Skip to content

Commit

Permalink
minor pr fixes
Browse files Browse the repository at this point in the history
  • Loading branch information
@brassy-endomorph
brassy-endomorph committed Sep 19, 2024
1 parent 2475da3 commit ca80798
Show file tree
Hide file tree
Showing 2 changed files with 18 additions and 17 deletions.
33 changes: 17 additions & 16 deletions hushline/routes.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,7 @@
import secrets
import socket
from datetime import UTC, datetime, timedelta
from typing import Sequence

import pyotp
from flask import (
Expand Down Expand Up @@ -284,25 +285,23 @@ def delete_message(message_id: int) -> Response:
flash("🫥 User not found. Please log in again.")
return redirect(url_for("login"))

row_count = (
db.delete(Message)
.where(
row_count = db.session.execute(
db.delete(Message).where(
Message.id == message_id,
Message.username_id.in_(
select(Username.user_id)
.select_from(Username)
.filter(Username.user_id == user.id)
),
)
.delete()
)
).rowcount
match row_count:
case 1:
db.session.commit()
flash("🗑️ Message deleted successfully.")
case 0:
db.session.rollback()
flash("⛔️ Message not found or unauthorized access.")
flash("⛔️ Message not found.")
case _:
db.session.rollback()
current_app.logger.error(
Expand Down Expand Up @@ -349,7 +348,9 @@ def register() -> Response | str | tuple[Response | str, int]:
400,
)

if db.session.query(db.exists(Username).where(Username._username == username)).scalar():
if db.session.scalar(
db.exists(Username).where(Username._username == username).select()
):
flash("💔 Username already taken.", "error")
return (
render_template(
Expand Down Expand Up @@ -386,8 +387,8 @@ def login() -> Response | str:

form = LoginForm()
if form.validate_on_submit():
username = Username.query.filter_by(
_username=form.username.data.strip(), is_primary=True
username = db.session.scalars(
select(Username).filter_by(_username=form.username.data.strip(), is_primary=True)
).one_or_none()
if username and username.user.check_password(form.password.data):
session.permanent = True
Expand Down Expand Up @@ -436,12 +437,12 @@ def verify_2fa_login() -> Response | str | tuple[Response | str, int]:
rate_limit = False

# If the most recent successful login was made with the same OTP code, reject this one
last_login = (
AuthenticationLog.query.filter_by(user_id=user.id, successful=True)
last_login = db.session.scalars(
db.select(AuthenticationLog)
.filter_by(user_id=user.id, successful=True)
.order_by(AuthenticationLog.timestamp.desc())
.limit(1)
.first()
)
).first()
if (
last_login
and last_login.timecode == timecode
Expand Down Expand Up @@ -496,14 +497,14 @@ def logout() -> Response:
flash("👋 You have been logged out successfully.", "info")
return redirect(url_for("index"))

def get_directory_usernames(admin_first: bool = False) -> list[Username]:
query = Username.query.filter_by(show_in_directory=True)
def get_directory_usernames(admin_first: bool = False) -> Sequence[Username]:
query = select(Username).filter_by(show_in_directory=True)
display_ordering = db.func.coalesce(Username._display_name, Username._username)
if admin_first:
query = query.order_by(Username.user.is_admin.desc(), display_ordering)
else:
query = query.order_by(display_ordering)
return query.all()
return db.session.scalars(query).all()

@app.route("/directory")
def directory() -> Response | str:
Expand Down
2 changes: 1 addition & 1 deletion hushline/settings/__init__.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -153,7 +153,7 @@ def handle_change_username_form(

# TODO a better pattern would be to try to commit, catch the exception, and match
# on the name of the unique index that errored
if db.session.query(db.exists(Username).where(Username._username == new_username)).scalar():
if db.session.scalar(db.exists(Username).where(Username._username == new_username).select()):
flash("💔 This username is already taken.")
else:
username.username = new_username
Expand Down

0 comments on commit ca80798

Please sign in to comment.