add most mod routes

2026-04-16 23:11:19 +03:00
parent d6b44da6c2
commit 9c4f271259
14 changed files with 216 additions and 34 deletions
--- a/app/auth.py
+++ b/app/auth.py
@@ -1,4 +1,4 @@
-from flask import session, flash, redirect, url_for
+from flask import session, flash, redirect, url_for, abort
 from .models import Sessions, Users
 from argon2 import PasswordHasher
 from functools import wraps
@@ -51,3 +51,13 @@ def login_required(view_func):
            return redirect(url_for('users.log_in_page'))
        return view_func(*args, **kwargs)
    return wrapper
+
+def mod_only(view_func):
+    @wraps(view_func)
+    def wrapper(*args, **kwargs):
+        if not is_logged_in():
+            abort(403)
+        if not get_active_user().is_mod():
+            abort(403)
+        return view_func(*args, **kwargs)
+    return wrapper