Coverage for app/controllers/admin/routes.py: 22%
457 statements
« prev ^ index » next coverage.py v7.2.7, created at 2025-05-02 15:35 +0000
1from flask import request, render_template, url_for, g, redirect
2from flask import flash, abort, jsonify, session, send_file
3from peewee import DoesNotExist, fn, IntegrityError
4from playhouse.shortcuts import model_to_dict
5import json
6from datetime import datetime
7import os
9from app import app
10from app.models.backgroundCheck import BackgroundCheck
11from app.models.program import Program
12from app.models.event import Event
13from app.models.eventRsvp import EventRsvp
14from app.models.eventParticipant import EventParticipant
15from app.models.user import User
16from app.models.course import Course
17from app.models.courseInstructor import CourseInstructor
18from app.models.courseParticipant import CourseParticipant
19from app.models.eventTemplate import EventTemplate
20from app.models.activityLog import ActivityLog
21from app.models.eventRsvpLog import EventRsvpLog
22from app.models.attachmentUpload import AttachmentUpload
23from app.models.bonnerCohort import BonnerCohort
24from app.models.eventCohort import EventCohort
25from app.models.certification import Certification
26from app.models.user import User
27from app.models.term import Term
28from app.models.eventViews import EventView
29from app.models.courseStatus import CourseStatus
31from app.logic.userManagement import getAllowedPrograms, getAllowedTemplates
32from app.logic.createLogs import createActivityLog
33from app.logic.certification import getCertRequirements, updateCertRequirements
34from app.logic.utils import selectSurroundingTerms, getFilesFromRequest, getRedirectTarget, setRedirectTarget
35from app.logic.events import attemptSaveMultipleOfferings, cancelEvent, deleteEvent, attemptSaveEvent, preprocessEventData, getRepeatingEventsData, deleteEventAndAllFollowing, deleteAllEventsInSeries, getBonnerEvents,addEventView, getEventRsvpCount, copyRsvpToNewEvent, getCountdownToEvent, calculateNewSeriesId, inviteCohortsToEvent, updateEventCohorts
36from app.logic.participants import getParticipationStatusForTrainings, checkUserRsvp
37from app.logic.minor import getMinorInterest
38from app.logic.fileHandler import FileHandler
39from app.logic.bonner import getBonnerCohorts, makeBonnerXls, rsvpForBonnerCohort, addBonnerCohortToRsvpLog
40from app.logic.serviceLearningCourses import parseUploadedFile, saveCourseParticipantsToDatabase, unapprovedCourses, approvedCourses, getImportedCourses, getInstructorCourses, editImportedCourses
42from app.controllers.admin import admin_bp
43from app.logic.spreadsheet import createSpreadsheet
46@admin_bp.route('/admin/reports')
47def reports():
48 academicYears = Term.select(Term.academicYear).distinct().order_by(Term.academicYear.desc())
49 academicYears = list(map(lambda t: t.academicYear, academicYears))
50 return render_template("/admin/reports.html", academicYears=academicYears)
52@admin_bp.route('/admin/reports/download', methods=['POST'])
53def downloadFile():
54 academicYear = request.form.get('academicYear')
55 filepath = os.path.abspath(createSpreadsheet(academicYear))
56 return send_file(filepath, as_attachment=True)
60@admin_bp.route('/switch_user', methods=['POST'])
61def switchUser():
62 if app.env == "production":
63 print(f"An attempt was made to switch to another user by {g.current_user.username}!")
64 abort(403)
66 print(f"Switching user from {g.current_user} to",request.form['newuser'])
67 session['current_user'] = model_to_dict(User.get_by_id(request.form['newuser']))
69 return redirect(request.referrer)
72@admin_bp.route('/eventTemplates')
73def templateSelect():
74 if g.current_user.isCeltsAdmin or g.current_user.isCeltsStudentStaff:
75 allprograms = getAllowedPrograms(g.current_user)
76 visibleTemplates = getAllowedTemplates(g.current_user)
77 return render_template("/events/templateSelector.html",
78 programs=allprograms,
79 celtsSponsoredProgram = Program.get(Program.isOtherCeltsSponsored),
80 templates=visibleTemplates)
81 else:
82 abort(403)
85@admin_bp.route('/eventTemplates/<templateid>/<programid>/create', methods=['GET','POST'])
86def createEvent(templateid, programid):
87 if not (g.current_user.isAdmin or g.current_user.isProgramManagerFor(programid)):
88 abort(403)
90 # Validate given URL
91 program = None
92 try:
93 template = EventTemplate.get_by_id(templateid)
94 if programid:
95 program = Program.get_by_id(programid)
96 except DoesNotExist as e:
97 print("Invalid template or program id:", e)
98 flash("There was an error with your selection. Please try again or contact Systems Support.", "danger")
99 return redirect(url_for("admin.program_picker"))
101 # Get the data from the form or from the template
102 eventData = template.templateData
103 eventData['program'] = program
105 if request.method == "GET":
106 eventData['contactName'] = "CELTS Admin"
107 eventData['contactEmail'] = app.config['celts_admin_contact']
108 if program:
109 eventData['location'] = program.defaultLocation
110 if program.contactName:
111 eventData['contactName'] = program.contactName
112 if program.contactEmail:
113 eventData['contactEmail'] = program.contactEmail
115 # Try to save the form
116 if request.method == "POST":
117 savedEvents = None
118 eventData.update(request.form.copy())
119 eventData = preprocessEventData(eventData)
120 if eventData.get('isSeries'):
121 eventData['seriesData'] = json.loads(eventData['seriesData'])
122 succeeded, savedEvents, failedSavedOfferings = attemptSaveMultipleOfferings(eventData, getFilesFromRequest(request))
123 if not succeeded:
124 for index, validationErrorMessage in failedSavedOfferings:
125 eventData['seriesData'][index]['isDuplicate'] = True
126 validationErrorMessage = failedSavedOfferings[-1][1] # The last validation error message from the list of offerings if there are multiple
127 print(f"Failed to save offerings {failedSavedOfferings}")
128 else:
129 try:
130 savedEvents, validationErrorMessage = attemptSaveEvent(eventData, getFilesFromRequest(request))
131 except Exception as e:
132 print("Failed saving regular event", e)
133 validationErrorMessage = "Failed to save event."
135 if savedEvents:
136 rsvpCohorts = request.form.getlist("cohorts[]")
137 if rsvpCohorts:
138 success, message, invitedCohorts = inviteCohortsToEvent(savedEvents[0], rsvpCohorts)
139 if not success:
140 flash(message, 'warning')
142 noun = ((eventData.get('isSeries')) and "Events" or "Event") # pluralize
143 flash(f"{noun} successfully created!", 'success')
146 if program:
147 if len(savedEvents) > 1 and eventData.get('isRepeating'):
148 createActivityLog(f"Created a repeating series, <a href=\"{url_for('admin.eventDisplay', eventId = savedEvents[0].id)}\">{savedEvents[0].name[:-7]}</a>, for {program.programName}, with a start date of {datetime.strftime(savedEvents[0].startDate, '%m/%d/%Y')}. The last event in the series will be on {datetime.strftime(savedEvents[-1].startDate, '%m/%d/%Y')}.")
149 elif len(savedEvents) >= 1 and eventData.get('isSeries'):
150 eventDates = [eventData.startDate.strftime('%m/%d/%Y') for eventData in savedEvents]
151 eventList = ', '.join(f"<a href=\"{url_for('admin.eventDisplay', eventId=event.id)}\">{event.name}</a>" for event in savedEvents)
153 if len(savedEvents) > 1:
154 #creates list of events created in a multiple series to display in the logs
155 eventList = ', '.join(eventList.split(', ')[:-1]) + f', and ' + eventList.split(', ')[-1]
156 #get last date and stick at the end after 'and' so that it reads like a sentence in admin log
157 lastEventDate = eventDates[-1]
158 eventDates = ', '.join(eventDates[:-1]) + f', and {lastEventDate}'
160 createActivityLog(f"Created series {eventList} for {program.programName}, with start dates of {eventDates}.")
162 else:
163 createActivityLog(f"Created event <a href=\"{url_for('admin.eventDisplay', eventId = savedEvents[0].id)}\">{savedEvents[0].name}</a> for {program.programName}, with a start date of {datetime.strftime(eventData['startDate'], '%m/%d/%Y')}.")
164 else:
165 createActivityLog(f"Created a non-program event, <a href=\"{url_for('admin.eventDisplay', eventId = savedEvents[0].id)}\">{savedEvents[0].name}</a>, with a start date of {datetime.strftime(eventData['startDate'], '%m/%d/%Y')}.")
167 return redirect(url_for("admin.eventDisplay", eventId = savedEvents[0].id))
168 else:
169 flash(validationErrorMessage, 'warning')
171 # make sure our data is the same regardless of GET or POST
172 preprocessEventData(eventData)
173 isProgramManager = g.current_user.isProgramManagerFor(programid)
175 futureTerms = selectSurroundingTerms(g.current_term, prevTerms=0)
177 requirements, bonnerCohorts = [], []
178 if eventData['program'] is not None and eventData['program'].isBonnerScholars:
179 requirements = getCertRequirements(Certification.BONNER)
180 rawBonnerCohorts = getBonnerCohorts(limit=5)
181 bonnerCohorts = {}
183 for year, cohort in rawBonnerCohorts.items():
184 if cohort:
185 bonnerCohorts[year] = cohort
188 return render_template(f"/events/{template.templateFile}",
189 template = template,
190 eventData = eventData,
191 futureTerms = futureTerms,
192 requirements = requirements,
193 bonnerCohorts = bonnerCohorts,
194 isProgramManager = isProgramManager)
197@admin_bp.route('/event/<eventId>/rsvp', methods=['GET'])
198def rsvpLogDisplay(eventId):
199 event = Event.get_by_id(eventId)
200 if g.current_user.isCeltsAdmin or (g.current_user.isCeltsStudentStaff and g.current_user.isProgramManagerFor(event.program)):
201 allLogs = EventRsvpLog.select(EventRsvpLog, User).join(User, on=(EventRsvpLog.createdBy == User.username)).where(EventRsvpLog.event_id == eventId).order_by(EventRsvpLog.createdOn.desc())
202 return render_template("/events/rsvpLog.html",
203 event = event,
204 allLogs = allLogs)
205 else:
206 abort(403)
208@admin_bp.route('/event/<eventId>/renew', methods=['POST'])
209def renewEvent(eventId):
210 try:
211 formData = request.form
212 try:
213 assert formData['timeStart'] < formData['timeEnd']
214 except AssertionError:
215 flash("End time must be after start time", 'warning')
216 return redirect(url_for('admin.eventDisplay', eventId = eventId))
218 try:
219 if formData.get('dateEnd'):
220 assert formData['dateStart'] < formData['dateEnd']
221 except AssertionError:
222 flash("End date must be after start date", 'warning')
223 return redirect(url_for('admin.eventDisplay', eventId = eventId))
226 priorEvent = model_to_dict(Event.get_by_id(eventId))
227 newEventDict = priorEvent.copy()
228 newEventDict.pop('id')
229 newEventDict.update({
230 'program': int(priorEvent['program']['id']),
231 'term': int(priorEvent['term']['id']),
232 'timeStart': formData['timeStart'],
233 'timeEnd': formData['timeEnd'],
234 'location': formData['location'],
235 'startDate': f'{formData["startDate"][-4:]}-{formData["startDate"][0:-5]}',
236 'isRepeating': bool(priorEvent['isRepeating']),
237 'seriesId': priorEvent['seriesId'],
238 })
239 newEvent, message = attemptSaveEvent(newEventDict, renewedEvent = True)
240 if message:
241 flash(message, "danger")
242 return redirect(url_for('admin.eventDisplay', eventId = eventId))
244 copyRsvpToNewEvent(priorEvent, newEvent[0])
245 createActivityLog(f"Renewed {priorEvent['name']} as <a href='event/{newEvent[0].id}/view'>{newEvent[0].name}</a>.")
246 flash("Event successfully renewed.", "success")
247 return redirect(url_for('admin.eventDisplay', eventId = newEvent[0].id))
250 except Exception as e:
251 print("Error while trying to renew event:", e)
252 flash("There was an error renewing the event. Please try again or contact Systems Support.", 'danger')
253 return redirect(url_for('admin.eventDisplay', eventId = eventId))
257@admin_bp.route('/event/<eventId>/view', methods=['GET'])
258@admin_bp.route('/event/<eventId>/edit', methods=['GET','POST'])
259def eventDisplay(eventId):
260 pageViewsCount = EventView.select().where(EventView.event == eventId).count()
261 if request.method == 'GET' and request.path == f'/event/{eventId}/view':
262 viewer = g.current_user
263 event = Event.get_by_id(eventId)
264 addEventView(viewer,event)
265 # Validate given URL
266 try:
267 event = Event.get_by_id(eventId)
268 invitedCohorts = list(EventCohort.select().where(
269 EventCohort.event == event
270 ))
271 invitedYears = [str(cohort.year) for cohort in invitedCohorts]
272 except DoesNotExist as e:
273 print(f"Unknown event: {eventId}")
274 abort(404)
276 notPermitted = not (g.current_user.isCeltsAdmin or g.current_user.isProgramManagerForEvent(event))
277 if 'edit' in request.url_rule.rule and notPermitted:
278 abort(403)
280 eventData = model_to_dict(event, recurse=False)
281 associatedAttachments = AttachmentUpload.select().where(AttachmentUpload.event == event)
282 filepaths = FileHandler(eventId=event.id).retrievePath(associatedAttachments)
284 image = None
285 picurestype = [".jpeg", ".png", ".gif", ".jpg", ".svg", ".webp"]
286 for attachment in associatedAttachments:
287 for extension in picurestype:
288 if (attachment.fileName.endswith(extension) and attachment.isDisplayed == True):
289 image = filepaths[attachment.fileName][0]
290 if image:
291 break
294 if request.method == "POST": # Attempt to save form
295 eventData = request.form.copy()
296 try:
297 savedEvents, validationErrorMessage = attemptSaveEvent(eventData, getFilesFromRequest(request))
299 except Exception as e:
300 print("Error saving event:", e)
301 savedEvents = False
302 validationErrorMessage = "Unknown Error Saving Event. Please try again"
305 if savedEvents:
306 rsvpCohorts = request.form.getlist("cohorts[]")
307 updateEventCohorts(savedEvents[0], rsvpCohorts)
308 flash("Event successfully updated!", "success")
309 return redirect(url_for("admin.eventDisplay", eventId = event.id))
310 else:
311 flash(validationErrorMessage, 'warning')
313 # make sure our data is the same regardless of GET and POST
314 preprocessEventData(eventData)
315 eventData['program'] = event.program
316 futureTerms = selectSurroundingTerms(g.current_term)
317 userHasRSVPed = checkUserRsvp(g.current_user, event)
318 filepaths = FileHandler(eventId=event.id).retrievePath(associatedAttachments)
319 isProgramManager = g.current_user.isProgramManagerFor(eventData['program'])
320 requirements, bonnerCohorts = [], []
322 if eventData['program'] and eventData['program'].isBonnerScholars:
323 requirements = getCertRequirements(Certification.BONNER)
324 rawBonnerCohorts = getBonnerCohorts(limit=5)
325 bonnerCohorts = {}
327 for year, cohort in rawBonnerCohorts.items():
328 if cohort:
329 bonnerCohorts[year] = cohort
330 invitedCohorts = list(EventCohort.select().where(
331 EventCohort.event_id == eventId,
332 ))
333 invitedYears = [str(cohort.year) for cohort in invitedCohorts]
334 else:
335 requirements, bonnerCohorts, invitedYears = [], [], []
337 rule = request.url_rule
339 # Event Edit
340 if 'edit' in rule.rule:
341 return render_template("events/createEvent.html",
342 eventData = eventData,
343 futureTerms = futureTerms,
344 event = event,
345 requirements = requirements,
346 bonnerCohorts = bonnerCohorts,
347 invitedYears = invitedYears,
348 userHasRSVPed = userHasRSVPed,
349 isProgramManager = isProgramManager,
350 filepaths = filepaths)
351 # Event View
352 else:
353 # get text representations of dates for html
354 eventData['timeStart'] = event.timeStart.strftime("%-I:%M %p")
355 eventData['timeEnd'] = event.timeEnd.strftime("%-I:%M %p")
356 eventData['startDate'] = event.startDate.strftime("%m/%d/%Y")
357 eventCountdown = getCountdownToEvent(event)
360 # Identify the next event in a repeating series
361 if event.seriesId:
362 eventSeriesList = list(Event.select().where(Event.seriesId == event.seriesId)
363 .where((Event.isCanceled == False) | (Event.id == event.id))
364 .order_by(Event.startDate))
365 eventIndex = eventSeriesList.index(event)
366 if len(eventSeriesList) != (eventIndex + 1):
367 eventData["nextRepeatingEvent"] = eventSeriesList[eventIndex + 1]
369 currentEventRsvpAmount = getEventRsvpCount(event.id)
371 userParticipatedTrainingEvents = getParticipationStatusForTrainings(eventData['program'], [g.current_user], g.current_term)
373 return render_template("events/eventView.html",
374 eventData=eventData,
375 event=event,
376 userHasRSVPed=userHasRSVPed,
377 programTrainings=userParticipatedTrainingEvents,
378 currentEventRsvpAmount=currentEventRsvpAmount,
379 isProgramManager=isProgramManager,
380 filepaths=filepaths,
381 image=image,
382 pageViewsCount=pageViewsCount,
383 invitedYears=invitedYears,
384 eventCountdown=eventCountdown
385 )
389@admin_bp.route('/event/<eventId>/cancel', methods=['POST'])
390def cancelRoute(eventId):
391 if g.current_user.isAdmin:
392 try:
393 cancelEvent(eventId)
394 return redirect(request.referrer)
396 except Exception as e:
397 print('Error while canceling event:', e)
398 return "", 500
400 else:
401 abort(403)
403@admin_bp.route('/profile/undo', methods=['GET'])
404def undoBackgroundCheck():
405 try:
406 username = g.current_user
407 bgCheckId = session['lastDeletedBgCheck']
408 BackgroundCheck.update({BackgroundCheck.deletionDate: None, BackgroundCheck.deletedBy: None}).where(BackgroundCheck.id == bgCheckId).execute()
409 flash("Background Check has been successfully restored.", "success")
410 return redirect (f"/profile/{username}?accordion=background")
411 except Exception as e:
412 print('Error while undoing background check:', e)
413 return "", 500
415@admin_bp.route('/event/undo', methods=['GET'])
416def undoEvent():
417 try:
418 eventIds = session['lastDeletedEvent'] #list of Ids of the events that got deleted
419 for eventId in eventIds:
420 Event.update({Event.deletionDate: None, Event.deletedBy: None}).where(Event.id == eventId).execute()
421 event = Event.get_or_none(Event.id == eventId)
422 repeatingEvents = list(Event.select().where((Event.seriesId == event.seriesId) & (Event.isRepeating) & (Event.deletionDate == None)).order_by(Event.id))
423 if event.isRepeating:
424 nameCounter = 1
425 for repeatingEvent in repeatingEvents:
426 newEventNameList = repeatingEvent.name.split()
427 newEventNameList[-1] = f"{nameCounter}"
428 newEventNameList = " ".join(newEventNameList)
429 Event.update({Event.name: newEventNameList}).where(Event.id==repeatingEvent.id).execute()
430 nameCounter += 1
431 flash("Event has been successfully restored.", "success")
432 return redirect(url_for("main.events", selectedTerm=g.current_term))
433 except Exception as e:
434 print('Error while canceling event:', e)
435 return "", 500
437@admin_bp.route('/event/<eventId>/delete', methods=['POST'])
438def deleteRoute(eventId):
439 try:
440 deleteEvent(eventId)
441 session['lastDeletedEvent'] = [eventId]
442 flash("Event successfully deleted.", "success")
443 return redirect(url_for("main.events", selectedTerm=g.current_term))
445 except Exception as e:
446 print('Error while canceling event:', e)
447 return "", 500
449@admin_bp.route('/event/<eventId>/deleteEventAndAllFollowing', methods=['POST'])
450def deleteEventAndAllFollowingRoute(eventId):
451 try:
452 session["lastDeletedEvent"] = deleteEventAndAllFollowing(eventId)
453 flash("Events successfully deleted.", "success")
454 return redirect(url_for("main.events", selectedTerm=g.current_term))
456 except Exception as e:
457 print('Error while canceling event:', e)
458 return "", 500
460@admin_bp.route('/event/<eventId>/deleteAllEventsInSeries', methods=['POST'])
461def deleteAllEventsInSeriesRoute(eventId):
462 try:
463 session["lastDeletedEvent"] = deleteAllEventsInSeries(eventId)
464 flash("Events successfully deleted.", "success")
465 return redirect(url_for("main.events", selectedTerm=g.current_term))
467 except Exception as e:
468 print('Error while canceling event:', e)
469 return "", 500
471@admin_bp.route('/makeRepeatingEvents', methods=['POST'])
472def addRepeatingEvents():
473 repeatingEvents = getRepeatingEventsData(preprocessEventData(request.form.copy()))
474 return json.dumps(repeatingEvents, default=str)
477@admin_bp.route('/userProfile', methods=['POST'])
478def userProfile():
479 volunteerName= request.form.copy()
480 if volunteerName['searchStudentsInput']:
481 username = volunteerName['searchStudentsInput'].strip("()")
482 user=username.split('(')[-1]
483 return redirect(url_for('main.viewUsersProfile', username=user))
484 else:
485 flash(f"Please enter the first name or the username of the student you would like to search for.", category='danger')
486 return redirect(url_for('admin.studentSearchPage'))
488@admin_bp.route('/search_student', methods=['GET'])
489def studentSearchPage():
490 if g.current_user.isAdmin:
491 return render_template("/admin/searchStudentPage.html")
492 abort(403)
494@admin_bp.route('/activityLogs', methods = ['GET', 'POST'])
495def activityLogs():
496 if g.current_user.isCeltsAdmin:
497 allLogs = ActivityLog.select(ActivityLog, User).join(User).order_by(ActivityLog.createdOn.desc())
498 return render_template("/admin/activityLogs.html",
499 allLogs = allLogs)
500 else:
501 abort(403)
503@admin_bp.route("/deleteEventFile", methods=["POST"])
504def deleteEventFile():
505 fileData= request.form
506 eventfile=FileHandler(eventId=fileData["databaseId"])
507 eventfile.deleteFile(fileData["fileId"])
508 return ""
510@admin_bp.route("/uploadCourseParticipant", methods= ["POST"])
511def addCourseFile():
512 fileData = request.files['addCourseParticipants']
513 filePath = os.path.join(app.config["files"]["base_path"], fileData.filename)
514 fileData.save(filePath)
515 (session['cpPreview'], session['cpErrors']) = parseUploadedFile(filePath)
516 os.remove(filePath)
517 return redirect(url_for("admin.manageServiceLearningCourses"))
519@admin_bp.route('/manageServiceLearning', methods = ['GET', 'POST'])
520@admin_bp.route('/manageServiceLearning/<term>', methods = ['GET', 'POST'])
521def manageServiceLearningCourses(term=None):
523 """
524 The SLC management page for admins
525 """
526 if not g.current_user.isCeltsAdmin:
527 abort(403)
529 if request.method == 'POST' and "submitParticipant" in request.form:
530 saveCourseParticipantsToDatabase(session.pop('cpPreview', {}))
531 flash('Courses and participants saved successfully!', 'success')
532 return redirect(url_for('admin.manageServiceLearningCourses'))
534 manageTerm = Term.get_or_none(Term.id == term) or g.current_term
536 setRedirectTarget(request.full_path)
537 # retrieve and store the courseID of the imported course from a session variable if it exists.
538 # This allows us to export the courseID in the html and use it.
539 courseID = session.get("alterCourseId")
541 if courseID:
542 # delete courseID from the session if it was retrieved, for storage purposes.
543 session.pop("alterCourseId")
544 return render_template('/admin/manageServiceLearningFaculty.html',
545 courseInstructors = getInstructorCourses(),
546 unapprovedCourses = unapprovedCourses(manageTerm),
547 approvedCourses = approvedCourses(manageTerm),
548 importedCourses = getImportedCourses(manageTerm),
549 terms = selectSurroundingTerms(g.current_term),
550 term = manageTerm,
551 cpPreview = session.get('cpPreview', {}),
552 cpPreviewErrors = session.get('cpErrors', []),
553 courseID = courseID
554 )
556 return render_template('/admin/manageServiceLearningFaculty.html',
557 courseInstructors = getInstructorCourses(),
558 unapprovedCourses = unapprovedCourses(manageTerm),
559 approvedCourses = approvedCourses(manageTerm),
560 importedCourses = getImportedCourses(manageTerm),
561 terms = selectSurroundingTerms(g.current_term),
562 term = manageTerm,
563 cpPreview= session.get('cpPreview',{}),
564 cpPreviewErrors = session.get('cpErrors',[])
565 )
567@admin_bp.route('/admin/getSidebarInformation', methods=['GET'])
568def getSidebarInformation() -> str:
569 """
570 Get the count of unapproved courses and students interested in the minor for the current term
571 to display in the admin sidebar. It must be returned as a string to be received by the
572 ajax request.
573 """
574 unapprovedCoursesCount: int = len(unapprovedCourses(g.current_term))
575 interestedStudentsCount: int = len(getMinorInterest())
576 return {"unapprovedCoursesCount": unapprovedCoursesCount,
577 "interestedStudentsCount": interestedStudentsCount}
579@admin_bp.route("/deleteUploadedFile", methods= ["POST"])
580def removeFromSession():
581 try:
582 session.pop('cpPreview')
583 except KeyError:
584 pass
586 return ""
588@admin_bp.route('/manageServiceLearning/imported/<courseID>', methods = ['POST', 'GET'])
589def alterImportedCourse(courseID):
590 """
591 This route handles a GET and a POST request for the purpose of imported courses.
592 The GET request provides preexisting information of an imported course in a modal.
593 The POST request updates a specific imported course (course name, course abbreviation,
594 hours earned on completion, list of instructors) in the database with new information
595 coming from the imported courses modal.
596 """
597 if request.method == 'GET':
598 try:
599 targetCourse = Course.get_by_id(courseID)
600 targetInstructors = CourseInstructor.select().where(CourseInstructor.course == targetCourse)
602 try:
603 serviceHours = list(CourseParticipant.select().where(CourseParticipant.course_id == targetCourse.id))[0].hoursEarned
604 except IndexError: # If a course has no participant, IndexError will be raised
605 serviceHours = 20
607 courseData = model_to_dict(targetCourse, recurse=False)
608 courseData['instructors'] = [model_to_dict(instructor.user) for instructor in targetInstructors]
609 courseData['hoursEarned'] = serviceHours
611 return jsonify(courseData)
613 except DoesNotExist:
614 flash("Course not found")
615 return jsonify({"error": "Course not found"}), 404
617 if request.method == 'POST':
618 # Update course information in the database
619 courseData = request.form.copy()
620 editImportedCourses(courseData)
621 session['alterCourseId'] = courseID
623 return redirect(url_for("admin.manageServiceLearningCourses", term=courseData['termId']))
626@admin_bp.route("/manageBonner")
627def manageBonner():
628 if not g.current_user.isCeltsAdmin:
629 abort(403)
631 return render_template("/admin/bonnerManagement.html",
632 cohorts=getBonnerCohorts(),
633 events=getBonnerEvents(g.current_term),
634 requirements=getCertRequirements(certification=Certification.BONNER))
636@admin_bp.route("/bonner/<year>/<method>/<username>", methods=["POST"])
637def updatecohort(year, method, username):
638 if not g.current_user.isCeltsAdmin:
639 abort(403)
641 try:
642 user = User.get_by_id(username)
643 except:
644 abort(500)
646 if method == "add":
647 try:
648 BonnerCohort.create(year=year, user=user)
649 flash(f"Successfully added {user.fullName} to {year} Bonner Cohort.", "success")
650 except IntegrityError as e:
651 # if they already exist, ignore the error
652 flash(f'Error: {user.fullName} already added.', "danger")
653 pass
655 elif method == "remove":
656 BonnerCohort.delete().where(BonnerCohort.user == user, BonnerCohort.year == year).execute()
657 flash(f"Successfully removed {user.fullName} from {year} Bonner Cohort.", "success")
658 else:
659 flash(f"Error: {user.fullName} can't be added.", "danger")
660 abort(500)
662 return ""
664@admin_bp.route("/bonnerxls")
665def bonnerxls():
666 if not g.current_user.isCeltsAdmin:
667 abort(403)
669 newfile = makeBonnerXls()
670 return send_file(open(newfile, 'rb'), download_name='BonnerStudents.xlsx', as_attachment=True)
672@admin_bp.route("/saveRequirements/<certid>", methods=["POST"])
673def saveRequirements(certid):
674 if not g.current_user.isCeltsAdmin:
675 abort(403)
677 newRequirements = updateCertRequirements(certid, request.get_json())
679 return jsonify([requirement.id for requirement in newRequirements])
682@admin_bp.route("/displayEventFile", methods=["POST"])
683def displayEventFile():
684 fileData = request.form
685 eventfile = FileHandler(eventId=fileData["id"])
686 isChecked = fileData.get('checked') == 'true'
687 eventfile.changeDisplay(fileData['id'], isChecked)
688 return ""