From 0d03cd67d42f76271019ecd80c63b05a4ef046df Mon Sep 17 00:00:00 2001 From: yamanq Date: Mon, 16 Apr 2018 20:47:36 -0400 Subject: [PATCH 1/2] commit editor changes to db --- SmearcarDB/server.py | 2 ++ 1 file changed, 2 insertions(+) diff --git a/SmearcarDB/server.py b/SmearcarDB/server.py index d11ab6f..beee817 100644 --- a/SmearcarDB/server.py +++ b/SmearcarDB/server.py @@ -231,6 +231,8 @@ def editors(): user = Editor(authority = received[authority], username = received[username], password = received[password]) + db.session.add(user) + db.session.commit() return user else: return "Bad Request" From 3d4735949ebb612ec3e1e126261dd8ed24627d03 Mon Sep 17 00:00:00 2001 From: yamanq Date: Mon, 16 Apr 2018 20:54:58 -0400 Subject: [PATCH 2/2] fix post method --- SmearcarDB/server.py | 9 ++++----- 1 file changed, 4 insertions(+), 5 deletions(-) diff --git a/SmearcarDB/server.py b/SmearcarDB/server.py index beee817..83c17aa 100644 --- a/SmearcarDB/server.py +++ b/SmearcarDB/server.py @@ -226,11 +226,10 @@ def updates(): def editors(): if request.method == "POST": received = request.get_json() - doer = received['editor'] - if Editor.query.filter_by(username=received[username].count()) == 0 and Editor.query.filter_by(username=doer['username'], password=doer['password']).count() == 1: - user = Editor(authority = received[authority], - username = received[username], - password = received[password]) + if Editor.query.filter_by(username=received['username'].count()) == 0 and check_privelege(received['editor'], 0): + user = Editor(authority = received['authority'], + username = received['username'], + password = received['password']) db.session.add(user) db.session.commit() return user