#------------
# User admin
+@app.route('/users/admin/list')
+def admin_users():
+ if not session.get('user').get('is_admin'):
+ abort(401)
+ users = query_db('select * from users order by id desc')
+ return render_template('admin_users.html', users=users)
+
@app.route('/users/admin/add', methods=['GET', 'POST'])
def add_user():
if not session.get('user').get('is_admin'):
def show_votes(votes):
today = date.today()
active_button = votes
- basequery = 'select *, roles.name as rolename from votes join roles on roles.id=votes.id_role'
+ basequery = 'select *, roles.name as rolename from votes join roles on roles.id=votes.id_role where open=1'
if votes == 'all':
votes = query_db(basequery + ' order by id desc')
elif votes == 'archive':
- votes = query_db(basequery + ' where date_end < (?) order by id desc', [today])
+ votes = query_db(basequery + ' and date_end < (?) order by id desc', [today])
elif votes == 'current':
- votes = query_db(basequery + ' where date_end >= (?) order by id desc', [today])
+ votes = query_db(basequery + ' and date_end >= (?) order by id desc', [today])
else:
abort(404)
return render_template('show_votes.html', votes=votes, active_button=active_button)
#-------------
# Votes admin
+@app.route('/votes/admin/list')
+def admin_votes():
+ if not session.get('user').get('is_admin'):
+ abort(401)
+ votes = query_db('select *, roles.name as rolename from votes join roles on roles.id=votes.id_role order by id desc')
+ return render_template('admin_votes.html', votes=votes)
+
@app.route('/votes/admin/add', methods=['GET', 'POST'])
def add_vote():
if not session.get('user').get('is_admin'):