1. 首頁
  2. 問答
  3. 限制每個用戶只能投一次票(投票,Django的,蟒蛇)

限制每個用戶只能投一次票(投票,Django的,蟒蛇)

2016-07-12 72 views
0

我發現了一個類似的問題here,但不像那裏不像在Django官方教程中,我沒有一個單獨的Choice類。我如何限制每個用戶只投一個?我應該在我的代碼中更改什麼?限制每個用戶只能投一次票(投票,Django的,蟒蛇)

我的models.py:

from django.contrib.auth.models import User 
class Law(models.Model): 
    #some code here 
    yes_votes = models.IntegerField(default=0) 
    no_votes = models.IntegerField(default=0) 


class Voter(models.Model): 
    user = models.ForeignKey(User) 
    law = models.ForeignKey(Law)

我views.py:

class LawDetailView(generic.DetailView): 
    model = Law 
    template_name = 'law_detail.html' 

    def get_queryset(self): 
     """ 
     Excludes any petitions that aren't published yet. 
     """ 
     return Law.objects.filter(pub_date__lte=timezone.now()) 


class LawResultsView(generic.DetailView): 
    model = Law 
    template_name = 'law_results.html' 






def law_yes_vote(request, law_id): 
    if Voter.objects.filter(law_id=law_id, user_id=request.user.id).exists(): 

     return render(request, 'law_detail.html', { 
     'law': p, 
     'error_message': "Sorry, but you have already voted." 
     }) 

    else: 
     p = get_object_or_404(Law, pk=law_id) 
     p.yes_votes += 1 
     p.save() 

     return HttpResponseRedirect(reverse('laws:law_results', args=(p.id,))) 



def law_no_vote(request, law_id): 
    if Voter.objects.filter(law_id=law_id, user_id=request.user.id).exists(): 

     return render(request, 'law_detail.html', { 
     'law': p, 
     'error_message': "Sorry, but you have already voted." 
     }) 

    else: 
     p = get_object_or_404(Law, pk=law_id) 
     p.no_votes += 1 
     p.save() 

     return HttpResponseRedirect(reverse('laws:law_results', args=(p.id,)))

我law_detail.html:

{% if request.user.is_authenticated %} 
{% if error_message %} 
<h1 >{{ error_message }}</h1> 

{% else %} 

<div class="row" id="row-voting"> 
<form action="{% url 'laws:law_yes_vote' law.id %}" method="post"> 
{% csrf_token %} 

<button class="btn btn-success" name="choice" id="choice{{ forloop.counter }}" value="{{ choice.id }}" > 
<label >YES</label> 
</form> 
<form action="{% url 'laws:law_no_vote' law.id %}" method="post"> 
{% csrf_token %} 

<button class="btn btn-danger" name="choice" id="choice{{ forloop.counter }}" value="{{ choice.id }}" > 
<label >NO</label> 
</form> 
</div> 
{% endif %} 
{% else %} 

<h1>Please, register</h1> 

{% endif %}

來源

2016-07-12 Vasile

+0

類取決於它是多麼的重要。如果它是一個玩具例如,添加一個'has_voted'布爾到'Voter'階級和他們的投票記錄後,很可能足以在你的視圖設置它。如果這是「真正的」,你可以有各種欺騙攻擊的考慮,問題很可能過於寬泛。 –

+0

好主意,謝謝! – Vasile

回答

1

看起來你已經忘記了創建voter用戶投票後的實例。

def law_yes_vote(request, law_id): 
    if Voter.objects.filter(law_id=law_id, user_id=request.user.id).exists(): 

     return render(request, 'law_detail.html', { 
      'law': p, 
      'error_message': "Sorry, but you have already voted." 
     }) 

    else: 
     p = get_object_or_404(Law, pk=law_id) 
     p.yes_votes += 1 
     p.save() 
     Voter.objects.create(law_id=law_id, user_id=request.user.id) 

    return HttpResponseRedirect(reverse('laws:law_results', args=(p.id,)))

你需要以同樣的方式來更新law_no_vote

來源

2016-07-12 15:25:46 Alasdair

相關問題

 相關問題