andreas/flask-base
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: andreas:main
Branches Tags
andreas:main
andreas:dev
..
compare: andreas:dev
Branches Tags
andreas:dev
andreas:main

1 Commits
main ... dev

Author SHA1 Message Date
Andreas Jönsson
a9986476d0 added protection against deleting last admin, played around with dashbord for joke 2025-11-17 21:20:52 +01:00
2 changed files with 6 additions and 1 deletions
Show Stats Expand all files Collapse all files

5
app.py
View File

@ -120,6 +120,11 @@ def admin():
user = User.query.get(user_id) user = User.query.get(user_id)
if user and user != current_user: # Prevent self-modification if user and user != current_user: # Prevent self-modification
if action in ['demote', 'delete'] and user.admin:
admin_count = User.query.filter_by(admin=True).count()
if admin_count == 1:
abort(400, description="Cannot remove last admin")
if action == "promote": if action == "promote":
user.admin = True user.admin = True
elif action == "demote": elif action == "demote":

2
templates/dashboard.html
View File

@ -21,7 +21,7 @@
</li> </li>
<li class="list-group-item d-flex justify-content-between"> <li class="list-group-item d-flex justify-content-between">
<span>Account Created:</span> <span>Account Created:</span>
<span class="text-muted">Just now</span> <span class="text-muted">Before the dinosaurs, there was your account</span>
</li> </li>
</ul> </ul>
</div> </div>