetime.utcnow() users = list(UserController().read().order_by('id')) form = InformationMessageForm() for user in users: last_cons[user.id] = format_timedelta(now - user.last_seen) return render_template('admin/dashboard.html', now=datetime.utcnow(), last_cons=last_cons, users=users, current_user=current_user, form=form) @admin_bp.route('/user/', methods=['GET']) @login_required @admin_permission.require(http_exception=403) def user(user_id=None): """ See information about a user (stations, etc.). """ user = UserController().get(id=user_id) if user is not None: article_contr = ArticleController(user_id) return render_template('/admin/user.html', user=user, feeds=user.feeds, article_count=article_contr.count_by_feed(), unread_article_count=article_contr.count_by_feed(readed=False)) else: flash(gettext('This user does not exist.'), 'danger') return redirect(redirect_url()) @admin_bp.route('/user/create', methods=['GET']) @admin_bp.route('/user/edit/', methods=['GET']) @login_required @admin_permission.require(http_exception=403) def user_form(user_id=None): if user_id is not None: user = UserController().get(id=user_id) form = UserForm(obj=user) message = gettext('Edit the user %(nick)s', nick=user.nickname) else: form = UserForm() message = gettext('Add a new user') return render_template('/admin/create_user.html', form=form, message=message) @admin_bp.route('/user/create', methods=['POST']) @admin_bp.route('/user/edit/', methods=['POST']) @login_required @admin_permission.require(http_exception=403) def process_user_form(user_id=None): """ Create or edit a user. """ form = UserForm() user_contr = UserController() if not form.validate(): return render_template('/admin/create_user.html', form=form, message=gettext('Some errors were found')) if user_id is not None: # Edit a user user_contr.update({'id': user_id}, {'nickname': form.nickname.data, 'email': form.email.data, 'password': form.password.data, 'refresh_rate': form.refresh_rate.data}) user = user_contr.get(id=user_id) flash(gettext('User %(nick)s successfully updated', nick=user.nickname), 'success') else: # Create a new user (by the admin) user = user_contr.create(nickname=form.nickname.data, email=form.email.data, pwdhash=generate_password_hash(form.password.data), is_admin=False, refresh_rate=form.refresh_rate.data) flash(gettext('User %(nick)s successfully created', nick=user.nickname), 'success') return redirect(url_for('admin.user_form', user_id=user.id)) @admin_bp.route('/toggle_user/', methods=['GET']) @login_required @admin_permission.require() def toggle_user(user_id=None): """ Enable or disable the account of a user. """ ucontr = UserController() user = ucontr.get(id=user_id) user_changed = ucontr.update({'id': user_id}, {'is_active': not user.is_active}) if not user_changed: flash(gettext('This user does not exist.'), 'danger') return redirect(url_for('admin.dashboard')) else: act_txt = 'activated' if user.is_active else 'desactivated' message = gettext('User %(login)s successfully %(is_active)s', login=user.login, is_active=act_txt) flash(message, 'success') return redirect(url_for('admin.dashboard'))