Update for home use

2021-12-01 12:02:01 +01:00 · 2021-12-01 12:02:01 +01:00 · f2845486df
commit f2845486df
parent 72c6a3762d
5 changed files with 44 additions and 7 deletions
--- a/posts/urls.py
+++ b/posts/urls.py
@ -4,5 +4,5 @@ from . import views
 urlpatterns = [
    path('edit', views.new, name='new'),
    path('', views.index, name = 'index'),
-    path('delete/int:id/', views.delete, name ='delete')
+    path('delete/<int:deleteId>/', views.delete, name ='delete')
 ]
--- a/posts/views.py
+++ b/posts/views.py
@ -1,5 +1,7 @@
 from django.shortcuts import render, redirect, HttpResponse
 from django.utils import timezone
+from django.contrib.auth.decorators import login_required
+from django.contrib.admin.views.decorators import staff_member_required

 from .forms import NoticeForm
 from .models import Notice
@ -12,6 +14,7 @@ def index(request):
    context = { "notices": notices }
    return render(request, 'posts/index.html', context)

+@login_required
 def new(request):
    if request.method == "POST":
        form = NoticeForm(request.POST)
@ -25,7 +28,10 @@ def new(request):
    context = {'form': NoticeForm()}
    return render(request, 'posts/edit.html', context)

-
-def delete(request):
-    notices = Notice.objects.all()
-    notices.filter()
+@staff_member_required
+def delete(request, deleteId=None):
+    if deleteId != None:
+        delNotice = Notice.objects.get(id=deleteId)
+        if delNotice != None:
+            delNotice.delete(())
+    return redirect('index')
--- a/templates/posts/index.html
+++ b/templates/posts/index.html
@ -5,12 +5,21 @@
 {% endblock %}

 {%  block body %}
-
+    <div>
+        {% if user.is_authenticated %}
+            <p><a href="{% url 'logout' %}?next=/posts" class="btn btn-warning">Abmelden</a></p>
+        {% endif %}
+        {% if not user.is_authenticated %}
+            <p><a href="{% url 'login' %}?next=/posts" class="btn btn-warning">Anmelden</a></p>
+        {% endif %}
+    </div>
    <div>
        {%  for notice in notices  %}
            <h3> {{ notice.notice_title }}</h3>
            <p> {{ notice.notice_text }}</p>
-            <p><a class="btn btn-info" role="button"> href={% url 'delete' id=n %}  Löschen </a></p>
+            {% if user.is_staff %}
+                <p><a  href="{% url 'delete' deleteId=notice.id %}" class="btn btn-danger">  Meldung löschen </a></p>
+            {% endif %}
        {%  endfor %}
    </div>
    <p><a href="{% url 'new' %}" class="btn btn-info" role="button">Neue Nachricht</a></p>
--- a/templates/registration/login.html
+++ b/templates/registration/login.html
@ -0,0 +1,21 @@
+{% extends 'base.html' %}
+
+{% block title %}
+    Login
+{% endblock %}
+
+{% block body %}
+
+    <div class="container">
+
+        <form method="post" action="{% url 'login' %}">
+            {% csrf_token %}
+            Benutzername: {{ form.username }} <br>
+            Passwort: {{ form.password }} <br>
+            <button type="submit" class="btn btn-default">Anmelden</button>
+            <input type="hidden" name="next" value="{{ next }}">
+        </form>
+
+    </div>
+
+{% endblock %}
--- a/webengdjango/urls.py
+++ b/webengdjango/urls.py
@ -19,4 +19,5 @@ from django.urls import path, include
 urlpatterns = [
    path('posts/', include('posts.urls')),
    path('admin/', admin.site.urls),
+    path('accounts/', include('django.contrib.auth.urls'))
 ]