brmlab/brmbar
4
0
Fork 0
forked from brmlab/brmbar-github
Code Issues Pull requests Projects 1 Wiki Activity
brmbar/server/brmbar-server
Pavol Rusnak b762c4fe26 hide ids from delete button
2011-06-21 01:01:57 +02:00

157 lines
6 KiB
Python
Executable file
Raw Permalink Blame History

#!/usr/bin/python
from flask import Flask, render_template, Response, g, redirect, abort, request, send_from_directory
from re import match
from users import users
import sqlite3
import os
app = Flask('BrmBar')
@app.route('/')
def index():
cur = g.db.execute('SELECT code, name, price FROM items ORDER BY name')
items = [dict(code = row[0], name = row[1], price = row[2]) for row in cur.fetchall()]
return render_template('index.html', items = items)
@app.route('/code/<code>')
def code(code):
LEN = 25
if match('^U[0-9]{4}$', code):
userid = int(code[1:])
cur = g.db.execute('SELECT balance FROM balance WHERE userid = ?', (userid, ))
row = cur.fetchone()
if row:
usercredit = '%d Kc' % row[0]
else:
usercredit = '0 Kc'
try:
username = users[userid]
except:
username = 'Unknown'
r = username[:LEN - len(usercredit) - 1].ljust(LEN - len(usercredit) - 1) + ' ' + usercredit
return Response(r, content_type = 'text/plain')
if code == 'R0000':
return Response('Reset Credit to 0', content_type = 'text/plain')
if match('^\C[0-9]{4}$', code):
amount = int(code[1:])
return Response('Credit %d' % amount, content_type = 'text/plain')
if match('^[0-9]+$', code):
cur = g.db.execute('SELECT name, price FROM items WHERE code = ?', (code, ))
row = cur.fetchone()
if row:
itemname = row[0]
itemprice = '%d Kc' % row[1]
else:
itemname = 'Unknown'
itemprice = '0 Kc'
r = itemname[:LEN - len(itemprice) - 1].ljust(LEN - len(itemprice) - 1) + ' ' + itemprice
return Response(r, content_type = 'text/plain')
abort(400)
@app.route('/action/<user>/<item>')
def action(user, item):
if not match('^U[0-9]{4}$', user):
abort(400)
user = int(user[1:])
if item == 'R0000':
g.db.execute('DELETE FROM balance WHERE userid = ?', (user, ))
g.db.execute('INSERT INTO log(userid, event) VALUES(?, ?)', (user, 'Credit reset'))
g.db.commit()
if match('^C[0-9]{4}$', item):
cur = g.db.execute('SELECT balance FROM balance WHERE userid = ?', (user, ))
row = cur.fetchone()
if row:
balance = int(row[0]) + int(item[1:])
g.db.execute('UPDATE balance SET balance = ? WHERE userid = ?', (balance, user))
g.db.execute('INSERT INTO log(userid, event) VALUES(?, ?)', (user, 'Credit +%s' % item[1:]))
g.db.commit()
else:
balance = int(item[1:])
g.db.execute('INSERT INTO balance(balance, userid) VALUES(?, ?)', (balance, user))
g.db.execute('INSERT INTO log(userid, event) VALUES(?, ?)', (user, 'Credit +%s' % item[1:]))
g.db.commit()
if match('^[0-9]+$', item):
cur1 = g.db.execute('SELECT price FROM items WHERE code = ?', (item, ))
row1 = cur1.fetchone()
cur2 = g.db.execute('SELECT balance FROM balance WHERE userid = ?', (user, ))
row2 = cur2.fetchone()
if not row1:
abort(400)
if row2:
balance = - int(row1[0]) + int(row2[0])
g.db.execute('UPDATE balance SET balance = ? WHERE userid = ?', (balance, user))
g.db.execute('INSERT INTO log(userid, itemcode) VALUES(?, ?)', (user, item))
g.db.commit()
else:
balance = - int(row1[0])
g.db.execute('INSERT INTO balance(balance, userid) VALUES(?, ?)', (balance, user))
g.db.execute('INSERT INTO log(userid, itemcode) VALUES(?, ?)', (user, item))
g.db.commit()
return Response('OK', content_type = 'text/plain')
@app.route('/items/')
def items():
cur = g.db.execute('SELECT code, name, price FROM items ORDER BY name')
items = [dict(code = row[0], name = row[1], price = row[2]) for row in cur.fetchall()]
return render_template('items.html', items = items)
@app.route('/items/', methods = ['POST'])
def items_post():
f = request.form
for (k, v) in f.iteritems():
if k == 'add' and v == 'add':
if f['code'] and f['name'] and f['price']:
g.db.execute('INSERT INTO items (code, name, price) VALUES (?, ?, ?)', (f['code'], f['name'], f['price']))
g.db.commit()
return redirect('/items/')
if k.startswith('delete:') and v == 'delete':
code = k[7:]
g.db.execute('DELETE FROM items WHERE code = ?', (code, ))
g.db.commit()
return redirect('/items/')
abort(400)
@app.route('/barcodes.txt')
def barcodestxt():
ret = []
ret.append('Credit 20;C0020')
ret.append('Credit 50;C0050')
ret.append('Credit 100;C0100')
ret.append('Credit 200;C0200')
ret.append('Credit 500;C0500')
ret.append('Credit 1000;C1000')
ret.append('Credit 2000;C2000')
ret.append('RESET;R0000')
for (id,name) in sorted(users.iteritems(), key = lambda (k,v): (v,k)):
ret.append('%s;U%d' % (name, id))
response = Response(response = '\n'.join(ret) + '\n', content_type = 'text/plain')
return response
@app.route('/log/')
def log():
cur = g.db.execute('SELECT ts, userid, name, price, code, event FROM log LEFT JOIN items ON log.itemcode = items.code ORDER BY ts DESC')
rows = [dict(ts = row[0], user = users[row[1]], itemname = row[2], price = row[3], code = row[4], event = row[5]) for row in cur.fetchall()]
return render_template('log.html', rows = rows)
@app.route('/stats/')
def stats():
return render_template('stats.html')
@app.route('/static/items/<filename>')
def download_file(filename):
if not os.path.exists('static/items/' + filename):
filename = 'missing.jpg'
return send_from_directory('static/items/', filename, mimetype='image/jpeg')
@app.before_request
def before_request():
g.db = sqlite3.connect('db/brmbar.db')
@app.after_request
def after_request(response):
g.db.close()
return response
if __name__ == '__main__':
app.run(host = '0.0.0.0', port = 45678, debug = True)
Reference in a new issue View git blame Copy permalink