flask/examples/flaskr/flaskr.py

# -*- coding: utf-8 -*-
"""
    Flaskr
    ~~~~~~

    A microblog example application written as Flask tutorial with
    Flask and sqlite3.

    :copyright: (c) 2014 by Armin Ronacher.
    :license: BSD, see LICENSE for more details.
"""

import os
from sqlite3 import dbapi2 as sqlite3
from flask import Flask, request, session, g, redirect, url_for, abort, \
     render_template, flash


# create our little application :)
app = Flask(__name__)

# Load default config and override config from an environment variable
app.config.update(dict(
    DATABASE=os.path.join(app.root_path, 'flaskr.db'),
    DEBUG=True,
    SECRET_KEY='development key',
    USERNAME='admin',
    PASSWORD='default'
))
app.config.from_envvar('FLASKR_SETTINGS', silent=True)


def connect_db():
    """Connects to the specific database."""
    rv = sqlite3.connect(app.config['DATABASE'])
    rv.row_factory = sqlite3.Row
    return rv


def init_db():
    """Initializes the database."""
    db = get_db()
    with app.open_resource('schema.sql', mode='r') as f:
        db.cursor().executescript(f.read())
    db.commit()


@app.cli.command('initdb')
def initdb_command():
    """Creates the database tables."""
    init_db()
    print('Initialized the database.')


def get_db():
    """Opens a new database connection if there is none yet for the
    current application context.
    """
    if not hasattr(g, 'sqlite_db'):
        g.sqlite_db = connect_db()
    return g.sqlite_db


@app.teardown_appcontext
def close_db(error):
    """Closes the database again at the end of the request."""
    if hasattr(g, 'sqlite_db'):
        g.sqlite_db.close()


@app.route('/')
def show_entries():
    db = get_db()
    cur = db.execute('select title, text from entries order by id desc')
    entries = cur.fetchall()
    return render_template('show_entries.html', entries=entries)


@app.route('/add', methods=['POST'])
def add_entry():
    if not session.get('logged_in'):
        abort(401)
    db = get_db()
    db.execute('insert into entries (title, text) values (?, ?)',
               [request.form['title'], request.form['text']])
    db.commit()
    flash('New entry was successfully posted')
    return redirect(url_for('show_entries'))


@app.route('/login', methods=['GET', 'POST'])
def login():
    error = None
    if request.method == 'POST':
        if request.form['username'] != app.config['USERNAME']:
            error = 'Invalid username'
        elif request.form['password'] != app.config['PASSWORD']:
            error = 'Invalid password'
        else:
            session['logged_in'] = True
            flash('You were logged in')
            return redirect(url_for('show_entries'))
    return render_template('login.html', error=error)


@app.route('/logout')
def logout():
    session.pop('logged_in', None)
    flash('You were logged out')
    return redirect(url_for('show_entries'))
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00			`# -- coding: utf-8 --`
			`"""`
			`Flaskr`
			`~~~~~~`

			`A microblog example application written as Flask tutorial with`
			`Flask and sqlite3.`

Happy New Year 2014 2014-01-03 02:21:07 +08:00			`:copyright: (c) 2014 by Armin Ronacher.`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00			`:license: BSD, see LICENSE for more details.`
			`"""`
ported some more stuff to py 3.3 removed init_jinja_globals hack from app.py after consulting mitsuhiko (didn't work on py 3.3 "as is") removed with_statement future imports, not needed any more needs more work on 2.7 as well as on 3.3 2013-05-22 07:33:04 +08:00
Switch away from /tmp for windows users 2014-02-09 06:07:13 +08:00			`import os`
Updated examples to work with pypy which has a incomplete sqlite3 in 1.4. Also disable a euc-kr test that does not work on pypy 2010-12-02 00:22:55 +08:00			`from sqlite3 import dbapi2 as sqlite3`
Rewrote tutorial to use the g based appcontext object 2013-09-01 03:32:41 +08:00			`from flask import Flask, request, session, g, redirect, url_for, abort, \`
			`render_template, flash`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00

			`# create our little application :)`
			`app = Flask(__name__)`
Rewrote tutorial to use the g based appcontext object 2013-09-01 03:32:41 +08:00
			`# Load default config and override config from an environment variable`
			`app.config.update(dict(`
Switch away from /tmp for windows users 2014-02-09 06:07:13 +08:00			`DATABASE=os.path.join(app.root_path, 'flaskr.db'),`
Rewrote tutorial to use the g based appcontext object 2013-09-01 03:32:41 +08:00			`DEBUG=True,`
			`SECRET_KEY='development key',`
			`USERNAME='admin',`
			`PASSWORD='default'`
			`))`
Ported examples over to new config. documented upgrading 2010-05-28 03:17:25 +08:00			`app.config.from_envvar('FLASKR_SETTINGS', silent=True)`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00

Rewrote tutorial to use the g based appcontext object 2013-09-01 03:32:41 +08:00			`def connect_db():`
			`"""Connects to the specific database."""`
			`rv = sqlite3.connect(app.config['DATABASE'])`
			`rv.row_factory = sqlite3.Row`
			`return rv`


Fixed flask tests 2014-05-02 18:46:04 +08:00			`def init_db():`
			`"""Initializes the database."""`
Updated tutorial to the flask script 2014-04-28 21:18:27 +08:00			`db = get_db()`
			`with app.open_resource('schema.sql', mode='r') as f:`
			`db.cursor().executescript(f.read())`
			`db.commit()`
Fixed flask tests 2014-05-02 18:46:04 +08:00

			`@app.cli.command('initdb')`
			`def initdb_command():`
			`"""Creates the database tables."""`
			`init_db()`
Updated tutorial to the flask script 2014-04-28 21:18:27 +08:00			`print('Initialized the database.')`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00

Updated examples to new sqlite patterns and added new section to appcontext docs 2012-10-10 03:02:32 +08:00			`def get_db():`
			`"""Opens a new database connection if there is none yet for the`
			`current application context.`
			`"""`
Rewrote tutorial to use the g based appcontext object 2013-09-01 03:32:41 +08:00			`if not hasattr(g, 'sqlite_db'):`
			`g.sqlite_db = connect_db()`
			`return g.sqlite_db`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00

Updated examples to new sqlite patterns and added new section to appcontext docs 2012-10-10 03:02:32 +08:00			`@app.teardown_appcontext`
Rewrote tutorial to use the g based appcontext object 2013-09-01 03:32:41 +08:00			`def close_db(error):`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00			`"""Closes the database again at the end of the request."""`
Rewrote tutorial to use the g based appcontext object 2013-09-01 03:32:41 +08:00			`if hasattr(g, 'sqlite_db'):`
			`g.sqlite_db.close()`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00

			`@app.route('/')`
			`def show_entries():`
Updated examples to new sqlite patterns and added new section to appcontext docs 2012-10-10 03:02:32 +08:00			`db = get_db()`
			`cur = db.execute('select title, text from entries order by id desc')`
Use sqlite3.Row factory in Flaskr As pointed out in issue #588 sqlite3.Row should be used instead of using casting to dict(). Also altered the "Easy Querying" Patterns example to include the more correct way to return rows as dicts. Did not touch Tutorial examples ("Views"), as these are not up to date with the current Flaskr code, and the "Show Entries" section points out the "Easy Querying" section on how to convert to a dict(). 2012-11-05 08:00:46 +08:00			`entries = cur.fetchall()`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00			`return render_template('show_entries.html', entries=entries)`


			`@app.route('/add', methods=['POST'])`
			`def add_entry():`
First part of the tutorial. Many explanations missing but it's a start. 2010-04-15 08:21:46 +08:00			`if not session.get('logged_in'):`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00			`abort(401)`
Updated examples to new sqlite patterns and added new section to appcontext docs 2012-10-10 03:02:32 +08:00			`db = get_db()`
			`db.execute('insert into entries (title, text) values (?, ?)',`
Updated tutorial to the flask script 2014-04-28 21:18:27 +08:00			`[request.form['title'], request.form['text']])`
Updated examples to new sqlite patterns and added new section to appcontext docs 2012-10-10 03:02:32 +08:00			`db.commit()`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00			`flash('New entry was successfully posted')`
			`return redirect(url_for('show_entries'))`


			`@app.route('/login', methods=['GET', 'POST'])`
			`def login():`
			`error = None`
			`if request.method == 'POST':`
Ported examples over to new config. documented upgrading 2010-05-28 03:17:25 +08:00			`if request.form['username'] != app.config['USERNAME']:`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00			`error = 'Invalid username'`
Ported examples over to new config. documented upgrading 2010-05-28 03:17:25 +08:00			`elif request.form['password'] != app.config['PASSWORD']:`
Added mini blogging application as Flask example. This should become the tutorial. 2010-04-14 22:44:29 +08:00			`error = 'Invalid password'`
			`else:`
			`session['logged_in'] = True`
			`flash('You were logged in')`
			`return redirect(url_for('show_entries'))`
			`return render_template('login.html', error=error)`


			`@app.route('/logout')`
			`def logout():`
			`session.pop('logged_in', None)`
			`flash('You were logged out')`
			`return redirect(url_for('show_entries'))`