completely ajaxify the picture page

2025-07-11 04:19:25 +00:00 · 2024-09-03 20:15:37 +02:00
parent d545becf24
commit bc40b92744
12 changed files with 605 additions and 480 deletions
--- a/sas/api.py
+++ b/sas/api.py
@ -9,14 +9,10 @@ from ninja_extra.permissions import IsAuthenticated
 from ninja_extra.schemas import PaginatedResponseSchema
 from pydantic import NonNegativeInt

-from core.api_permissions import CanView
+from core.api_permissions import CanView, IsOwner
 from core.models import Notification, User
 from sas.models import PeoplePictureRelation, Picture
-from sas.schemas import (
-    IdentifiedUserSchema,
-    PictureFilterSchema,
-    PictureSchema,
-)
+from sas.schemas import IdentifiedUserSchema, PictureFilterSchema, PictureSchema


@api_controller("/sas/picture")
@ -51,6 +47,7 @@ class PicturesController(ControllerBase):
            filters.filter(Picture.objects.viewable_by(user))
            .distinct()
            .order_by("-parent__date", "date")
+            .select_related("owner")
            .annotate(album=F("parent__name"))
        )

@ -88,6 +85,18 @@ class PicturesController(ControllerBase):
                },
            )

+    @route.delete("/{picture_id}", permissions=[IsOwner])
+    def delete_picture(self, picture_id: int):
+        self.get_object_or_exception(Picture, pk=picture_id).delete()
+
+    @route.patch("/{picture_id}/moderate", permissions=[IsOwner])
+    def moderate_picture(self, picture_id: int):
+        picture = self.get_object_or_exception(Picture, pk=picture_id)
+        picture.is_moderated = True
+        picture.moderator = self.context.request.user
+        picture.asked_for_removal = False
+        picture.save()
+

@api_controller("/sas/relation", tags="User identification on SAS pictures")
 class UsersIdentifiedController(ControllerBase):