Skip to content
GitLab
Menu
Projects
Groups
Snippets
Loading...
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
Menu
Open sidebar
Ross I Kinsey
where
Commits
cada157d
Commit
cada157d
authored
Feb 24, 2020
by
axiiom
Browse files
just some input validation
parent
acf5cc99
Changes
2
Hide whitespace changes
Inline
Side-by-side
.gitignore
View file @
cada157d
...
...
@@ -4,3 +4,4 @@ __pycache__/
db.sqlite3
.idea
env
.vscode/
\ No newline at end of file
where/app.py
View file @
cada157d
...
...
@@ -134,25 +134,25 @@ def create_point(session, args):
return
create_resource
(
session
,
Point
,
args
,
'get_point'
)
@
app
.
route
(
'/point/<id>'
,
methods
=
[
'GET'
])
@
app
.
route
(
'/point/<
int:
id>'
,
methods
=
[
'GET'
])
@
with_session
def
get_point
(
session
,
id
):
return
get_resource
(
session
,
Point
,
id
)
@
app
.
route
(
'/point/<id>'
,
methods
=
[
'DELETE'
])
@
app
.
route
(
'/point/<
int:
id>'
,
methods
=
[
'DELETE'
])
@
with_session
def
del_point
(
session
,
id
):
return
delete_resource
(
session
,
Point
,
id
)
@
app
.
route
(
'/point/<id>'
,
methods
=
[
'PUT'
])
@
app
.
route
(
'/point/<
int:
id>'
,
methods
=
[
'PUT'
])
@
with_session
def
edit_point
(
session
,
id
):
return
edit_resource
(
session
,
Point
,
id
,
request
.
get_json
())
@
app
.
route
(
'/point/<id>/children'
,
methods
=
[
'GET'
])
@
app
.
route
(
'/point/<
int:
id>/children'
,
methods
=
[
'GET'
])
@
with_session
def
get_point_children
(
session
,
id
):
data
=
dict
(
request
.
args
)
...
...
@@ -194,7 +194,9 @@ def get_resource(session, model_cls, id):
:return: a Flask Response object
'''
resource
=
session
.
query
(
model_cls
).
get
(
id
)
return
make_response
(
jsonify
(
resource
.
as_json
()),
200
)
resp
=
(
None
,
404
)
if
resource
is
None
else
\
(
resource
.
as_json
(),
200
)
return
make_response
(
jsonify
(
resp
[
0
]),
resp
[
1
])
def
edit_resource
(
session
,
model_cls
,
id
,
data
):
...
...
@@ -245,10 +247,10 @@ def search_resource(session, model_cls, data):
:return: a Flask Response object
'''
query
=
session
.
query
(
model_cls
).
filter_by
(
**
data
)
results
=
list
(
map
(
lambda
m
:
m
.
as_json
(),
query
.
limit
(
100
).
all
()))
resp
=
(
None
,
404
)
if
query
.
first
()
is
None
else
\
(
list
(
map
(
lambda
m
:
m
.
as_json
(),
query
.
limit
(
100
).
all
())),
200
)
response
=
make_response
(
jsonify
(
results
),
200
)
return
response
return
make_response
(
jsonify
(
resp
[
0
]),
resp
[
1
])
if
__name__
==
'__main__'
:
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment