2021-04-24 10:05:58 +00:00
|
|
|
from flask_admin import AdminIndexView
|
2021-05-17 14:55:04 +00:00
|
|
|
from flask_admin.contrib.sqla import ModelView
|
2021-06-02 21:43:41 +00:00
|
|
|
from flask_security import current_user
|
2021-07-13 15:22:15 +00:00
|
|
|
from flask import redirect, request, url_for, flash
|
|
|
|
|
2021-07-13 23:58:35 +00:00
|
|
|
from advlabdb.exceptions import ModelViewException, DataBaseException
|
2021-05-17 14:55:04 +00:00
|
|
|
|
2021-04-18 23:33:46 +00:00
|
|
|
|
2021-05-17 14:55:04 +00:00
|
|
|
def adminViewIsAccessible():
|
|
|
|
return current_user.has_role("admin")
|
|
|
|
|
2021-04-18 23:33:46 +00:00
|
|
|
|
2021-04-24 10:05:58 +00:00
|
|
|
class SecureAdminIndexView(AdminIndexView):
|
2021-04-18 23:33:46 +00:00
|
|
|
def is_accessible(self):
|
2021-05-17 14:55:04 +00:00
|
|
|
return adminViewIsAccessible()
|
|
|
|
|
2021-07-01 12:02:23 +00:00
|
|
|
def inaccessible_callback(self, name, **kwargs):
|
|
|
|
# Redirect to login page if user doesn't have access
|
|
|
|
return redirect(url_for("security.login", next=request.url))
|
|
|
|
|
2021-04-18 23:33:46 +00:00
|
|
|
|
2021-04-24 10:05:58 +00:00
|
|
|
class SecureModelView(ModelView):
|
|
|
|
can_export = True
|
2021-04-24 12:01:14 +00:00
|
|
|
can_set_page_size = True
|
2021-04-24 10:05:58 +00:00
|
|
|
|
2021-07-01 11:12:43 +00:00
|
|
|
create_modal = True
|
|
|
|
edit_modal = True
|
|
|
|
details_modal = True
|
|
|
|
|
2021-05-17 19:34:49 +00:00
|
|
|
list_template = "admin_list.html"
|
|
|
|
create_template = "admin_create.html"
|
|
|
|
edit_template = "admin_edit.html"
|
|
|
|
|
2021-07-12 11:06:44 +00:00
|
|
|
queryFilter = None
|
|
|
|
|
2021-04-18 23:33:46 +00:00
|
|
|
def is_accessible(self):
|
2021-05-17 14:55:04 +00:00
|
|
|
return adminViewIsAccessible()
|
2021-07-01 12:02:23 +00:00
|
|
|
|
|
|
|
def inaccessible_callback(self, name, **kwargs):
|
|
|
|
# Redirect to login page if user doesn't have access
|
|
|
|
return redirect(url_for("security.login", next=request.url))
|
2021-07-12 11:06:44 +00:00
|
|
|
|
|
|
|
def get_query(self):
|
|
|
|
if self.queryFilter:
|
|
|
|
return super().get_query().filter(self.queryFilter())
|
|
|
|
else:
|
|
|
|
return super().get_query()
|
|
|
|
|
|
|
|
def get_count_query(self):
|
|
|
|
if self.queryFilter:
|
|
|
|
return super().get_count_query().filter(self.queryFilter())
|
|
|
|
else:
|
|
|
|
return super().get_count_query()
|
2021-07-13 15:22:15 +00:00
|
|
|
|
|
|
|
def handle_view_exception(self, exc):
|
2021-07-13 23:58:35 +00:00
|
|
|
if type(exc) in (ModelViewException, DataBaseException):
|
2021-07-13 15:22:15 +00:00
|
|
|
flash(str(exc), "error")
|
|
|
|
return True
|
|
|
|
|
|
|
|
return super().handle_view_exception(exc)
|