tototomate123/cau-praktikum
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Move friends flows to server-rendered Flask/Jinja routes

Browse Source
This commit is contained in:
tototomate123
2026-02-26 10:53:37 +01:00
parent d1b5a6b480
commit 60442b4335
4 changed files with 487 additions and 57 deletions
Download Patch File Download Diff File Expand all files Collapse all files
app/routes/friends.py
+327
View File
@@ -0,0 +1,327 @@
from flask import Blueprint, flash, jsonify, redirect, request, url_for
from flask_login import current_user, login_required
from app.db import get_db
friends_bp = Blueprint("friends", __name__)
def _get_friendship_row(user_a_id: int, user_b_id: int):
db = get_db()
return db.execute(
"""
SELECT requester_id, addressee_id, status
FROM friendships
WHERE (requester_id = ? AND addressee_id = ?)
OR (requester_id = ? AND addressee_id = ?)
LIMIT 1
""",
(user_a_id, user_b_id, user_b_id, user_a_id),
).fetchone()
def _send_friend_request_or_accept(addressee_id: int):
if addressee_id == current_user.id:
return {"error": "cannot send a request to yourself"}, 400
db = get_db()
user_exists = db.execute(
"SELECT id FROM users WHERE id = ?",
(addressee_id,),
).fetchone()
if not user_exists:
return {"error": "user not found"}, 404
friendship = _get_friendship_row(current_user.id, addressee_id)
if friendship:
if friendship["status"] == "accepted":
return {"error": "already friends"}, 409
if friendship["status"] == "blocked":
return {"error": "cannot send request"}, 403
if friendship["status"] == "pending":
if friendship["addressee_id"] == current_user.id:
db.execute(
"""
UPDATE friendships
SET status = 'accepted'
WHERE requester_id = ? AND addressee_id = ?
""",
(addressee_id, current_user.id),
)
db.commit()
return {"status": "accepted"}, 200
return {"error": "request already sent"}, 409
db.execute(
"""
INSERT INTO friendships (requester_id, addressee_id, status)
VALUES (?, ?, 'pending')
""",
(current_user.id, addressee_id),
)
db.commit()
return {"status": "pending"}, 201
def _accept_friend_request(requester_id: int):
db = get_db()
updated = db.execute(
"""
UPDATE friendships
SET status = 'accepted'
WHERE requester_id = ?
AND addressee_id = ?
AND status = 'pending'
""",
(requester_id, current_user.id),
).rowcount
if updated == 0:
return {"error": "request not found"}, 404
db.commit()
return {"status": "accepted"}, 200
def _decline_friend_request(requester_id: int):
db = get_db()
deleted = db.execute(
"""
DELETE FROM friendships
WHERE requester_id = ?
AND addressee_id = ?
AND status = 'pending'
""",
(requester_id, current_user.id),
).rowcount
if deleted == 0:
return {"error": "request not found"}, 404
db.commit()
return {"status": "declined"}, 200
def _cancel_outgoing_friend_request(addressee_id: int):
db = get_db()
deleted = db.execute(
"""
DELETE FROM friendships
WHERE requester_id = ?
AND addressee_id = ?
AND status = 'pending'
""",
(current_user.id, addressee_id),
).rowcount
if deleted == 0:
return {"error": "request not found"}, 404
db.commit()
return {"status": "canceled"}, 200
def _friends_page_data(search_query: str = ""):
db = get_db()
friends = db.execute(
"""
SELECT DISTINCT u.id, u.username,
CASE
WHEN u.last_seen_at IS NOT NULL
AND u.last_seen_at >= datetime('now', '-35 seconds')
THEN 1 ELSE 0
END AS is_online
FROM friendships f
JOIN users u
ON (
(f.requester_id = ? AND f.addressee_id = u.id)
OR
(f.addressee_id = ? AND f.requester_id = u.id)
)
WHERE f.status = 'accepted'
ORDER BY u.username COLLATE NOCASE ASC
""",
(current_user.id, current_user.id),
).fetchall()
incoming = db.execute(
"""
SELECT f.requester_id AS id, u.username
FROM friendships f
JOIN users u ON u.id = f.requester_id
WHERE f.addressee_id = ?
AND f.status = 'pending'
ORDER BY u.username COLLATE NOCASE ASC
""",
(current_user.id,),
).fetchall()
outgoing = db.execute(
"""
SELECT f.addressee_id AS id, u.username
FROM friendships f
JOIN users u ON u.id = f.addressee_id
WHERE f.requester_id = ?
AND f.status = 'pending'
ORDER BY u.username COLLATE NOCASE ASC
""",
(current_user.id,),
).fetchall()
search_results = []
normalized_query = search_query.strip()
if len(normalized_query) >= 2:
like_query = f"%{normalized_query}%"
rows = db.execute(
"""
SELECT u.id, u.username
FROM users u
WHERE u.id != ?
AND u.username LIKE ?
ORDER BY u.username COLLATE NOCASE ASC
LIMIT 20
""",
(current_user.id, like_query),
).fetchall()
for row in rows:
relation = "none"
friendship = _get_friendship_row(current_user.id, row["id"])
if friendship:
if friendship["status"] == "accepted":
relation = "accepted"
elif friendship["status"] == "pending":
relation = (
"incoming"
if friendship["addressee_id"] == current_user.id
else "outgoing"
)
else:
relation = friendship["status"]
search_results.append(
{
"id": row["id"],
"username": row["username"],
"relation": relation,
}
)
return {
"friends": friends,
"incoming_requests": incoming,
"outgoing_requests": outgoing,
"search_results": search_results,
"search_query": normalized_query,
}
@friends_bp.route("/friends/request", methods=["POST"])
@login_required
def request_page_action():
try:
addressee_id = int(request.form.get("addressee_id", ""))
except ValueError:
flash("Invalid user id", "error")
return redirect(url_for("main.friends", q=request.form.get("q", "")))
payload, status = _send_friend_request_or_accept(addressee_id)
if status in (200, 201):
flash("Friend request updated", "success")
else:
flash(payload["error"], "error")
return redirect(url_for("main.friends", q=request.form.get("q", "")))
@friends_bp.route("/friends/requests/<int:requester_id>/accept", methods=["POST"])
@login_required
def accept_page_action(requester_id: int):
payload, status = _accept_friend_request(requester_id)
if status == 200:
flash("Friend request accepted", "success")
else:
flash(payload["error"], "error")
return redirect(url_for("main.friends", q=request.form.get("q", "")))
@friends_bp.route("/friends/requests/<int:requester_id>/decline", methods=["POST"])
@login_required
def decline_page_action(requester_id: int):
payload, status = _decline_friend_request(requester_id)
if status == 200:
flash("Friend request declined", "success")
else:
flash(payload["error"], "error")
return redirect(url_for("main.friends", q=request.form.get("q", "")))
@friends_bp.route("/friends/requests/<int:addressee_id>/cancel", methods=["POST"])
@login_required
def cancel_page_action(addressee_id: int):
payload, status = _cancel_outgoing_friend_request(addressee_id)
if status == 200:
flash("Outgoing request canceled", "success")
else:
flash(payload["error"], "error")
return redirect(url_for("main.friends", q=request.form.get("q", "")))
@friends_bp.route("/api/friends", methods=["GET"])
@login_required
def list_friends():
data = _friends_page_data("")
return jsonify({"friends": [dict(row) for row in data["friends"]]})
@friends_bp.route("/api/friends/search", methods=["GET"])
@login_required
def search_people():
data = _friends_page_data(request.args.get("q", ""))
return jsonify({"results": data["search_results"]})
@friends_bp.route("/api/friends/requests/incoming", methods=["GET"])
@login_required
def incoming_friend_requests():
data = _friends_page_data("")
return jsonify({"requests": [dict(row) for row in data["incoming_requests"]]})
@friends_bp.route("/api/friends/requests/outgoing", methods=["GET"])
@login_required
def outgoing_friend_requests():
data = _friends_page_data("")
return jsonify({"requests": [dict(row) for row in data["outgoing_requests"]]})
@friends_bp.route("/api/friends/requests", methods=["POST"])
@login_required
def send_friend_request():
payload = request.get_json(silent=True) or {}
addressee_id = payload.get("addressee_id")
if not isinstance(addressee_id, int):
return jsonify({"error": "addressee_id must be an integer"}), 400
response_payload, status = _send_friend_request_or_accept(addressee_id)
return jsonify(response_payload), status
@friends_bp.route("/api/friends/requests/<int:requester_id>/accept", methods=["POST"])
@login_required
def accept_friend_request(requester_id: int):
payload, status = _accept_friend_request(requester_id)
return jsonify(payload), status
@friends_bp.route("/api/friends/requests/<int:requester_id>/decline", methods=["POST"])
@login_required
def decline_friend_request(requester_id: int):
payload, status = _decline_friend_request(requester_id)
return jsonify(payload), status
app/routes/main.py
+7 -11
View File
@@ -1,16 +1,10 @@
from flask import Blueprint, render_template, redirect, url_for
from flask import Blueprint, render_template, redirect, url_for, request
from flask_login import login_required, current_user
from app.routes.friends import _friends_page_data
main_bp = Blueprint("main", __name__)
""" def login_required(view):
@wraps(view)
def wrapped_view(**kwargs):
if "user_id" not in session:
return redirect(url_for("auth.login"))
return view(**kwargs)
return wrapped_view
"""
@main_bp.route("/", methods=["GET", "POST"])
def index():
@@ -18,10 +12,10 @@ def index():
return redirect(url_for("main.home"))
return render_template("index.html")
@main_bp.route("/home", methods=["GET", "POST"])
@login_required
def home():
print(f"Current user: {current_user.username}")
return render_template("home.html")
@@ -31,7 +25,9 @@ def play():
return render_template("play.html")
#todo: decide if this should get moved to the friends.py file
@main_bp.route("/friends", methods=["GET"])
@login_required
def friends():
return render_template("friends.html")
data = _friends_page_data(request.args.get("q", ""))
return render_template("friends.html", **data)