roundabout,
created on Friday, 3 January 2025, 14:50:29 (1735915829),
received on Friday, 3 January 2025, 14:50:32 (1735915832)
Author identity: vlad <vlad.muntoiu@gmail.com>
2f95090447c86bdb9046eaf49df04fdb92282fc4
app.py
@@ -1093,8 +1093,8 @@ def edit_gallery_post(id):
return flask.redirect("/gallery/" + str(gallery.id))
@app.route("/gallery/<int:id>/delete", methods=["POST"])
def edit_gallery_post(id):
@app.route("/gallery/<int:id>/delete")
def delete_gallery(id):
gallery = db.session.get(Gallery, id)
if gallery is None:
flask.abort(404)
@@ -1106,6 +1106,8 @@ def edit_gallery_post(id):
if current_user != gallery.owner and not current_user.admin:
flask.abort(403)
db.session.delete(gallery)
db.session.commit()
@@ -1881,12 +1883,8 @@ def api_delete_gallery(id):
if current_user != gallery.owner and not current_user.admin:
flask.abort(403)
for picture_in_gallery in gallery.pictures:
db.session.delete(picture_in_gallery)
for user_in_gallery in gallery.users:
db.session.delete(user_in_gallery)
db.session.delete(gallery)
db.session.commit()