def avatar(user_id):
if current_user.id == user_id or current_user.can(Permission.UPDATE_OTHERS_INFORMATION):
the_user = User.query.get_or_404(user_id)
avatar_edit_form = AvatarEditForm()
avatar_upload_form = AvatarUploadForm()
if avatar_upload_form.validate_on_submit():
if 'avatar' in request.files:
forder = str(user_id)
avatar_name = avatars.save(avatar_upload_form.avatar.data, folder=forder)
the_user.avatar = json.dumps({"use_out_url": False, "url": avatar_name})
db.session.add(the_user)
db.session.commit()
flash(u'??????!', 'success')
return redirect(url_for('user.detail', user_id=user_id))
if avatar_edit_form.validate_on_submit():
the_user.avatar = json.dumps({"use_out_url": True, "url": avatar_edit_form.avatar_url.data})
db.session.add(the_user)
db.session.commit()
return redirect(url_for('user.detail', user_id=user_id))
return render_template('avatar_edit.html', user=the_user, avatar_edit_form=avatar_edit_form,
avatar_upload_form=avatar_upload_form, title=u"????")
else:
abort(403)
评论列表
文章目录
