make all this have a login page, use ldap, put a logo on, moved some upstream stuff to static/ -- need to do more here to be consistent with bootstrap 5, but for another day

2022-06-19 22:45:54 +10:00
parent 4725f006bc
commit c29f73f8ab
14 changed files with 274 additions and 9 deletions
--- a/loan.py
+++ b/loan.py
@@ -1,6 +1,7 @@
 from wtforms import SubmitField, StringField, HiddenField, validators, TextAreaField
 from flask_wtf import FlaskForm
 from flask import request, render_template, redirect
+from flask_login import login_required, current_user
 from wtforms import DateField
 from main import db, app, ma
 from datetime import date
@@ -48,6 +49,7 @@ class LoanForm(FlaskForm):
 # /loans -> GET only -> prints out list of all loans
 ################################################################################
@app.route("/loans", methods=["GET"])
+@login_required
 def loans():
    loans = Loan.query.all()
    return render_template("loans.html", loans=loans, alert=st.GetAlert(), message=st.GetMessage())
@@ -56,6 +58,7 @@ def loans():
 # /loan -> GET/POST -> creates a new loan type and when created, takes you back to /loans
 ################################################################################
@app.route("/loan", methods=["GET", "POST"])
+@login_required
 def new_loan():
    form = LoanForm(request.form)
    page_title='Create new Loan'
@@ -78,6 +81,7 @@ def new_loan():
 # /loan/<id> -> GET/POST(save or delete) -> shows/edits/delets a single loan
 ################################################################################
@app.route("/loan/<id>", methods=["GET", "POST"])
+@login_required
 def loan(id):
    ### DDP: should this be request.form or request.values?
    form = LoanForm(request.form)