erokemwa
diff --git a/‎.gitignore‎
Lines changed: 6 additions & 0 deletions b/‎.gitignore‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎flaskblog/__pycache__/__init__.cpython-311.pyc‎
-2.02 KB b/‎flaskblog/__pycache__/__init__.cpython-311.pyc‎
-2.02 KB
diff --git a/‎flaskblog/__pycache__/config.cpython-311.pyc‎
-902 Bytes b/‎flaskblog/__pycache__/config.cpython-311.pyc‎
-902 Bytes
diff --git a/‎flaskblog/__pycache__/models.cpython-311.pyc‎
-3.93 KB b/‎flaskblog/__pycache__/models.cpython-311.pyc‎
-3.93 KB
diff --git a/‎flaskblog/main/routes.py‎
Lines changed: 3 additions & 1 deletion b/‎flaskblog/main/routes.py‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎flaskblog/models.py‎
Lines changed: 7 additions & 7 deletions b/‎flaskblog/models.py‎
Lines changed: 7 additions & 7 deletions
diff --git a/‎flaskblog/posts/routes.py‎
Lines changed: 3 additions & 3 deletions b/‎flaskblog/posts/routes.py‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎flaskblog/users/__pycache__/__init__.cpython-311.pyc‎
-171 Bytes b/‎flaskblog/users/__pycache__/__init__.cpython-311.pyc‎
-171 Bytes
diff --git a/‎flaskblog/users/__pycache__/routes.cpython-311.pyc‎
-8.72 KB b/‎flaskblog/users/__pycache__/routes.cpython-311.pyc‎
-8.72 KB
diff --git a/‎flaskblog/users/routes.py‎
Lines changed: 4 additions & 4 deletions b/‎flaskblog/users/routes.py‎
Lines changed: 4 additions & 4 deletions
@@ -0,0 +1,6 @@
+__pycache__/
+*.py[cod]
+*.pyo
+instance/
+*.db
+.env
@@ -1,4 +1,6 @@
 from flask import render_template, request, Blueprint
+from sqlalchemy import select
+from flaskblog import db
 from flaskblog.models import Post
 
 main = Blueprint('main', __name__)
@@ -8,7 +10,7 @@
 @main.route("/home")
 def home():
     page = request.args.get('page', 1, type=int)
-    posts = Post.query.order_by(Post.date_posted.desc()).paginate(page=page, per_page=5)
+    posts = db.paginate(select(Post).order_by(Post.date_posted.desc()), page=page, per_page=5)
     return render_template('home.html', posts=posts)
 
 
 
@@ -1,13 +1,13 @@
 from datetime import datetime
-from itsdangerous import TimedJSONWebSignatureSerializer
+from itsdangerous.url_safe import URLSafeTimedSerializer as Serializer
 from flask import current_app
 from flaskblog import db, login_manager
 from flask_login import UserMixin
 
 
 @login_manager.user_loader
 def load_user(user_id):
-    return User.query.get(int(user_id))
+    return db.session.get(User, int(user_id))
 
 
 class User(db.Model, UserMixin):
@@ -19,17 +19,17 @@ class User(db.Model, UserMixin):
     posts = db.relationship('Post', backref='author', lazy=True)
 
     def get_reset_token(self, expires_sec=1800):
-        s = Serializer(current_app.config['SECRET_KEY'], expires_sec)
-        return s.dumps({'user_id': self.id}).decode('utf-8')
+        s = Serializer(current_app.config['SECRET_KEY'])
+        return s.dumps({'user_id': self.id})
 
     @staticmethod
     def verify_reset_token(token):
         s = Serializer(current_app.config['SECRET_KEY'])
         try:
-            user_id = s.loads(token)['user_id']
-        except:
+            user_id = s.loads(token, max_age=1800)['user_id']
+        except Exception:
             return None
-        return User.query.get(user_id)
+        return db.session.get(User, user_id)
 
     def __repr__(self):
         return f"User('{self.username}', '{self.email}', '{self.image_file}')"
 
@@ -24,14 +24,14 @@ def new_post():
 
 @posts.route("/post/<int:post_id>")
 def post(post_id):
-    post = Post.query.get_or_404(post_id)
+    post = db.get_or_404(Post, post_id)
     return render_template('post.html', title=post.title, post=post)
 
 
 @posts.route("/post/<int:post_id>/update", methods=['GET', 'POST'])
 @login_required
 def update_post(post_id):
-    post = Post.query.get_or_404(post_id)
+    post = db.get_or_404(Post, post_id)
     if post.author != current_user:
         abort(403)
     form = PostForm()
@@ -51,7 +51,7 @@ def update_post(post_id):
 @posts.route("/post/<int:post_id>/delete", methods=['POST'])
 @login_required
 def delete_post(post_id):
-    post = Post.query.get_or_404(post_id)
+    post = db.get_or_404(Post, post_id)
     if post.author != current_user:
         abort(403)
     db.session.delete(post)
 
@@ -1,5 +1,6 @@
 from flask import render_template, url_for, flash, redirect, request, Blueprint
 from flask_login import login_user, current_user, logout_user, login_required
+from sqlalchemy import select
 from flaskblog import db, bcrypt
 from flaskblog.models import User, Post
 from flaskblog.users.forms import (RegistrationForm, LoginForm, UpdateAccountForm,
@@ -70,10 +71,9 @@ def account():
 @users.route("/user/<string:username>")
 def user_posts(username):
     page = request.args.get('page', 1, type=int)
-    user = User.query.filter_by(username=username).first_or_404()
-    posts = Post.query.filter_by(author=user)\
-        .order_by(Post.date_posted.desc())\
-        .paginate(page=page, per_page=5)
+    user = db.first_or_404(select(User).filter_by(username=username))
+    posts = db.paginate(select(Post).filter_by(author=user)
+                        .order_by(Post.date_posted.desc()), page=page, per_page=5)
     return render_template('user_posts.html', posts=posts, user=user)