131 lines
2.9 KiB
Ruby
131 lines
2.9 KiB
Ruby
class Admin < Sinatra::Base
|
|
set $settings
|
|
use Rack::Session::Pool, :expire_after => 1800
|
|
use Rack::Flash, :accessorize => [:error, :warning, :notice]
|
|
set :haml, :layout => :admin_layout
|
|
|
|
get '/' do
|
|
haml :admin_index
|
|
end
|
|
|
|
get '/post' do
|
|
@posts = Post.all(:order => [:id.desc])
|
|
haml :admin_posts
|
|
end
|
|
|
|
get '/post/new' do
|
|
@post = Post.new
|
|
haml :admin_post_create
|
|
end
|
|
|
|
put '/post' do
|
|
@post = Post.new(params[:post])
|
|
if @post.save
|
|
flash.notice = 'Post saved'
|
|
redirect "/admin/post/#{@post.id}"
|
|
else
|
|
flash.error = 'Error at saving the post'
|
|
flash[:errors] = @post.errors
|
|
redirect "/admin/post/new"
|
|
end
|
|
end
|
|
|
|
get '/post/:id' do
|
|
@post = Post.get(params[:id])
|
|
if @post
|
|
haml :admin_post_change
|
|
else
|
|
flash.warning = "Post with id #{params[:id]} not found!"
|
|
redirect './post'
|
|
end
|
|
end
|
|
|
|
post '/post/:id' do
|
|
# read the checkbox value
|
|
if params['post'].has_key?('released')
|
|
params['post']['released'] = true
|
|
else
|
|
params['post']['released'] = false
|
|
end
|
|
# get the post and update it
|
|
@post = Post.get(params[:id])
|
|
if @post
|
|
unless @post.update(params[:post])
|
|
flash.warning = 'Error at saving the post!'
|
|
flash[:errors] = true
|
|
end
|
|
haml :admin_post_change
|
|
else
|
|
flash.warning = "Post with id #{params[:id]} not found!"
|
|
redirect './post'
|
|
end
|
|
end
|
|
|
|
get '/login' do
|
|
haml :admin_index_no_login
|
|
end
|
|
|
|
post '/login' do
|
|
account = Account.authenticate(params['username'], params['password'])
|
|
if account.nil?
|
|
flash.warning = 'wrong username or password'
|
|
flash[:username] = params['username']
|
|
redirect '/admin'
|
|
else
|
|
flash.notice = 'Login successful'
|
|
session[:id] = account.id
|
|
session[:last_updated] = Time.now
|
|
# redirect to the url set from the #before block
|
|
if session.has_key? :to_path
|
|
redirect "/admin#{session.delete(:to_path)}"
|
|
else
|
|
redirect '/admin/'
|
|
end
|
|
end
|
|
end
|
|
|
|
get '/logout' do
|
|
session[:id] = nil
|
|
session[:last_updated] = nil
|
|
flash.notice = 'Logout complete'
|
|
redirect '/'
|
|
end
|
|
|
|
get '/stylesheet.css' do
|
|
scss :admin_stylesheet
|
|
end
|
|
|
|
helpers do
|
|
def session_read
|
|
if (session.has_key?(:id) && session.has_key?(:last_updated) &&
|
|
Time.now - session[:last_updated] < 1800)
|
|
Account.get(session[:id])
|
|
else
|
|
nil
|
|
end
|
|
end
|
|
|
|
def keys_to_sym hash
|
|
new_hash = {}
|
|
hash.each do |k, v|
|
|
new_hash[k.to_sym] = v
|
|
end
|
|
hash = new_hash
|
|
end
|
|
end
|
|
|
|
before do
|
|
@account = session_read
|
|
end
|
|
|
|
before %r{^(?!\/(login|stylesheet\.css)+$)} do
|
|
if @account.nil?
|
|
flash.warning = 'You are not logged in!'
|
|
session[:to_path] = request.path_info
|
|
redirect '/admin/login'
|
|
else
|
|
session[:last_updated] = Time.now
|
|
end
|
|
end
|
|
end
|