moonq/mdshop
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix queries for single values

Browse Source
This commit is contained in:
q
2016-07-04 20:28:19 +03:00
parent 17a1796b53
commit 448f645f17
2 changed files with 15 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

28
shop.py
View File

@@ -165,8 +165,8 @@ def add_items():
if not session.get('logged_in'): if not session.get('logged_in'):
abort(401) abort(401)
shopid=int(request.form['shopid']) shopid=int(request.form['shopid'])
ownerid=g.db.execute('select owner from shops where id=?',request.form['shopid']).fetchall()[0][0] ownerid=g.db.execute('select owner from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
shopname=g.db.execute('select shop from shops where id=?',request.form['shopid']).fetchall()[0][0] shopname=g.db.execute('select shop from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
ownername=get_username(ownerid) ownername=get_username(ownerid)
data_dir=os.path.join(DATADIR, ownername) data_dir=os.path.join(DATADIR, ownername)
data_file=os.path.join(data_dir, shopname+".md") data_file=os.path.join(data_dir, shopname+".md")
@@ -186,8 +186,8 @@ def edit_md():
if not session.get('logged_in'): if not session.get('logged_in'):
abort(401) abort(401)
shopid=int(request.form['shopid']) shopid=int(request.form['shopid'])
ownerid=g.db.execute('select owner from shops where id=?',request.form['shopid']).fetchall()[0][0] ownerid=g.db.execute('select owner from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
shopname=g.db.execute('select shop from shops where id=?',request.form['shopid']).fetchall()[0][0] shopname=g.db.execute('select shop from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
ownername=get_username(ownerid) ownername=get_username(ownerid)
data_dir=os.path.join(DATADIR, ownername) data_dir=os.path.join(DATADIR, ownername)
data_file=os.path.join(data_dir, shopname+".md") data_file=os.path.join(data_dir, shopname+".md")
@@ -205,8 +205,8 @@ def restore_md():
if not session.get('logged_in'): if not session.get('logged_in'):
abort(401) abort(401)
shopid=int(request.form['shopid']) shopid=int(request.form['shopid'])
ownerid=g.db.execute('select owner from shops where id=?',request.form['shopid']).fetchall()[0][0] ownerid=g.db.execute('select owner from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
shopname=g.db.execute('select shop from shops where id=?',request.form['shopid']).fetchall()[0][0] shopname=g.db.execute('select shop from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
ownername=get_username(ownerid) ownername=get_username(ownerid)
data_dir=os.path.join(DATADIR, ownername) data_dir=os.path.join(DATADIR, ownername)
data_file=os.path.join(data_dir, shopname+".md") data_file=os.path.join(data_dir, shopname+".md")
@@ -228,8 +228,8 @@ def toggle_item():
if not session.get('logged_in'): if not session.get('logged_in'):
abort(401) abort(401)
shopid=int(request.form['shopid']) shopid=int(request.form['shopid'])
ownerid=g.db.execute('select owner from shops where id=?',request.form['shopid']).fetchall()[0][0] ownerid=g.db.execute('select owner from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
shopname=g.db.execute('select shop from shops where id=?',request.form['shopid']).fetchall()[0][0] shopname=g.db.execute('select shop from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
ownername=get_username(ownerid) ownername=get_username(ownerid)
req_row=None req_row=None
for key in request.form: for key in request.form:
@@ -264,8 +264,8 @@ def remove_toggled():
if not session.get('logged_in'): if not session.get('logged_in'):
abort(401) abort(401)
shopid=int(request.form['shopid']) shopid=int(request.form['shopid'])
ownerid=g.db.execute('select owner from shops where id=?',request.form['shopid']).fetchall()[0][0] ownerid=g.db.execute('select owner from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
shopname=g.db.execute('select shop from shops where id=?',request.form['shopid']).fetchall()[0][0] shopname=g.db.execute('select shop from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
ownername=get_username(ownerid) ownername=get_username(ownerid)
data_dir=os.path.join(DATADIR, ownername) data_dir=os.path.join(DATADIR, ownername)
data_file=os.path.join(data_dir, shopname+".md") data_file=os.path.join(data_dir, shopname+".md")
@@ -328,7 +328,7 @@ def add_share():
if userid==None: if userid==None:
flash('No such user!') flash('No such user!')
return redirect(url_for('show_shop',shopid=shopid)) return redirect(url_for('show_shop',shopid=shopid))
ownerid=g.db.execute('select owner from shops where id=?',request.form['shopid']).fetchall()[0][0] ownerid=g.db.execute('select owner from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
if session.get('user')!=ownerid: if session.get('user')!=ownerid:
flash('Not your shop!') flash('Not your shop!')
return redirect(url_for('show_shop',shopid=shopid)) return redirect(url_for('show_shop',shopid=shopid))
@@ -353,7 +353,7 @@ def remove_share():
if userid==None: if userid==None:
flash('No such user!') flash('No such user!')
return redirect(url_for('show_shop',shopid=shopid)) return redirect(url_for('show_shop',shopid=shopid))
ownerid=g.db.execute('select owner from shops where id=?',request.form['shopid']).fetchall()[0][0] ownerid=g.db.execute('select owner from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
if session.get('user')!=ownerid: if session.get('user')!=ownerid:
flash('Not your shop!') flash('Not your shop!')
return redirect(url_for('show_shop',shopid=shopid)) return redirect(url_for('show_shop',shopid=shopid))
@@ -368,8 +368,8 @@ def remove_shop():
if not session.get('logged_in'): if not session.get('logged_in'):
abort(401) abort(401)
shopid=int(request.form['shopid']) shopid=int(request.form['shopid'])
ownerid=g.db.execute('select owner from shops where id=?',request.form['shopid']).fetchall()[0][0] ownerid=g.db.execute('select owner from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
shopname=g.db.execute('select shop from shops where id=?',request.form['shopid']).fetchall()[0][0] shopname=g.db.execute('select shop from shops where id=?',(request.form['shopid'],)).fetchall()[0][0]
ownername=get_username(ownerid) ownername=get_username(ownerid)
data_dir=os.path.join(DATADIR, ownername) data_dir=os.path.join(DATADIR, ownername)
data_file=os.path.join(data_dir, shopname+".md") data_file=os.path.join(data_dir, shopname+".md")

2
templates/show_shop.html
View File

@@ -51,7 +51,7 @@
</dl></form> </dl></form>
<form id="disp_delete" class=hidden action="{{ url_for('remove_shop') }}" method=post class=add-entry> <form id="disp_delete" class=hidden action="{{ url_for('remove_shop') }}" method=post class=add-entry>
<dl>Delete shop permanently. Can not be restored.</dl> <dl>Delete shop permanently. Can not be restored.</dl>
<dl><input type=hidden name=shopid value={{ shopid }}><input class=submit type=submit value=Remove onclick="return confirm('Do you really want to remove shop {{ shop }}?');"> <dl><input type=hidden name=shopid value={{ shopid }}><input class=submit type=submit value=Delete onclick="return confirm('Do you really want to remove shop {{ shop }}?');">
</dl></form> </dl></form>
{% endblock %} {% endblock %}