Skip to content
GitLab
Menu
Projects
Groups
Snippets
Loading...
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
Menu
Open sidebar
SRCT
where
Commits
cada157d
Commit
cada157d
authored
Feb 24, 2020
by
axiiom
Browse files
just some input validation
parent
acf5cc99
Changes
2
Hide whitespace changes
Inline
Side-by-side
.gitignore
View file @
cada157d
...
@@ -4,3 +4,4 @@ __pycache__/
...
@@ -4,3 +4,4 @@ __pycache__/
db.sqlite3
db.sqlite3
.idea
.idea
env
env
.vscode/
\ No newline at end of file
where/app.py
View file @
cada157d
...
@@ -134,25 +134,25 @@ def create_point(session, args):
...
@@ -134,25 +134,25 @@ def create_point(session, args):
return
create_resource
(
session
,
Point
,
args
,
'get_point'
)
return
create_resource
(
session
,
Point
,
args
,
'get_point'
)
@
app
.
route
(
'/point/<id>'
,
methods
=
[
'GET'
])
@
app
.
route
(
'/point/<
int:
id>'
,
methods
=
[
'GET'
])
@
with_session
@
with_session
def
get_point
(
session
,
id
):
def
get_point
(
session
,
id
):
return
get_resource
(
session
,
Point
,
id
)
return
get_resource
(
session
,
Point
,
id
)
@
app
.
route
(
'/point/<id>'
,
methods
=
[
'DELETE'
])
@
app
.
route
(
'/point/<
int:
id>'
,
methods
=
[
'DELETE'
])
@
with_session
@
with_session
def
del_point
(
session
,
id
):
def
del_point
(
session
,
id
):
return
delete_resource
(
session
,
Point
,
id
)
return
delete_resource
(
session
,
Point
,
id
)
@
app
.
route
(
'/point/<id>'
,
methods
=
[
'PUT'
])
@
app
.
route
(
'/point/<
int:
id>'
,
methods
=
[
'PUT'
])
@
with_session
@
with_session
def
edit_point
(
session
,
id
):
def
edit_point
(
session
,
id
):
return
edit_resource
(
session
,
Point
,
id
,
request
.
get_json
())
return
edit_resource
(
session
,
Point
,
id
,
request
.
get_json
())
@
app
.
route
(
'/point/<id>/children'
,
methods
=
[
'GET'
])
@
app
.
route
(
'/point/<
int:
id>/children'
,
methods
=
[
'GET'
])
@
with_session
@
with_session
def
get_point_children
(
session
,
id
):
def
get_point_children
(
session
,
id
):
data
=
dict
(
request
.
args
)
data
=
dict
(
request
.
args
)
...
@@ -194,7 +194,9 @@ def get_resource(session, model_cls, id):
...
@@ -194,7 +194,9 @@ def get_resource(session, model_cls, id):
:return: a Flask Response object
:return: a Flask Response object
'''
'''
resource
=
session
.
query
(
model_cls
).
get
(
id
)
resource
=
session
.
query
(
model_cls
).
get
(
id
)
return
make_response
(
jsonify
(
resource
.
as_json
()),
200
)
resp
=
(
None
,
404
)
if
resource
is
None
else
\
(
resource
.
as_json
(),
200
)
return
make_response
(
jsonify
(
resp
[
0
]),
resp
[
1
])
def
edit_resource
(
session
,
model_cls
,
id
,
data
):
def
edit_resource
(
session
,
model_cls
,
id
,
data
):
...
@@ -245,10 +247,10 @@ def search_resource(session, model_cls, data):
...
@@ -245,10 +247,10 @@ def search_resource(session, model_cls, data):
:return: a Flask Response object
:return: a Flask Response object
'''
'''
query
=
session
.
query
(
model_cls
).
filter_by
(
**
data
)
query
=
session
.
query
(
model_cls
).
filter_by
(
**
data
)
results
=
list
(
map
(
lambda
m
:
m
.
as_json
(),
query
.
limit
(
100
).
all
()))
resp
=
(
None
,
404
)
if
query
.
first
()
is
None
else
\
(
list
(
map
(
lambda
m
:
m
.
as_json
(),
query
.
limit
(
100
).
all
())),
200
)
response
=
make_response
(
jsonify
(
results
),
200
)
return
make_response
(
jsonify
(
resp
[
0
]),
resp
[
1
])
return
response
if
__name__
==
'__main__'
:
if
__name__
==
'__main__'
:
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment