From 7f6f246073f237c241696533a330906093c91d10 Mon Sep 17 00:00:00 2001
From: Subhadeep Mandal <subhadeepdoublecap@gmail.com>
Date: Sat, 15 Jan 2022 20:30:16 +0530
Subject: [PATCH 01/42] Added get and post methods

---
 app.py               | 70 ++++++++++++++++++++++++++++++++++++++++++--
 templates/index.html | 28 ++++++++++++++++++
 2 files changed, 95 insertions(+), 3 deletions(-)
 create mode 100644 templates/index.html

diff --git a/app.py b/app.py
index 5fbfd70..e6a70ab 100644
--- a/app.py
+++ b/app.py
@@ -1,10 +1,74 @@
-from flask import Flask
+from flask import Flask, jsonify, request, render_template
 # creating an app from Flask class
 app = Flask(__name__)
-# letting the application know what requests it will understand
+
+stores = [
+  {
+    "name": "My store",
+    "items": [
+      {
+        "name": "My item",
+        "price": 12.99
+      }
+    ]
+  }
+]
+
 @app.route('/')
 def home():
-  return "Hello World!"
+  return render_template('index.html')
+
+# POST /store data: {name:}
+@app.route('/store', methods=['POST'])
+def create_store():
+  request_data = request.get_json()
+  new_store = {
+    'name': request_data['name'],
+    'items': [],
+  }
+  stores.append(new_store)
+  return jsonify(new_store)
+
+# GET /store/<string:name>
+@app.route('/store/<string:name>')   # http://127.0.0.1:5000/store/some_name
+def get_store(name):                  # here 'some_name' has to be the 'name'
+  # iterate over stores
+  # return the name when matches
+  # if none matches, return error message
+  for store in stores:
+    if store['name'] == name:
+      return jsonify(store)
+    else:
+      return jsonify({"messege":"Store not found!"})
+
+# GET /store
+@app.route('/store')
+def get_stores():
+  return jsonify({'stores': stores})
+
+# POST /store/<string:name>/item {name:, price:}
+@app.route('/store/<string:name>/item', methods=['POST'])
+def create_item_in_store(name):
+  request_data = request.get_json()
+  for store in stores:
+    if store["name"] == name:
+      new_item = {
+          "name": request_data["name"],
+          "price": request_data["price"]
+      }
+      store['items'].append(new_item)
+      return jsonify(new_item)
+
+  return jsonify({"messege": "Store not found"})
+
+# GET /store/<string:name>/item
+@app.route('/store/<string:name>/item')
+def get_item_from_store(name):
+  for store in stores:
+    if store['name'] == name:
+      return jsonify({"items":store['items']})
+  
+  return jsonify({"messege": "Store not found"})
 
 # run the app in specified folder
 app.run(port=5000)
\ No newline at end of file
diff --git a/templates/index.html b/templates/index.html
new file mode 100644
index 0000000..e3e7cf3
--- /dev/null
+++ b/templates/index.html
@@ -0,0 +1,28 @@
+<!-- saved from url=(0266)https://mp4-a.udemycdn.com/2016-11-10_08-55-57-3b4ea98e124ae6c99c5f29d926bb3aa8/original.html?ZLsCi1A1vDSnCOe9C_UvXsir4KZ7LLNA7sM4pp-Y82isEsRxQaOsf7o51aiZbMej98ZoA3fyDq28lZBrRnTIsHLWyBNaYroKY3GoF3y04PlnNXC8ZfECnqbRwerXtrdcingfXkuCl6pQ9rNEokg3tDlMY5CjA3IZ2poXx6-NvgAp -->
+<html>
+	
+	<head>
+		<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
+			<script type="text/javascript">
+				function httpGetAsync(theUrl, callback) {
+						var xmlHttp = new XMLHttpRequest();
+						xmlHttp.onreadystatechange = function() {
+								if (xmlHttp.readyState == 4 && xmlHttp.status == 200)
+										callback(xmlHttp.responseText);
+						}
+						xmlHttp.open("GET", theUrl, true); // true for asynchronous
+						xmlHttp.send(null);
+				}
+
+				httpGetAsync('http://127.0.0.1:5000/store', function(response) {
+					alert(response);
+				})
+			</script>
+	</head>
+
+	<body>
+		<div id="myElement">
+			Hello, world!
+		</div>
+	</body>
+</html>
\ No newline at end of file

From ee3d1210caf3cd0d5c4afd91ab08bd08fc8c361f Mon Sep 17 00:00:00 2001
From: Subhadeep Mandal <subhadeepdoublecap@gmail.com>
Date: Sat, 15 Jan 2022 20:31:37 +0530
Subject: [PATCH 02/42] Added README

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 README.md

diff --git a/README.md b/README.md
new file mode 100644
index 0000000..901d1b5
--- /dev/null
+++ b/README.md
@@ -0,0 +1,4 @@
+# REST API application made with flask.
+Contains <> branches
+
+Final and stable application is in the master branch
\ No newline at end of file

From 0e3861813c33e0e4ab49db1c47cfd617703a186c Mon Sep 17 00:00:00 2001
From: Subhadeep Mandal <subhadeepdoublecap@gmail.com>
Date: Sun, 16 Jan 2022 15:23:33 +0530
Subject: [PATCH 03/42] Initial Commit

---
 app.py | 77 ++++++----------------------------------------------------
 1 file changed, 8 insertions(+), 69 deletions(-)

diff --git a/app.py b/app.py
index e6a70ab..bd6f87e 100644
--- a/app.py
+++ b/app.py
@@ -1,74 +1,13 @@
-from flask import Flask, jsonify, request, render_template
-# creating an app from Flask class
-app = Flask(__name__)
-
-stores = [
-  {
-    "name": "My store",
-    "items": [
-      {
-        "name": "My item",
-        "price": 12.99
-      }
-    ]
-  }
-]
-
-@app.route('/')
-def home():
-  return render_template('index.html')
-
-# POST /store data: {name:}
-@app.route('/store', methods=['POST'])
-def create_store():
-  request_data = request.get_json()
-  new_store = {
-    'name': request_data['name'],
-    'items': [],
-  }
-  stores.append(new_store)
-  return jsonify(new_store)
+from flask import Flask
+from flask_restful import Resource, Api
 
-# GET /store/<string:name>
-@app.route('/store/<string:name>')   # http://127.0.0.1:5000/store/some_name
-def get_store(name):                  # here 'some_name' has to be the 'name'
-  # iterate over stores
-  # return the name when matches
-  # if none matches, return error message
-  for store in stores:
-    if store['name'] == name:
-      return jsonify(store)
-    else:
-      return jsonify({"messege":"Store not found!"})
-
-# GET /store
-@app.route('/store')
-def get_stores():
-  return jsonify({'stores': stores})
-
-# POST /store/<string:name>/item {name:, price:}
-@app.route('/store/<string:name>/item', methods=['POST'])
-def create_item_in_store(name):
-  request_data = request.get_json()
-  for store in stores:
-    if store["name"] == name:
-      new_item = {
-          "name": request_data["name"],
-          "price": request_data["price"]
-      }
-      store['items'].append(new_item)
-      return jsonify(new_item)
+app = Flask(__name__)
+api = Api(app)
 
-  return jsonify({"messege": "Store not found"})
+class Student(Resource):
+  def get(self, name):
+    return {"student": name}
 
-# GET /store/<string:name>/item
-@app.route('/store/<string:name>/item')
-def get_item_from_store(name):
-  for store in stores:
-    if store['name'] == name:
-      return jsonify({"items":store['items']})
-  
-  return jsonify({"messege": "Store not found"})
+api.add_resource(Student, '/student/<string:name>')   # http://127.0.0.1:5000/student/Bob
 
-# run the app in specified folder
 app.run(port=5000)
\ No newline at end of file

From 335d0a82771df22eb3430e9feac1607265d20056 Mon Sep 17 00:00:00 2001
From: Subhadeep Mandal <subhadeepdoublecap@gmail.com>
Date: Tue, 18 Jan 2022 11:51:23 +0530
Subject: [PATCH 04/42] added requirements.txt

---
 app.py          | 31 ++++++++++++++++++++++++++-----
 requiements.txt |  3 +++
 2 files changed, 29 insertions(+), 5 deletions(-)
 create mode 100644 requiements.txt

diff --git a/app.py b/app.py
index bd6f87e..44099cf 100644
--- a/app.py
+++ b/app.py
@@ -1,13 +1,34 @@
-from flask import Flask
+from flask import Flask, request
 from flask_restful import Resource, Api
 
 app = Flask(__name__)
 api = Api(app)
 
-class Student(Resource):
+items = []
+
+class Item(Resource):
   def get(self, name):
-    return {"student": name}
+    item = next(filter(lambda x: x["name"] == name, items), None)
+    return {"item": item}, 200 if item else 404
+
+  def post(self, name):
+    # if there already exists an item with "name", show a messege, and donot add the item
+    if next(filter(lambda x: x["name"] == name, items), None):
+      return {"messege": f"item {name} already exists"} ,400
+
+    data = request.get_json()   # get_json(force=True) means, we don't need a content type header
+    item = {                    # flask will look into the content, and format the data.
+      "name": name,
+      "price": data["price"]
+    }
+    items.append(item)
+    return item, 201  # 201 is for CREATED status
+
+class ItemList(Resource):
+  def get(self):
+    return {"items": items}
 
-api.add_resource(Student, '/student/<string:name>')   # http://127.0.0.1:5000/student/Bob
+api.add_resource(Item, '/item/<string:name>')
+api.add_resource(ItemList, '/items')
 
-app.run(port=5000)
\ No newline at end of file
+app.run(port=5000, debug=True)
\ No newline at end of file
diff --git a/requiements.txt b/requiements.txt
new file mode 100644
index 0000000..0213c81
--- /dev/null
+++ b/requiements.txt
@@ -0,0 +1,3 @@
+Flask
+Flask-RESTful
+Flask-JWT
\ No newline at end of file

From c85794b40e40cb228e0b1056f98ff5ba19158e3d Mon Sep 17 00:00:00 2001
From: Subhadeep Mandal <subhadeepdoublecap@gmail.com>
Date: Tue, 18 Jan 2022 13:55:34 +0530
Subject: [PATCH 05/42] added authentication to app

---
 __pycache__/security.cpython-39.pyc | Bin 0 -> 858 bytes
 __pycache__/user.cpython-39.pyc     | Bin 0 -> 442 bytes
 app.py                              |  15 +++++++++++++++
 security.py                         |  20 ++++++++++++++++++++
 user.py                             |   6 ++++++
 5 files changed, 41 insertions(+)
 create mode 100644 __pycache__/security.cpython-39.pyc
 create mode 100644 __pycache__/user.cpython-39.pyc
 create mode 100644 security.py
 create mode 100644 user.py

diff --git a/__pycache__/security.cpython-39.pyc b/__pycache__/security.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..a3e357eac8809c82e2a937ab800d5c5e8fec0f52
GIT binary patch
literal 858
zcmb7C&2AGh5cb%cWSee63S78xfWuxQetJSxg#=tfMS#O9D00^(-H^>LwpUfq=G49c
zF965BlCMZey~2$P%q&V3^?<}k9?y(DpTC*0?De_~<wx;dzT}L3BWGIzbe`g}Z&4|x
zV8L=o0LbPGo{K~P(?SUqsMeX7K@zC8>YOtjJZEQ+v{bm|wbhR5p0lK*c2$IXsCr`-
z_b(Bf#o!|=-|MM$W}4<D`oSBk%_ZPrB94pWBzXAf@qSAFMvyWiiqCM_+o&>Dvv<)N
zYM8ScKJ$;km|YNdSRvL@=K6wrK78PzGA+E{s9*QhlgW`O<~ntDa<p<M#q!mQ@oQOT
z6RXq8WNtMqSH63oveczTULJ;+`x6&4yQu!3Q}Zs;;+ZlXg1I7NXdn%0V?+c`Wo|^E
zaaHm?bR7EvHO}KJU-O!qyAJhS)NqD&&Bu6xJ%&*n_`#+J(_EHiww!q})6NjO4@+t7
zX<<|>OdA7cK+%9Qu5t5`tlWuSx-6AW6F*A{3?e=Na}%w9w*$Gt9kzysHxO^+$45TQ
z6oI-`%zdBU&D4gcxq+w{?v!%1D5Of-f6uQmGq>;>5wO%C1|c+&QM{Avooe&pldfjN
z%|M&7%^uz})Y7Cykk<4mKtHLeq{-iUrI`}V#fJxZp{j*Gr0-}cD}qRLe+NOI_j%a<
E1M-5ZO#lD@

literal 0
HcmV?d00001

diff --git a/__pycache__/user.cpython-39.pyc b/__pycache__/user.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..21686752f0d90a86a99c0817360d0922c3554b93
GIT binary patch
literal 442
zcmY*T!AiqG5S`sEH53CP;@x8|{Qwauh<FRd>LnDGkV!F;HgUH_D!JJY@HhOWy$b$-
zH&4E4Db!iso1NWxZzhl90U=Ii-}wjfmlTI#P>cY73c4dERvX}5XT*9!i7D{@FEpwV
z;LkuMWr``&tXOX-Gi;#gh2EntUC~3sKIAUS8^E7~I@OV-PJ>lvz?unKl_n<WibJ%5
z#Uh`VA!>8)UmM3_?8|zV8C$WF&7IhOlItV=Uhw5~?3(AYSo-OBy?kmG_qUUWysf6<
zHEh=*vbI`OOKW8nFDg=foVQpO9`1irOhT(nw>Au{oj1Iy<$i4K%POyTKQ4lPJNtl+
g<V}e&;AKvvwso59@<FdG;6xCjtKEoeQT+h)2hV(2q5uE@

literal 0
HcmV?d00001

diff --git a/app.py b/app.py
index 44099cf..2682f2a 100644
--- a/app.py
+++ b/app.py
@@ -1,12 +1,27 @@
 from flask import Flask, request
 from flask_restful import Resource, Api
+from flask_jwt import JWT, jwt_required
+
+from security import authenticate, identity
 
 app = Flask(__name__)
+
+app.secret_key = "komraishumtirkomchuri"
+
 api = Api(app)
 
+# JWT() creates a new endpoint: /auth
+# we send an username and password to /auth
+# JWT() gets the username and password, and sends it to authenticate function
+# the authenticate function maps the username and checks the password
+# if all goes well, the authenticate function returns user
+# which is the identity or jwt(or token)
+jwt = JWT(app, authenticate, identity)
+
 items = []
 
 class Item(Resource):
+  @jwt_required()
   def get(self, name):
     item = next(filter(lambda x: x["name"] == name, items), None)
     return {"item": item}, 200 if item else 404
diff --git a/security.py b/security.py
new file mode 100644
index 0000000..893ddf4
--- /dev/null
+++ b/security.py
@@ -0,0 +1,20 @@
+from werkzeug.security import safe_str_cmp
+from user import User
+
+users = [
+  User(1, "bob", "1234")
+]
+
+username_mapping = {u.username: u for u in users}   # mapping the users using set comprehension
+
+userid_mapping = {u.id: u for u in users}
+
+def authenticate(username, password):
+  user = username_mapping.get(username, None)
+  # if user and user.password == password:
+  if user and safe_str_cmp(user.password, password):
+    return user
+
+def identity(payload):  # payload is the contents of jwt
+  userid = payload["identity"]
+  return userid_mapping.get(userid, None)
diff --git a/user.py b/user.py
new file mode 100644
index 0000000..354e8ff
--- /dev/null
+++ b/user.py
@@ -0,0 +1,6 @@
+class User:
+  def __init__(self, _id, username, password):
+    self.id = _id
+    self.username = username
+    self.password = password
+    
\ No newline at end of file

From 5773e1c1cf3ff2d243baf1039e7ef3dca193582e Mon Sep 17 00:00:00 2001
From: Subhadeep Mandal <subhadeepdoublecap@gmail.com>
Date: Tue, 18 Jan 2022 21:36:16 +0530
Subject: [PATCH 06/42] added delete and put methods

---
 __pycache__/security.cpython-39.pyc | Bin 858 -> 858 bytes
 app.py                              |  50 ++++++++++++++++++++++++++--
 2 files changed, 48 insertions(+), 2 deletions(-)

diff --git a/__pycache__/security.cpython-39.pyc b/__pycache__/security.cpython-39.pyc
index a3e357eac8809c82e2a937ab800d5c5e8fec0f52..9d73ba2fbd937f52e589dcff5a187512be95d73e 100644
GIT binary patch
delta 25
fcmcb`c8iTGk(ZZ?0SLaIn#lE!(Pc9yV;~a%T^$Dh

delta 25
fcmcb`c8iTGk(ZZ?0SG?jPvrW?n6jCZF^~xWS-1wj

diff --git a/app.py b/app.py
index 2682f2a..ec608c0 100644
--- a/app.py
+++ b/app.py
@@ -1,5 +1,5 @@
 from flask import Flask, request
-from flask_restful import Resource, Api
+from flask_restful import Resource, Api, reqparse
 from flask_jwt import JWT, jwt_required
 
 from security import authenticate, identity
@@ -21,17 +21,28 @@
 items = []
 
 class Item(Resource):
+
+  parser = reqparse.RequestParser()
+  parser.add_argument("price",
+    type=float,
+    required=True,
+    help="This field cannot be blank"
+  )
+  
+  # TO GET ITEM WITH NAME
   @jwt_required()
   def get(self, name):
     item = next(filter(lambda x: x["name"] == name, items), None)
     return {"item": item}, 200 if item else 404
 
+  # TO POST AN ITEM
   def post(self, name):
     # if there already exists an item with "name", show a messege, and donot add the item
     if next(filter(lambda x: x["name"] == name, items), None):
       return {"messege": f"item {name} already exists"} ,400
 
-    data = request.get_json()   # get_json(force=True) means, we don't need a content type header
+    data = Item.parser.parse_args()
+    # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
     item = {                    # flask will look into the content, and format the data.
       "name": name,
       "price": data["price"]
@@ -39,7 +50,42 @@ def post(self, name):
     items.append(item)
     return item, 201  # 201 is for CREATED status
 
+  # TO DELETE AN ITEM
+  def delete(self, name):
+    # use the items variable avalable globally
+    global items
+    # check if the item exists
+    item = next(filter(lambda x: x["name"] == name ,items), None)
+    # if doesn't exist, skip deleting
+    if item is None:
+      return {"messege": "Item don't exist"}, 400
+    
+    # store all the elements of items variable into local item
+    # except the one that was selected to be deleted
+    items = list(filter(lambda x: x["name"] != name, items))
+    return {"messege": "Item deleted"}
+
+  # TO ADD OR UPDATE AN ITEM
+  def put(self, name):
+    data = Item.parser.parse_args()
+    # data = request.get_json()
+    item = next(filter(lambda x: x["name"] == name ,items), None)
+    # if item is not available, add it
+    if item is None:
+      item = {
+        "name": name,
+        "price": data["price"]
+      }
+      items.append(item)
+    # if item exists, update it
+    else:
+      item.update(data)
+    return item
+
+
 class ItemList(Resource):
+
+  # TO GET ALL ITEMS
   def get(self):
     return {"items": items}
 

From 697673844913cc0e1e271e34b47c7fde5290e282 Mon Sep 17 00:00:00 2001
From: Subhadeep Mandal <subhadeepdoublecap@gmail.com>
Date: Tue, 18 Jan 2022 21:44:09 +0530
Subject: [PATCH 07/42] modified README

---
 README.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 901d1b5..52cfe84 100644
--- a/README.md
+++ b/README.md
@@ -1,4 +1,6 @@
 # REST API application made with flask.
 Contains <> branches
 
-Final and stable application is in the master branch
\ No newline at end of file
+Final and stable application is in the master branch
+
+Use a virtual environment with python 3.9 to run the application
\ No newline at end of file

From 1b65a9807c809086878f067248724af27bcb50de Mon Sep 17 00:00:00 2001
From: Subhadeep Mandal <subhadeepdoublecap@gmail.com>
Date: Thu, 20 Jan 2022 12:21:11 +0530
Subject: [PATCH 08/42] minor changes

---
 .vscode/settings.json               |   3 +++
 __pycache__/security.cpython-39.pyc | Bin 858 -> 899 bytes
 __pycache__/user.cpython-39.pyc     | Bin 442 -> 483 bytes
 app.py                              |   2 +-
 4 files changed, 4 insertions(+), 1 deletion(-)
 create mode 100644 .vscode/settings.json

diff --git a/.vscode/settings.json b/.vscode/settings.json
new file mode 100644
index 0000000..56fb648
--- /dev/null
+++ b/.vscode/settings.json
@@ -0,0 +1,3 @@
+{
+    "python.pythonPath": "/usr/sbin/python"
+}
\ No newline at end of file
diff --git a/__pycache__/security.cpython-39.pyc b/__pycache__/security.cpython-39.pyc
index 9d73ba2fbd937f52e589dcff5a187512be95d73e..81cd5eb73d6371ebd8cf04a32c922e544ca71a26 100644
GIT binary patch
delta 92
zcmcb`*38b8$ji&c00cXpPUQOQ;-_C!nx~(env$8QUtF4$k(iR2TA=TmQktAtl9`{U
ukeHXE5S*V@Ql40psvl64pOu<iQmh|PS(1^T7vvfol30+bzgdaVf(Zbmn;*Ua

delta 51
zcmZo>zs1It$ji&c00iGpP2~D3t?FVG6Ht_&m6}{q91~Dkl98Vm<Qg23SdbaB*_+XV
F2>_a<5TXD8

diff --git a/__pycache__/user.cpython-39.pyc b/__pycache__/user.cpython-39.pyc
index 21686752f0d90a86a99c0817360d0922c3554b93..c11d9fabeb5c1010e173558713b90a687f7aa257 100644
GIT binary patch
delta 91
zcmdnR{Fs?5k(ZZ?0SI<Hoyhgb#Y?}aG*3S_H6=4qzqm9hBQYg4wLsrBr8GIQBr`ux
tAu%sSAviy+q&%@GRX?C8KPxr4q*y<ovLquvFUU1GB(We<e=<AcW&n>XAQk`s

delta 50
zcmaFNyo;GDk(ZZ?0SE-rCUQNJR!p&q2`I|XN=+^)jtQtN$;i(Oat#hiEXa(RY{0k~
E0A+Fy&j0`b

diff --git a/app.py b/app.py
index ec608c0..b981a5c 100644
--- a/app.py
+++ b/app.py
@@ -43,7 +43,7 @@ def post(self, name):
 
     data = Item.parser.parse_args()
     # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
-    item = {                    # flask will look into the content, and format the data.
+    item = {                      # flask will look into the content, and format the data.
       "name": name,
       "price": data["price"]
     }

From c8007f1e975a538dc87414f072a247bc21a70db4 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Thu, 20 Jan 2022 20:46:20 +0530
Subject: [PATCH 09/42] added database and user registration

---
 .vscode/settings.json               |   2 +-
 README.md                           |  10 +-
 __pycache__/security.cpython-39.pyc | Bin 899 -> 602 bytes
 __pycache__/user.cpython-39.pyc     | Bin 483 -> 2034 bytes
 app.py                              | 190 ++++++++++++++--------------
 create_tables.py                    |  10 ++
 requiements.txt                     |   4 +-
 security.py                         |  32 ++---
 templates/index.html                |  54 ++++----
 test/data.db                        | Bin 0 -> 12288 bytes
 test/test.py                        |  32 +++++
 user.py                             |  93 +++++++++++++-
 12 files changed, 272 insertions(+), 155 deletions(-)
 create mode 100644 create_tables.py
 create mode 100644 test/data.db
 create mode 100644 test/test.py

diff --git a/.vscode/settings.json b/.vscode/settings.json
index 56fb648..7e7f74b 100644
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -1,3 +1,3 @@
 {
-    "python.pythonPath": "/usr/sbin/python"
+    "python.pythonPath": "/usr/sbin/python3.9"
 }
\ No newline at end of file
diff --git a/README.md b/README.md
index 52cfe84..1331531 100644
--- a/README.md
+++ b/README.md
@@ -1,6 +1,6 @@
-# REST API application made with flask.
-Contains <> branches
-
-Final and stable application is in the master branch
-
+# REST API application made with flask.
+Contains <> branches
+
+Final and stable application is in the master branch
+
 Use a virtual environment with python 3.9 to run the application
\ No newline at end of file
diff --git a/__pycache__/security.cpython-39.pyc b/__pycache__/security.cpython-39.pyc
index 81cd5eb73d6371ebd8cf04a32c922e544ca71a26..c398288b90f32042c7a50f6440c0306b27b74392 100644
GIT binary patch
literal 602
zcmYjO%}(1u5Z+mv#6&@&y>USiH%k?M0R)vQt`Tb5i!avV*)$9Bk9OCJT$vMGc#CrE
zEBV?Byh2aRI7-AwGdtg|=bQP)>gZ@9$X>7B)H4Y2kHJTi1iq5HFBDK9tVIDS0OxWo
ziy#ds4={WZX^00nqVoX93lT?eR3T#Mr%o+(=Df}Fq9z>vblT=jyt9B3_HX3wjDi<`
zpc60fAUkPKJ;l4AgGb6cxuDiW5A!&*T$CO!O^MlUn>EB+szO`l?xR{cx2Y_~K_Bg(
zLVgMv{uOpi;Qu_aO_>xLjY?c|yHcoiom^v+D{rcDrb?VGs-@p3tCJgB-Ra!B<fiqj
zs{DSv_@Qc(IGs1v`1ZVR`>AUDN|)YHz2<gqL_xqr9)mrkET=v1jYr)}|4g8x9iNB?
z7*+r;KvLzrj|?)UZ)3R?J=uvi7|VWKt9D%}OvkJ&GdM`whKNWl|73Q@0||&=xS7YJ
w^wUP$``^0xb-oiZtk3e$L#tut;qwoqygAFveRNS&*sS#>s~V(EVJf51J3yd?@&Et;

literal 899
zcmb7Cy^hmB5Z+xoi7)4b9MI6Eph*++bLHuT1lNWW0SZef+IaR7hxmuxwW1)W%Dn+E
z0Oh>_&*Bz=bTu6f%oybqU4g_%JD!={`S$ZSD?6PwL;L#uhkPj*`$oyWxtKh|W!|C#
z27Jj99&%2xSc=369nO>k4!F?RIx`-+(1g|{Q|=44<zWN7y{rib(7t403l71@uLqqm
z8+5M`n+<s78+oB7#_CCw<e0l}jMCQ}H$!KdO+)wblc&cK<vT;lj3_?GW$vSkS;^k{
z8(#7SEBPn!!5y<J!uATpN@b$1L?wogDqiRYp0C}nQJ{-7NEE~}FvWB(L8&}AgCdeP
z&eFb2p+C+p>`H1Coa=0%B5Q*4wVh|_tF!TIna6=qQK4hI9_H(+eFAZ0qb$i!J-p;6
zE~XFB{XhAdAo3S6=oZ1;u+}uW8nq65f+sz8=3sE6%|lEq`^-xm+!wJCrO<tge&LjS
zi*YH&xP!ysqk&uXc4AEundfmjtDKp#n$RmRm&U9z4Fg9vv7mcYb*bYPx5}4=ovYNw
zD5D~Nh8h_6MUU&d82wug<jNng4X=4~;*I>osPbYUP`e(8s!R9Au;Z!kAS#wyxm+(Z
z31Rc^{w-$u9v&kCh6G~V<8@^;I0%ncO27Z8irH{C(E7La5uVc|Y1kl0qq|g~Cs+ST
j-M@EBJtdk;<((uM6ianV@77S4&wZ!;+jYC5E4=0(eq*_*

diff --git a/__pycache__/user.cpython-39.pyc b/__pycache__/user.cpython-39.pyc
index c11d9fabeb5c1010e173558713b90a687f7aa257..b04ff652ee70d85231b07deb2b65de705d8d2949 100644
GIT binary patch
literal 2034
zcmcgt&2k$>5T2R+wfqws2-pEqdk6(GE{Q5`DT19!2}sH)DanQ^UAERcBYVwiSDu+I
zM`C?)u24LJe9WWp3Uj46<P}mJ=pNa@3FOL1)7$gg-QV`tn=CIk2(-_Cev$mSK*%3B
zxZYeC>_As{L2$xpP6qg7IUTV98#x1ql5YujxciK7_nZw}7<t@>kuTV}Gw?X=lV<P&
z&XaDFnXo5RS;<tGP>PdrB9%yS?Rs-yumfFffe>UsIT<icIeSJ1j&SGJ&gsAd-P!`(
z=K<IWjk~XeOwsSFhB|}(0J?e~L``cFlbV5~wF8oI0%vKr=@^!A6IO6Vk&M8_aiY{|
zDS6X1t`hmsIB~|M50}UQ#B(AMzn72NvMSmm!Ly{Ts)M713o&kYc$FqPD~l*8c+@Y4
z`ZSTE{X~|>BGsz>WTKDCqSxu~CF87(MqA^F3F9~`G9AZgMWG<nhu?G=BWqo)rWn#y
z3qip!ZHSLR(PTzBy`X2TW;1p{&K%Cp+}fErwOi96y<lfv?af?R@oQh+tx4_wO3s49
z<sjjVcR?tr5mKl7a;4SQLg_Y7bkgDn(>wjnZs);Xv>AQVd;EQbo~!7`?>fDX)e*XT
z+s}OysFOU?;!6{xWl=!P#!oA$N@)V|RHT&_gK#Kx3MdHUrFp3Yyg?_;m4(<eE{_3(
zat)#~-bp3o#Q0LED%Zx5<*9MeynPLGv4|U2hgrengGr2w=nu}S_dpQVpdoYV3Ja;r
z8q9^~^rnUO%`^Wa#Bv!to8Epqt{K0#EmvSuGn5#H1hx`+69pn8F|XwZDArMIpup6;
zhDqZpzKnkiD{n{R#%pL~yxR;gD-p&xHjOwQmAuMPUy9?CD#_<7atUrVi)jv=83{;j
zE^na+AHH(qb%!KoEOv$SAqzc58*7Z(`G3^}B*G4EMsZaWgo7yzb-+9JITZnCSQ~zE
zDX}x&^%)Ko0_sP|LrCfcvxGtR#9^j1qz~S{H@&rYl&NT#iJV7iQWT|*4n!nIV?BY=
z;OfbEUbU)B3U1sZk&kT|NGTk@Y91(fo#kQyiYCX@a*%3pw+3ErkP9mBptBj}?vV9~
z_GUi!F8LZ*zWSE0A@UVZfDAUskX<m~C7Uf+ezI8upFHFXa8m<sYA$x?<OxPXspL>h
zH}4mgmeFaZk0O1P=vOR_l3a>}Pa^RYa8Rx6H;81Oi=RB~_B*}3=wWy7@g>85xWBvK
z=|`V+_jh-<qHXv$ZTQBT5@2c_L5&j51&>sfrr^P_%JWI<#qR(_b5Ta{Futw&(lqQd
zPUNAo?|hyvH(-lgMPU>B9nc1TT8>7UmhZx#=}9bi#>Hy%CIep2FyoF(rR|Hb)Ta%$
z!j{|yg95<Tf%qYtu3gWA7Vhsh7vx81A6X)Aqj1pRa!)|{QThpfv!whK=awK=44@i`
z0_u^{Qf}gbfBdi-Rv#Pt7oaG-9MT<%5S#!0@`G!7Xm>V!iAb2`A@J#^7%H9yC?!^X
d>&_gp2#5b+%!FUfN%}RWru~Y9bd{}a{SDw@(vAQC

delta 242
zcmeyw|Cl*8k(ZZ?0SI<HeU>-@NIwQ~kO4E0;{e3PLO{ZuA%!7@u?2{mnW7j{n1UHJ
znUjIyD1Zsba{%IEk%<e1*;1H+idZIIiWiPzj?YXf0-0CD0wh*46tPWqVT@#CnmmtD
zmf25}WwIuVY77TRo(+{?2XPsJ1PB*{%;#VP^Zhg-G&T*lIBatBQ%ZAE?LfLd12F>t
Dkf<Y|

diff --git a/app.py b/app.py
index b981a5c..0f51f54 100644
--- a/app.py
+++ b/app.py
@@ -1,95 +1,97 @@
-from flask import Flask, request
-from flask_restful import Resource, Api, reqparse
-from flask_jwt import JWT, jwt_required
-
-from security import authenticate, identity
-
-app = Flask(__name__)
-
-app.secret_key = "komraishumtirkomchuri"
-
-api = Api(app)
-
-# JWT() creates a new endpoint: /auth
-# we send an username and password to /auth
-# JWT() gets the username and password, and sends it to authenticate function
-# the authenticate function maps the username and checks the password
-# if all goes well, the authenticate function returns user
-# which is the identity or jwt(or token)
-jwt = JWT(app, authenticate, identity)
-
-items = []
-
-class Item(Resource):
-
-  parser = reqparse.RequestParser()
-  parser.add_argument("price",
-    type=float,
-    required=True,
-    help="This field cannot be blank"
-  )
-  
-  # TO GET ITEM WITH NAME
-  @jwt_required()
-  def get(self, name):
-    item = next(filter(lambda x: x["name"] == name, items), None)
-    return {"item": item}, 200 if item else 404
-
-  # TO POST AN ITEM
-  def post(self, name):
-    # if there already exists an item with "name", show a messege, and donot add the item
-    if next(filter(lambda x: x["name"] == name, items), None):
-      return {"messege": f"item {name} already exists"} ,400
-
-    data = Item.parser.parse_args()
-    # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
-    item = {                      # flask will look into the content, and format the data.
-      "name": name,
-      "price": data["price"]
-    }
-    items.append(item)
-    return item, 201  # 201 is for CREATED status
-
-  # TO DELETE AN ITEM
-  def delete(self, name):
-    # use the items variable avalable globally
-    global items
-    # check if the item exists
-    item = next(filter(lambda x: x["name"] == name ,items), None)
-    # if doesn't exist, skip deleting
-    if item is None:
-      return {"messege": "Item don't exist"}, 400
-    
-    # store all the elements of items variable into local item
-    # except the one that was selected to be deleted
-    items = list(filter(lambda x: x["name"] != name, items))
-    return {"messege": "Item deleted"}
-
-  # TO ADD OR UPDATE AN ITEM
-  def put(self, name):
-    data = Item.parser.parse_args()
-    # data = request.get_json()
-    item = next(filter(lambda x: x["name"] == name ,items), None)
-    # if item is not available, add it
-    if item is None:
-      item = {
-        "name": name,
-        "price": data["price"]
-      }
-      items.append(item)
-    # if item exists, update it
-    else:
-      item.update(data)
-    return item
-
-
-class ItemList(Resource):
-
-  # TO GET ALL ITEMS
-  def get(self):
-    return {"items": items}
-
-api.add_resource(Item, '/item/<string:name>')
-api.add_resource(ItemList, '/items')
-
+from flask import Flask, request
+from flask_restful import Resource, Api, reqparse
+from flask_jwt import JWT, jwt_required
+
+from security import authenticate, identity
+from user import UserRegister
+
+app = Flask(__name__)
+
+app.secret_key = "komraishumtirkomchuri"
+
+api = Api(app)
+
+# JWT() creates a new endpoint: /auth
+# we send an username and password to /auth
+# JWT() gets the username and password, and sends it to authenticate function
+# the authenticate function maps the username and checks the password
+# if all goes well, the authenticate function returns user
+# which is the identity or jwt(or token)
+jwt = JWT(app, authenticate, identity)
+
+items = []
+
+class Item(Resource):
+
+  parser = reqparse.RequestParser()
+  parser.add_argument("price",
+    type=float,
+    required=True,
+    help="This field cannot be blank"
+  )
+  
+  # TO GET ITEM WITH NAME
+  @jwt_required()
+  def get(self, name):
+    item = next(filter(lambda x: x["name"] == name, items), None)
+    return {"item": item}, 200 if item else 404
+
+  # TO POST AN ITEM
+  def post(self, name):
+    # if there already exists an item with "name", show a messege, and donot add the item
+    if next(filter(lambda x: x["name"] == name, items), None):
+      return {"messege": f"item {name} already exists"} ,400
+
+    data = Item.parser.parse_args()
+    # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
+    item = {                      # flask will look into the content, and format the data.
+      "name": name,
+      "price": data["price"]
+    }
+    items.append(item)
+    return item, 201  # 201 is for CREATED status
+
+  # TO DELETE AN ITEM
+  def delete(self, name):
+    # use the items variable avalable globally
+    global items
+    # check if the item exists
+    item = next(filter(lambda x: x["name"] == name ,items), None)
+    # if doesn't exist, skip deleting
+    if item is None:
+      return {"messege": "Item don't exist"}, 400
+    
+    # store all the elements of items variable into local item
+    # except the one that was selected to be deleted
+    items = list(filter(lambda x: x["name"] != name, items))
+    return {"messege": "Item deleted"}
+
+  # TO ADD OR UPDATE AN ITEM
+  def put(self, name):
+    data = Item.parser.parse_args()
+    # data = request.get_json()
+    item = next(filter(lambda x: x["name"] == name ,items), None)
+    # if item is not available, add it
+    if item is None:
+      item = {
+        "name": name,
+        "price": data["price"]
+      }
+      items.append(item)
+    # if item exists, update it
+    else:
+      item.update(data)
+    return item
+
+
+class ItemList(Resource):
+
+  # TO GET ALL ITEMS
+  def get(self):
+    return {"items": items}
+
+api.add_resource(Item, '/item/<string:name>')
+api.add_resource(ItemList, '/items')
+api.add_resource(UserRegister, '/register')
+
 app.run(port=5000, debug=True)
\ No newline at end of file
diff --git a/create_tables.py b/create_tables.py
new file mode 100644
index 0000000..4889a69
--- /dev/null
+++ b/create_tables.py
@@ -0,0 +1,10 @@
+import sqlite3
+
+connection = sqlite3.connect('./test/data.db')
+cursor = connection.cursor()
+
+create_table = "CREATE TABLE IF NOT EXISTS users (id INTEGER PRIMARY KEY AUTOINCREMENT, username text, password text)"
+cursor.execute(create_table)
+
+connection.commit()
+connection.close()
\ No newline at end of file
diff --git a/requiements.txt b/requiements.txt
index 0213c81..aaa2275 100644
--- a/requiements.txt
+++ b/requiements.txt
@@ -1,3 +1,3 @@
-Flask
-Flask-RESTful
+Flask
+Flask-RESTful
 Flask-JWT
\ No newline at end of file
diff --git a/security.py b/security.py
index 893ddf4..d8db52d 100644
--- a/security.py
+++ b/security.py
@@ -1,20 +1,12 @@
-from werkzeug.security import safe_str_cmp
-from user import User
-
-users = [
-  User(1, "bob", "1234")
-]
-
-username_mapping = {u.username: u for u in users}   # mapping the users using set comprehension
-
-userid_mapping = {u.id: u for u in users}
-
-def authenticate(username, password):
-  user = username_mapping.get(username, None)
-  # if user and user.password == password:
-  if user and safe_str_cmp(user.password, password):
-    return user
-
-def identity(payload):  # payload is the contents of jwt
-  userid = payload["identity"]
-  return userid_mapping.get(userid, None)
+from werkzeug.security import safe_str_cmp
+from user import User
+
+def authenticate(username, password):
+  user = User.find_by_username(username)
+  # if user and user.password == password:
+  if user and safe_str_cmp(user.password, password):
+    return user
+
+def identity(payload):  # payload is the contents of jwt
+  user_id = payload["identity"]
+  return User.find_by_id(user_id)
diff --git a/templates/index.html b/templates/index.html
index e3e7cf3..fb11bf2 100644
--- a/templates/index.html
+++ b/templates/index.html
@@ -1,28 +1,28 @@
-<!-- saved from url=(0266)https://mp4-a.udemycdn.com/2016-11-10_08-55-57-3b4ea98e124ae6c99c5f29d926bb3aa8/original.html?ZLsCi1A1vDSnCOe9C_UvXsir4KZ7LLNA7sM4pp-Y82isEsRxQaOsf7o51aiZbMej98ZoA3fyDq28lZBrRnTIsHLWyBNaYroKY3GoF3y04PlnNXC8ZfECnqbRwerXtrdcingfXkuCl6pQ9rNEokg3tDlMY5CjA3IZ2poXx6-NvgAp -->
-<html>
-	
-	<head>
-		<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
-			<script type="text/javascript">
-				function httpGetAsync(theUrl, callback) {
-						var xmlHttp = new XMLHttpRequest();
-						xmlHttp.onreadystatechange = function() {
-								if (xmlHttp.readyState == 4 && xmlHttp.status == 200)
-										callback(xmlHttp.responseText);
-						}
-						xmlHttp.open("GET", theUrl, true); // true for asynchronous
-						xmlHttp.send(null);
-				}
-
-				httpGetAsync('http://127.0.0.1:5000/store', function(response) {
-					alert(response);
-				})
-			</script>
-	</head>
-
-	<body>
-		<div id="myElement">
-			Hello, world!
-		</div>
-	</body>
+<!-- saved from url=(0266)https://mp4-a.udemycdn.com/2016-11-10_08-55-57-3b4ea98e124ae6c99c5f29d926bb3aa8/original.html?ZLsCi1A1vDSnCOe9C_UvXsir4KZ7LLNA7sM4pp-Y82isEsRxQaOsf7o51aiZbMej98ZoA3fyDq28lZBrRnTIsHLWyBNaYroKY3GoF3y04PlnNXC8ZfECnqbRwerXtrdcingfXkuCl6pQ9rNEokg3tDlMY5CjA3IZ2poXx6-NvgAp -->
+<html>
+	
+	<head>
+		<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
+			<script type="text/javascript">
+				function httpGetAsync(theUrl, callback) {
+						var xmlHttp = new XMLHttpRequest();
+						xmlHttp.onreadystatechange = function() {
+								if (xmlHttp.readyState == 4 && xmlHttp.status == 200)
+										callback(xmlHttp.responseText);
+						}
+						xmlHttp.open("GET", theUrl, true); // true for asynchronous
+						xmlHttp.send(null);
+				}
+
+				httpGetAsync('http://127.0.0.1:5000/store', function(response) {
+					alert(response);
+				})
+			</script>
+	</head>
+
+	<body>
+		<div id="myElement">
+			Hello, world!
+		</div>
+	</body>
 </html>
\ No newline at end of file
diff --git a/test/data.db b/test/data.db
new file mode 100644
index 0000000000000000000000000000000000000000..06724902c8b6e9fa88f3d2b97be4929e9ba0c30c
GIT binary patch
literal 12288
zcmeI&!AiqG5C-7cBq*XKf`nY>*wP|sy$NEJMT>2%F(N%lYPMQv8{19Mt8d`b`2@az
z2k-6%daxJI%0FZ`nPp}V-)$h*SM5=uc$m*8X~9j}CL!pUnTR~IT(g!T%!fT&hRuHq
zk9Kd*E2hfvkH~*B8v+6lfB*y_009U<00Izz00bcL=LCArT3D}(evuBwO3%h-l)lqy
zwoudi)zm$WWt2!xqLa4dmD=hwov4QCtWCvw7>45Yu)K1i)m)dG^P{~y;_4{lRyUDn
zGUi^~>O^s$FJzyio8+?9H4PovO&V;A?fqP+m!iQ>sn*Z=JS)?hoy}eUo%~P#!@Lj>
zfB*y_009U<00Izz00bZa0SNpVfi2ggAb7~f+1`HhVAJtvCm7@dn^c5HVW20Y;xX0P
q(9ZwD|044sAOHafKmY;|fB*y_009U<00I#BPXZgl4Mq76f%^@U|5-Bt

literal 0
HcmV?d00001

diff --git a/test/test.py b/test/test.py
new file mode 100644
index 0000000..eb1b92f
--- /dev/null
+++ b/test/test.py
@@ -0,0 +1,32 @@
+import sqlite3
+
+connection = sqlite3.connect('./test/data.db')
+
+cursor = connection.cursor()
+
+create_table = "CREATE TABLE IF NOT EXISTS users (id int PRIMARY KEY, username text, password text)"
+cursor.execute(create_table)
+
+user1 = (1, "bob", "1234")
+
+insert_query = "INSERT INTO users VALUES (?, ?, ?)"
+
+cursor.execute(insert_query, user1)
+
+users = [
+  (2, "rolf", "2345"),
+  (3, "smith", "3456"),
+  (4, "john", "4567"),
+  (5, "clint", "5678")
+]
+
+cursor.executemany(insert_query, users)
+
+select_query = "SELECT username, password FROM users"
+for row in cursor.execute(select_query):
+  print(row)
+
+# commiting the changes to database
+connection.commit()
+# closing the connection to database
+connection.close()
\ No newline at end of file
diff --git a/user.py b/user.py
index 354e8ff..dcca8df 100644
--- a/user.py
+++ b/user.py
@@ -1,6 +1,87 @@
-class User:
-  def __init__(self, _id, username, password):
-    self.id = _id
-    self.username = username
-    self.password = password
-    
\ No newline at end of file
+import sqlite3
+from flask_restful import Resource, reqparse
+
+class User:
+
+  def __init__(self, _id, username, password):
+    self.id = _id
+    self.username = username
+    self.password = password
+    
+  @classmethod
+  def find_by_username(cls, username):
+    connection = sqlite3.connect('./test/data.db')
+    cursor = connection.cursor()
+
+    query = "SELECT * FROM users WHERE username=?"
+    result = cursor.execute(query, (username,))   # parameters must be in the form of tuple.
+
+    row = result.fetchone()
+    if row:
+      # user = cls(row[0], row[1], row[2])
+      user = cls(*row)  # is similar to passing all values of row
+    else:
+      user = None
+
+    connection.close()
+    return user
+
+  @classmethod
+  def find_by_id(cls, _id):
+    connection = sqlite3.connect('./test/data.db')
+    cursor = connection.cursor()
+
+    query = "SELECT * FROM users WHERE id=?"
+    result = cursor.execute(query, (_id,))   # parameters must be in the form of tuple.
+
+    row = result.fetchone()
+    if row:
+      # user = cls(row[0], row[1], row[2])
+      user = cls(*row)  # is similar to passing all values of row
+    else:
+      user = None
+
+    connection.close()
+    return user
+
+# New user registraction class
+class UserRegister(Resource):
+  # Creating a request parser
+  parser = reqparse.RequestParser()
+  # Adding username argument to parser
+  parser.add_argument(
+    "username",
+    type=str,
+    required=True,
+    help="This field cannot be empty"
+  )
+  # Adding password argument to parser
+  parser.add_argument(
+    "password",
+    type=str,
+    required=True,
+    help="This field cannot be empty"
+  )
+
+  # calls to post a new user (new user registration)
+  def post(self):
+    data = UserRegister.parser.parse_args()
+    # First check if that user is present or not
+    if User.find_by_username(data["username"]):
+      # if exists, then don't add
+      return {"message": "An user with that username already exists."}, 400
+    
+    # else...continue
+    # 1. Connect to database
+    connection = sqlite3.connect('./test/data.db')
+    # 2. Create database cursor
+    cursor = connection.cursor()
+    # 3. SQL query to inser new useer information
+    query = "INSERT INTO users VALUES (NULL, ?, ?)"
+
+    cursor.execute(query, (data["username"], data["password"]))
+    # 4. Commit the changes and close the connection to database
+    connection.commit()
+    connection.close()
+
+    return {"messege": "User added successfully."}, 201
\ No newline at end of file

From 191924f1c07b055354770a6854fb733777388769 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Thu, 20 Jan 2022 22:42:17 +0530
Subject: [PATCH 10/42] added database integration to get and post

---
 __pycache__/item.cpython-39.pyc | Bin 0 -> 2794 bytes
 __pycache__/user.cpython-39.pyc | Bin 2034 -> 2034 bytes
 app.py                          |  81 ++----------------------
 create_tables.py                |   5 +-
 item.py                         | 106 ++++++++++++++++++++++++++++++++
 test/data.db                    | Bin 12288 -> 12288 bytes
 6 files changed, 116 insertions(+), 76 deletions(-)
 create mode 100644 __pycache__/item.cpython-39.pyc
 create mode 100644 item.py

diff --git a/__pycache__/item.cpython-39.pyc b/__pycache__/item.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..7e9bc6466ec2cc3f9c37118e862b6bcbd72d88cf
GIT binary patch
literal 2794
zcmb7G&2Jk;6rY)${jlSF^n=nAwOt8B*;2(og~Uf`gNh5OirdC1AYZJ_&bV>9-gRf!
zYGQ3psYEYG91s_Z<Q(&-@Gs1jQ_kEfQFw3GX;PX)v9)i$-psuD{oZ>s;q-Ks!0+y_
zd*SpHA%9}y@Q*`d5x(pP5P}FAlQxztrhV3CeXDIzY+Et!+ikn=v>nstvD^3B9wlEB
zVGHLm5stLCt#$?4uJEAknRZps76~eQusUf5Oxri&Fngd~B_9rDmP3!XEVFc|BB?#-
z9E2*90oAqjM|lU8dP<52XCMAK&{%}eSS?AL3eslM8uJ~}wxzx92r6B{geCY-oD%76
zPpsUg?TW0H7D9bWR7CYLY1hP*s6ja`ro{}DGh!C3p3{6OmwjyyR4<Y%qcbaOz0B|S
zWGwtBOp-MBSEauihslG$(mdZBlxHwDYrZDqLBtN3Z9yHs>uC8o5Cs{Ng6_~QRxowE
zU@gF3upSjw7wQ3TYPT=5EW9sAvpulH$1S_*FcAyAUnn7f)3I(Z5gi=ttZsIaurGJP
zluX85&9S99j_ne49QJ#5v#y3oy)Q*CtY^d3wNOYos5itg3iDo?_+cXaR@%)Ug-X`%
zsB~RMc~-x(nXjeEa-+2p4tjN5Z(*>ht@|=Rh9~hr5LTs}ayIgoa2SSOI=KrP=xOHU
z%TUS5n2O2C$83jeS%Pix!WvrzFKCzUur0f=k<TrsU}JlSP*OOmDXhW~d>-n;o(G?M
z3TOdp1kiGu&t?|tIXG2agn76iR!4rTajS8C#lPs^Sib$OkCtct_un*@8$M$5#WjTo
zP=F-aL$S-$9CqM|0!O>q!x-jV)^3z02|%HpXsEJOX;*H@XqW@tT{tO#BefmHDR{1{
zttigSGP*jM2FR*2u%x!Z=hdcml+1>4t}T^5GQ5=H1a3VI0(G;~AP`lLaXQ01EE%H?
zb)NHoMyCwQuTcLA<`^di^8zaS-loo>mlgCki0a=h@HUR#meX}Mwg7J!DcC-`TUO4;
zws65mdBMjHjN8HkPVBK;IE5uDz=eg{UADu3BR=*FSA1MCr6sDym!~GaEWwv;B*Guf
z`eCeOC^mh$(aZ8|?`Pn^V6WZ;bJZIlM(3BBt;X_-ztmj0Jt6SBFK^vzwEXw3UGlF5
z2I;*&KsBfu@D%!*c1#{ox@yW!sP1P95moaj5McF|(Tmc4zn81C&<I>Liv#EanxhYu
z?r|PF%@iMN7)S?%X+B7^d;$70R6)j0vZ@74J$LMqz0-!hQN?hE+Aq<B3BiUB%j_nI
z9H{t_bRj$hd+g<Gn+dYbFhvM5B<d0-H6YD4q*)VPXJ2=lhM4wT42!^PM(Ec2KdfUu
zLPyJLAPUGg^W+J60Q~Q=X6gKRzFn&6#x6bRP&h|>SK_e0D#EL1=U?!V(OGjUA!C`#
zg)4Cyg>iNjDy5!!8+GPT#}{dGAup*`??Cr!nr5|#dLPtF$S+|H(LP{6)uDM8yFLIh
zs+F4=gG9g~3(5@$+-@(<rP9XrGR<RfI5qQP9kZf2qEjB_1`K89=Hy6Ujh~{UsY6G7
zi9*b5FDNXt+d4H_jpYzOhsd-iWLgk2Naj~h2+(RlCgV>T#F{;ZnA)L~Bvr_TZo#l#
z00e>kKd5{SyzsU!@j7EpH5lecu!nij#A4u?uu|`0#|0E0qWB2KWf0m42LqW1?F<JH
zI5OY|p`-%TGKtoN&H>gI?0OFdGwdg{$^dH2anBuIv#NA*mw-|;nAKj#+-{wYu68>8
zR19MY^;)O%a2Upz%{v{1B<Sho@@a7gUlPigtZShVm;{D>ndI8;#%Y)<OpfX#PMM0}
zQIho~TyvsKA{TM&V-%mDFoqup^b`XK<{A_C9yp0Z8UFuvTu!SVqtz4MX>Zo(MWFZ6
z55sT~z6|%@f54cCCv8h0;ar=m^cFbkk&$v8XCpy^=EOuh1Tb<D(EY+>v;SC)`}J_D
zd6>{LTyPV-vzx%%r!c5KL-9EZ)Iak0i!jiI&n)Cw3fsYyNwNqqJn|H7p)jxMY10Ak
txh(GvV}$`zl2s`O;IUWIfq<H&j@lFQPf7e$%w#4!JvK+@XpPNv{snw$Rm=bY

literal 0
HcmV?d00001

diff --git a/__pycache__/user.cpython-39.pyc b/__pycache__/user.cpython-39.pyc
index b04ff652ee70d85231b07deb2b65de705d8d2949..5c46dce9fec005d7b3a2ed2a5ae40674a44e6b4d 100644
GIT binary patch
delta 53
zcmeyw|B0U~k(ZZ?0SNTEHgegpF-A>xXL~9b#T%4bSejZ~5|CI_oLW?*HrbY4oKbUf
HDEnLhi>428

delta 53
zcmeyw|B0U~k(ZZ?0SL6KH*(pqG2WW&&h}LB7H?2$VQFe{NkC#zacWVK`ea*naYn7l
Hq3m-3ru7hE

diff --git a/app.py b/app.py
index 0f51f54..1d2185f 100644
--- a/app.py
+++ b/app.py
@@ -1,9 +1,10 @@
-from flask import Flask, request
-from flask_restful import Resource, Api, reqparse
-from flask_jwt import JWT, jwt_required
+from flask import Flask
+from flask_restful import Api
+from flask_jwt import JWT
 
 from security import authenticate, identity
 from user import UserRegister
+from item import Item, ItemList
 
 app = Flask(__name__)
 
@@ -19,79 +20,9 @@
 # which is the identity or jwt(or token)
 jwt = JWT(app, authenticate, identity)
 
-items = []
-
-class Item(Resource):
-
-  parser = reqparse.RequestParser()
-  parser.add_argument("price",
-    type=float,
-    required=True,
-    help="This field cannot be blank"
-  )
-  
-  # TO GET ITEM WITH NAME
-  @jwt_required()
-  def get(self, name):
-    item = next(filter(lambda x: x["name"] == name, items), None)
-    return {"item": item}, 200 if item else 404
-
-  # TO POST AN ITEM
-  def post(self, name):
-    # if there already exists an item with "name", show a messege, and donot add the item
-    if next(filter(lambda x: x["name"] == name, items), None):
-      return {"messege": f"item {name} already exists"} ,400
-
-    data = Item.parser.parse_args()
-    # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
-    item = {                      # flask will look into the content, and format the data.
-      "name": name,
-      "price": data["price"]
-    }
-    items.append(item)
-    return item, 201  # 201 is for CREATED status
-
-  # TO DELETE AN ITEM
-  def delete(self, name):
-    # use the items variable avalable globally
-    global items
-    # check if the item exists
-    item = next(filter(lambda x: x["name"] == name ,items), None)
-    # if doesn't exist, skip deleting
-    if item is None:
-      return {"messege": "Item don't exist"}, 400
-    
-    # store all the elements of items variable into local item
-    # except the one that was selected to be deleted
-    items = list(filter(lambda x: x["name"] != name, items))
-    return {"messege": "Item deleted"}
-
-  # TO ADD OR UPDATE AN ITEM
-  def put(self, name):
-    data = Item.parser.parse_args()
-    # data = request.get_json()
-    item = next(filter(lambda x: x["name"] == name ,items), None)
-    # if item is not available, add it
-    if item is None:
-      item = {
-        "name": name,
-        "price": data["price"]
-      }
-      items.append(item)
-    # if item exists, update it
-    else:
-      item.update(data)
-    return item
-
-
-class ItemList(Resource):
-
-  # TO GET ALL ITEMS
-  def get(self):
-    return {"items": items}
-
 api.add_resource(Item, '/item/<string:name>')
 api.add_resource(ItemList, '/items')
 api.add_resource(UserRegister, '/register')
 
-app.run(port=5000, debug=True)
\ No newline at end of file
+if __name__ == "__main__":
+  app.run(port=5000, debug=True)
\ No newline at end of file
diff --git a/create_tables.py b/create_tables.py
index 4889a69..6afb122 100644
--- a/create_tables.py
+++ b/create_tables.py
@@ -3,7 +3,10 @@
 connection = sqlite3.connect('./test/data.db')
 cursor = connection.cursor()
 
-create_table = "CREATE TABLE IF NOT EXISTS users (id INTEGER PRIMARY KEY AUTOINCREMENT, username text, password text)"
+create_table = "CREATE TABLE IF NOT EXISTS users (id INTEGER PRIMARY KEY, username text, password text)"
+cursor.execute(create_table)
+
+create_table = "CREATE TABLE IF NOT EXISTS items (name text, price real)"
 cursor.execute(create_table)
 
 connection.commit()
diff --git a/item.py b/item.py
new file mode 100644
index 0000000..4dfffae
--- /dev/null
+++ b/item.py
@@ -0,0 +1,106 @@
+import sqlite3
+
+from flask import Flask, request
+from flask_restful import Resource, reqparse
+from flask_jwt import jwt_required
+
+class Item(Resource):
+
+  parser = reqparse.RequestParser()
+  parser.add_argument("price",
+    type=float,
+    required=True,
+    help="This field cannot be blank"
+  )
+  
+  # TO GET ITEM WITH NAME
+  @jwt_required()
+  def get(self, name):
+    item = self.find_item_by_name(name)
+    if item:
+      return item
+    
+    return {"message": "item not found."}, 404
+
+  # searches the database for items using name
+  @classmethod
+  def find_item_by_name(cls, name):
+    connection = sqlite3.connect('./test/data.db')
+    cursor = connection.cursor()
+
+    query = "SELECT * FROM items WHERE name=?"
+    result = cursor.execute(query, (name,))
+
+    row = result.fetchone()
+    connection.close()
+
+    if row:
+        return {
+            "item": {
+                "name": row[0],
+                "price": row[1]
+            }
+        }
+
+  # TO POST AN ITEM
+  def post(self, name):
+    # if there already exists an item with "name", show a messege, and donot add the item
+    if self.find_item_by_name(name):
+      return {"messege": f"item {name} already exists"} ,400
+
+    data = Item.parser.parse_args()
+    # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
+    item = {                      # flask will look into the content, and format the data.
+      "name": name,
+      "price": data["price"]
+    }
+    
+    connection = sqlite3.connect("./test/data.db")
+    cursor = connection.cursor()
+
+    query = "INSERT INTO items VALUES (?, ?)"
+    cursor.execute(query, (item["name"], item["price"]))
+
+    connection.commit()
+    connection.close()
+
+    return item, 201  # 201 is for CREATED status
+
+  # TO DELETE AN ITEM
+  def delete(self, name):
+    # use the items variable avalable globally
+    global items
+    # check if the item exists
+    item = next(filter(lambda x: x["name"] == name ,items), None)
+    # if doesn't exist, skip deleting
+    if item is None:
+      return {"messege": "Item don't exist"}, 400
+    
+    # store all the elements of items variable into local item
+    # except the one that was selected to be deleted
+    items = list(filter(lambda x: x["name"] != name, items))
+    return {"messege": "Item deleted"}
+
+  # TO ADD OR UPDATE AN ITEM
+  def put(self, name):
+    data = Item.parser.parse_args()
+    # data = request.get_json()
+    item = next(filter(lambda x: x["name"] == name ,items), None)
+    # if item is not available, add it
+    if item is None:
+      item = {
+        "name": name,
+        "price": data["price"]
+      }
+      items.append(item)
+    # if item exists, update it
+    else:
+      item.update(data)
+    return item
+
+
+class ItemList(Resource):
+
+  # TO GET ALL ITEMS
+  def get(self):
+    return {"items": items}
\ No newline at end of file
diff --git a/test/data.db b/test/data.db
index 06724902c8b6e9fa88f3d2b97be4929e9ba0c30c..8edd7f0f3822d827500a1897594190c689202a4c 100644
GIT binary patch
delta 172
zcmZojXh@i#&B!!S$Br$Afqx!<%w|D>H+<d>Ol;!f;*5zUiAg!BnI);Y#bAQjImp#9
z#8n~0(aFbE0W74Tk(Zd8s!)<zQKF+zP?VXRs!)`gn4_7%$PO~0QGW7Feyhn3`IXri
z`9Cu7f7~pn@PuE6fq{XSk%d8AG&nc2B*W0i*n}4-#K`}if&V>Ng%ATjBeN)bQht86
MgZi(B?(0OV0o1H8<^TWy

delta 226
zcmZojXh@i#&B!=W$Bxa8fqw$O-NwRme9-|+Y~tG5jFBaYNja&-g*llesqw|Bg{7%^
z$>>~W=O9<d5Lbl|M<*Xw1vIr9d5O8HIzXM8d5rAh;^K^r){~d>Tk$D4hKBfi`T@22
zy84Aoe#o!P#ms+=f&U}_6aH(P1qDv<oA5BRFo=q#=jWst8X22#GqErTizekKfjGR3
vEDYkJ#krX!8HvRyX}k;!42=9=8Th{fbw1#q7{JZV$;d3uSX!J~RLl$jV01z;


From 281696e46f154ef779b2c8e3de122c49e81257e0 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Fri, 21 Jan 2022 17:00:31 +0530
Subject: [PATCH 11/42] implemeted delete method

---
 .gitignore                      |   2 +
 __pycache__/item.cpython-39.pyc | Bin 2794 -> 3025 bytes
 item.py                         |  79 ++++++++++++++++++++------------
 test/data.db                    | Bin 12288 -> 12288 bytes
 test/test.db                    | Bin 0 -> 12288 bytes
 test/test.py                    |  14 +++---
 6 files changed, 60 insertions(+), 35 deletions(-)
 create mode 100644 .gitignore
 create mode 100644 test/test.db

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..f714eb5
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,2 @@
+./test/test.py
+./test/test.db
\ No newline at end of file
diff --git a/__pycache__/item.cpython-39.pyc b/__pycache__/item.cpython-39.pyc
index 7e9bc6466ec2cc3f9c37118e862b6bcbd72d88cf..97519cb561e2b0bfa7498383f9ca3c5baa2c3338 100644
GIT binary patch
delta 1616
zcmah}OK%)S5bo-E?Ck7%?2YZj2FDp7!3+c^kwb!c7{$(7AcBKzOA(fWGj`89EA7MS
znH9-ut(9;jByLd)$r2pA+{_Q)#t#U$<Ty8u$%O+qBoI|Si8q8u%&5Qa>aMP?$JhOM
z^uaMN92jsJe&6ps4sR6ic@II{`)z7oSi-)`c3~|aIU*+<J$9qQE)#j-YN;p+qIj3B
z4Tu5ZVeg4SF@*h~D6O#Ih?;||>Knc{mYUThs!PB_9uXYy)NF+HNWEjMUKqxS)VkG*
z<ek)(QQWE}sUe$R9WXh8OMjj}Q*R_^=F8{GGqdGI!b@itFRJ&sKU}I*8)BVouW#I0
zCyOQZvr+ae+-GB3z!uM|@AxZ$FveL2ggMSCyvKoc_`ca=y0@qo3_Z4%WKsQM23_gk
z&cK!>?Bo#w@=}f<r1oaBUauzdC<=ikkI}*a!5D$o8>bODpTTh)rFOLuM>08u<G6^x
zxC;(9VT?P_E_{M9OlKOKoT**7ep*hVQedQJ9Mvjv2!-sJ=j<9=QF2b*;8UK7Du+>T
zsJuBl-S#?c-|QGY0CtTvMgSwlSV82fV6!hU=CiD02&cj^`n>wqeA^#HEA7&yh961U
zlzww_vn3-j{pdb<W64SNyLr6pqi|r#SFzKcrKSjz@P+=F+s!z64;5od7)3q8U4w)D
zw{3Cozy^=E^E!Ug#OV7U)sdpobzH^)MuS!CbwMsBu+IhbV25KVjUL-E1mD3>F<i3)
z6?jr)U0l?#b&(BWR$+w+Ls(T1whlXoMMu-^$;;&{<<+vkxP0|9pEwo!*FG*Umwn>Z
zhabt4q*NqF{jP{=Q4)#vkQPO=F_rky?P{Dzs&A0fwR;hJ<Oy7VN}a>>{U3F*<Cbu1
zOk`vwaKT01n3y{U@Hf<_xu0eNzLfEVC=x&lw-2B{AvF!14{Bk3Lxgi7>iogfq;qPN
zN**{ehn<`vcmqK}?r30#+uKn?q;_i?3mnOSRy6^qX{0S0+pXkF^`rAT45|ChY?myg
z#ZZX#P;RyAQ6ovMO05|tX<@S##&JDLZZ<`hA)l-eXXR@IZxNg(xIoZnx*pMK+DURW
zrrY6Q^fqw%|FUx&++l2P!35WFMw}t_b^h~FvVM3g)==1DJD~RXM7IZ*+4YGXs{_ax
zOFs}6JrKhBfzyS#brN~=Z~oXFApQhTIWxS1oLN})-+YEO`k9j+o+K%;as~kz@t>!p
zi)-gep-%}ryHT{`c}l!YbNz(qT<DzPd`1dnL-wM0@RDXlM%F9H%4vKfmI6~=BqQ$<
s%rZ9fB<X#l{VdO+PLnLtZFCGta!`;ZCEbNl5}t7-+ogVWPr%K809#BsHUIzs

delta 1409
zcma)6&2Jk;6rY)$-JM;>PC}Z*35sF_Bw8pj-)f*LNKp`tP-t;0m0qlkXH6FQOS5Cq
zM2>uLB+k`H2reiQCv)Qu0L~mioc6|{hj0Xm0}_b$#w{*4)|%gYZ{{~|-h1=LKQ8~e
zSc;3qkid8Ivx~S`xL^8--nswF=IbLOUFn^Y5xpBEq4cG&dO-#<JSBH$WI@h=EXtxR
zfh@_{8j0r29(~{3=Cxry-%LBQp6aAsKRBv);&w82a-JovX3o*dIj)U~dIHY=bFZrU
zooYLgX<W_v2Zymtl3sOJ_8YNIyPZnhk(FAvsXvKTQoW(NA14i+Rc{>W!*1t;-P*0V
zmsZi=R_`cxK1wv5H$U@D^9B8UNzKCniUM39jG3APVXm`Vbk%&xmKSXV6IeiM5n$DL
z&Th#E&4aN6BO92&-F{c|GgtcO^n?%inRiZ3Tq#bxfqUi;yn!Qw6$0q4kS054lmJJZ
z6DtEN9T_$m6sll)?hD>B_*IMMD<=vregHiRRndIwt_{n$u!69P@FYO)HM;F~s?{18
zk*{WP0W-<DjCDN8avdk_mI`WE+G%1r?{zc11#=lv2n*>Y7CMZ2e|v671>>~L1jyrI
zaNX7t=naO{ho1w|g@H2L1JFd%Pf3$XD%q*fY{VoPu@g1`*(d6<bR<uybTMb`Jmh+h
zxFZ@fVE8G8iirINUXT6EZ+>MsX8Sfjo4}an^xl|GClp>)F0QuX_JNGAVKBer-s3eJ
zx=dP$PPVSLx{bJ%T?1vpQ%@sj4mlOs?QH5waxcxadIqMa=Yv7bAO6Z)PK~JN!I~8D
zGHO`AX-!oX%$qp%BEa#?#IZeGM%)a=(yP3M2bBKZW*yk*y-Aesz*1(PAjkU8@Fi*v
z{ja0{aq=B|ve^~S*0Gl&p|EAu2Er!7O9(F`yaJGWaj%zjWbXBQ&@@TJr){JnWZAc3
z+h!W3)9dTo<~y-LXUzk#O*hPXP#!9L80r#wEi_tjmbDXjjMBay^&GCfhHwR8+J{!d
z<ZYlBtnEbsd3%)M?=R2iG!%@63!*G$Ew2H*|9p&??}IBtY#8j%9T=GakW>@fP0%}-
za6}&o`&_1R*bp%I6t~(Qr<2=z4{mD<{z3MkINPwO-avR00r`*T@)X+E)7zjmVOUSX
aQD{d6RW=_Mb{5fid>fhz=9|Jgt^Whj;})&}

diff --git a/item.py b/item.py
index 4dfffae..4c42e75 100644
--- a/item.py
+++ b/item.py
@@ -13,15 +13,6 @@ class Item(Resource):
     help="This field cannot be blank"
   )
   
-  # TO GET ITEM WITH NAME
-  @jwt_required()
-  def get(self, name):
-    item = self.find_item_by_name(name)
-    if item:
-      return item
-    
-    return {"message": "item not found."}, 404
-
   # searches the database for items using name
   @classmethod
   def find_item_by_name(cls, name):
@@ -42,6 +33,27 @@ def find_item_by_name(cls, name):
             }
         }
 
+  # method to insert an item into
+  @classmethod
+  def insert(cls, item):
+    connection = sqlite3.connect("./test/data.db")
+    cursor = connection.cursor()
+
+    query = "INSERT INTO items VALUES (?, ?)"
+    cursor.execute(query, (item["name"], item["price"]))
+
+    connection.commit()
+    connection.close()
+
+  # TO GET ITEM WITH NAME
+  @jwt_required()
+  def get(self, name):
+    item = self.find_item_by_name(name)
+    if item:
+      return item
+    
+    return {"message": "item not found."}, 404
+
   # TO POST AN ITEM
   def post(self, name):
     # if there already exists an item with "name", show a messege, and donot add the item
@@ -54,32 +66,31 @@ def post(self, name):
       "name": name,
       "price": data["price"]
     }
-    
-    connection = sqlite3.connect("./test/data.db")
-    cursor = connection.cursor()
-
-    query = "INSERT INTO items VALUES (?, ?)"
-    cursor.execute(query, (item["name"], item["price"]))
-
-    connection.commit()
-    connection.close()
 
+    try:
+      self.insert(item)
+    except:
+      return {"messege": "An error occured."}
+    
     return item, 201  # 201 is for CREATED status
 
   # TO DELETE AN ITEM
   def delete(self, name):
-    # use the items variable avalable globally
-    global items
-    # check if the item exists
-    item = next(filter(lambda x: x["name"] == name ,items), None)
+    # check if there exists any item by name: "name"
+    # if exists then delete it
+    if self.find_item_by_name(name):
+      connection = sqlite3.connect("./test/data.db")
+      cursor = connection.cursor()
+
+      query = "DELETE FROM items WHERE name=?"
+      cursor.execute(query, (name,))
+
+      connection.commit()
+      connection.close()
+      return {"messege": "Item deleted"}
+
     # if doesn't exist, skip deleting
-    if item is None:
-      return {"messege": "Item don't exist"}, 400
-    
-    # store all the elements of items variable into local item
-    # except the one that was selected to be deleted
-    items = list(filter(lambda x: x["name"] != name, items))
-    return {"messege": "Item deleted"}
+    return {"messege": "Item don't exist"}, 400
 
   # TO ADD OR UPDATE AN ITEM
   def put(self, name):
@@ -103,4 +114,14 @@ class ItemList(Resource):
 
   # TO GET ALL ITEMS
   def get(self):
+    items = []
+    connection = sqlite3.connect("./test/data.db")
+    cursor = connection.cursor()
+
+    query = "SELECT * FROM items"
+    for row in cursor.execute(query):
+      items.append({"name": row[0], "price": row[1]})
+
+    connection.commit()
+    connection.close()
     return {"items": items}
\ No newline at end of file
diff --git a/test/data.db b/test/data.db
index 8edd7f0f3822d827500a1897594190c689202a4c..e7ccc2c6a658f4629b74699efe46a1aa2fca2c1c 100644
GIT binary patch
delta 83
zcmZojXh@hK&B!@X#+i|GW5N=7E++oF4E*o;@A9A7EGTf0-%yYN83-^ji?b(ZBxV*l
dXnsA^AEWV&pOIOVJt;pw+d===L-%ze)c}mC7V-c9

delta 50
zcmZojXh@hK&B!uQ#+i|2W5N=7Hb(yU4E*mm3kp2opBTU@$j`_u%AS;;pY5Rj>!JHP
Gk!k>YD-V|d

diff --git a/test/test.db b/test/test.db
new file mode 100644
index 0000000000000000000000000000000000000000..fef2752436dc5b6d33dd3291e6afeca5141448ec
GIT binary patch
literal 12288
zcmeI$ze~eF6bJD8k*HPD6C`B4(Lxbw{j~^I2`E<3T9ATJQk&99n$sl3uKrQ}365_5
z37wn-K^z>s3v}+P@_q2$-MdEu`D~ZVi)NIEa-h;tkjpw*C6tl_DG4D=C)YU(syEiG
z(W~j_1tS|*$By_SOei9hc$xPA<`94Y1Rwwb2tWV=5P$##AOL}XAaG3=J<p?$ULN$~
zaGZr{Rup#B@*8bmwi|~{UlvDlJ?hIS$>n+L<gC%^$Wy;lEk;Q&3S}Nn@~XTGvg|>n
z{i3Z@*n+q3Q4%HnaFX4}`exq^#<?o`Zt>P`tys*xe#v+`I&JYp#D|!QSMjX32nav`
z0uX=z1Rwwb2tWV=5P$##euF^Swy5XYH?jUbu)VXp=U5hXUF%j2lP%qsxf%0p6y?LZ
zK5&>BvsA@{P2I0htF-3!RIjGHW&J(2m=f_VKE=Cu(^~`tAOHafKmY;|fB*y_009U<
Y00Mtdz~+?NwyBn7D(9v$#(Amq18uZWrvLx|

literal 0
HcmV?d00001

diff --git a/test/test.py b/test/test.py
index eb1b92f..56eab91 100644
--- a/test/test.py
+++ b/test/test.py
@@ -1,17 +1,17 @@
 import sqlite3
 
-connection = sqlite3.connect('./test/data.db')
+connection = sqlite3.connect('./test/test.db')
 
 cursor = connection.cursor()
 
 create_table = "CREATE TABLE IF NOT EXISTS users (id int PRIMARY KEY, username text, password text)"
 cursor.execute(create_table)
 
-user1 = (1, "bob", "1234")
+# user1 = (1, "bob", "1234")
 
-insert_query = "INSERT INTO users VALUES (?, ?, ?)"
+# insert_query = "INSERT INTO users VALUES (?, ?, ?)"
 
-cursor.execute(insert_query, user1)
+# cursor.execute(insert_query, user1)
 
 users = [
   (2, "rolf", "2345"),
@@ -20,12 +20,14 @@
   (5, "clint", "5678")
 ]
 
-cursor.executemany(insert_query, users)
+# cursor.executemany(insert_query, users)
 
-select_query = "SELECT username, password FROM users"
+select_query = "SELECT username, password FROM users where username='gold'"
 for row in cursor.execute(select_query):
   print(row)
 
+
+
 # commiting the changes to database
 connection.commit()
 # closing the connection to database

From 933e106ff2a5c742bd10d40f8cb5ad7317db4921 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Fri, 21 Jan 2022 17:08:05 +0530
Subject: [PATCH 12/42] minor changes

---
 .gitignore | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.gitignore b/.gitignore
index f714eb5..4a25664 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,2 @@
-./test/test.py
-./test/test.db
\ No newline at end of file
+test/test.py
+test/test.db
\ No newline at end of file

From 71f90dced10fe702c95396f19cfadbcb8136cace Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Fri, 21 Jan 2022 21:05:02 +0530
Subject: [PATCH 13/42] implemented database into put and get items

---
 __pycache__/item.cpython-39.pyc | Bin 3025 -> 3297 bytes
 item.py                         |  43 ++++++++++++++++++++++++--------
 test/data.db                    | Bin 12288 -> 12288 bytes
 3 files changed, 33 insertions(+), 10 deletions(-)

diff --git a/__pycache__/item.cpython-39.pyc b/__pycache__/item.cpython-39.pyc
index 97519cb561e2b0bfa7498383f9ca3c5baa2c3338..19f4cecd14bb21374652f2ff409d7da9b01d0d56 100644
GIT binary patch
delta 1074
zcmZ{jO-vI(6vyYyessJ2pp=FWgLe5UZIFt}0S|~IHUU&(07GoRrePMWky59vCRkDv
zxR`h$bJYY6#&Fh~C(kAth$n7%^y0;M)A-&NG@7`Z`R#oC_szUF@9no8b%gVwkj?N}
z`1mFNHM|`@fQQ>hmq#t(7xot0glxbKZZZ)NL2nciAranU*|0a;BqH8ylV}!EoQ;T<
zS(b{uo`SakQDtiHVNV@s-Tpm8w&5l+q~6&rDx$YSLiOuubxm8S_uaaAb$l-46e{j&
z*_qAEIVD+Ga!1FU`H9R-#wq4kaUd=FKSGETx(J=WaT<GvX0;^p754)6%RvO=HdtJT
zc5cCXU=r=88;T`PtBps^>2<iGKIy}-to+7APdhMr1qfdOgtg2~cAL$zAy(6bf0?6$
zwkjDJ{Tnc*-WUn18x5s&*{41mNtjdtvlD$!nlGVWeK30mleFxUXYeDN2~k1|Ax3Zr
zt%#I?HsZc?^CAw)q++@a<bt~6>%~}w>Q8X4!tTKi-(?%T#&)zC?7{}J#szdR!JqRD
z9S_Q?OwO%`QK8rLT>v)E9@LH<(}a$W8GjrrCOxHbqAZ?-KojO)$~vp*=)Z5eaT`r|
z8rh3j?;0;Uu9R!iSzB7FN>@0K?iTL5PN7(KWu;JDNy`-Jod4*&Yav<6ls>XLKsZbA
z;zl8sJ*?gc5)Hge7^GeZkqtI3R^%v){>=-mRIQXyRVG^uY;J2D%%7%V0f#V{5W_Kj
zqkP@+(gc5)PBkA|xg2F*E_Z0>a;s}XeYcV@pyK|4`0<Hwe-mxW1R+g0M;KBs0&VKC
z-%e6^EX+R>x5D>_X>qVyum!M%bg(TehK#CL{zaHkhJ8b2?P1@c;gy5h*V<$GQpqif
zMv9oSkL+K<I_e*zO`l;aQ!p5y886+#aEcN>NS<6Tlq=~K7roKtc@#-14tbG~pfg70
i2=<?1D^pEanjBFxfhicl#YBXP$l?)*K#)i3O#1~jz}YJR

delta 950
zcmYL|O-vI}5P;vj{d;V;WeW{|5sDRr4W!XP6b$J_P1I-)5)Tr!EWB2WZE4<a4IxDi
zC6Oz67ZW{{g9oBFj~+}+JbA*Kdn570)q^LE^NNIhnQv!iXJ_Zln>`vl>`(adxJ~eS
z^ZM9dcJ>nAf$tsVreZC^ySTkWTCn8s7<YEaQk=(m0`Cdl&0V~A^W-A&dOkjaPXI|d
zpnU^R{?syEo+0`%rHISJSg*`7*DBY7q6o+3yq=ZUjhAp)elccYMgBH!rBguE;=rvk
znB*Z@B$r52<E%t6eV1G@Z^{qmI2*;32fE0}ALiu9H8g@g1fe#hsI5^j|C$Dc1elPJ
zY3m(~$*<NJjLTyy-IK;Zp~A7WjMClzrS&EAXa+q90yfx`fqcNmwso`(6b&V~j|j;c
zwCO(CqM;V*uSf~7V7kLXqeVGs(Jc*2CJiEP?2;zs+92WjTl9uT+iYt40HkI&wYJry
zN^feoH6y<YnECWlIz{P4*$y0J6Pq$fcFA+q2$~lz`ouYe2N7%>z?nk~qc>s;6~DT|
z{hW{1FBGylbUQ3ov-L)pU8t<D`jsGu%1Mx57$CY49ut<*Cln?T(Y9VIZiJCpDp$gy
zh>S932_n<4*NZhCnT<O4(eJ5vRgcIjbZXG>TTjqBZ7Cg~jCKx3cQhL|*=a#}&y852
zQ1h$BLLssXh3YzQRFv)%3evIDFd?Vysi9Go+ElopFr_f9a7Dhb&u2zZWq4{PP__P;
z76rQ(C8mSTSc<vwv;7#B<Z$es-lT0)mSS@=Vg_IHERj@+)Zq)&b&*n-RX7_M^JHLV
za9}3ZIwj!q|GUFa0HZn%-4K?*VAD~%yIT&z?9*bH_jGYpC7V;2SLnRo>DU=m+e8kr
fjuNN|V4BFuW#<m$<a_60Lj9kNy5NFC-Dm#*Lh`uU

diff --git a/item.py b/item.py
index 4c42e75..9a4c81d 100644
--- a/item.py
+++ b/item.py
@@ -13,6 +13,7 @@ class Item(Resource):
     help="This field cannot be blank"
   )
   
+  # HELPER METHODS----------------------------
   # searches the database for items using name
   @classmethod
   def find_item_by_name(cls, name):
@@ -45,6 +46,20 @@ def insert(cls, item):
     connection.commit()
     connection.close()
 
+
+  @classmethod
+  def update(cls, item):
+    connection = sqlite3.connect("./test/data.db")
+    cursor = connection.cursor()
+
+    query = "UPDATE items SET price=? WHERE name=?"
+    cursor.execute(query, (item["price"], item["name"]))
+
+    connection.commit()
+    connection.close()
+  
+  # HELPER METHODS----------------------------X
+
   # TO GET ITEM WITH NAME
   @jwt_required()
   def get(self, name):
@@ -70,11 +85,12 @@ def post(self, name):
     try:
       self.insert(item)
     except:
-      return {"messege": "An error occured."}
+      return {"messege": "An error occured."}, 500
     
     return item, 201  # 201 is for CREATED status
 
   # TO DELETE AN ITEM
+  @jwt_required()
   def delete(self, name):
     # check if there exists any item by name: "name"
     # if exists then delete it
@@ -96,18 +112,26 @@ def delete(self, name):
   def put(self, name):
     data = Item.parser.parse_args()
     # data = request.get_json()
-    item = next(filter(lambda x: x["name"] == name ,items), None)
+    item = self.find_item_by_name(name)
+
+    updated_item = {
+      "name": name,
+      "price": data["price"]
+    }
     # if item is not available, add it
     if item is None:
-      item = {
-        "name": name,
-        "price": data["price"]
-      }
-      items.append(item)
+      try:
+        self.insert(updated_item)
+      except:
+        return {"message": "An error occured while inserting."}, 500
     # if item exists, update it
     else:
-      item.update(data)
-    return item
+      try:
+        self.update(updated_item)
+      except:
+        return {"message": "An error occured while updating."}, 500
+
+    return updated_item
 
 
 class ItemList(Resource):
@@ -122,6 +146,5 @@ def get(self):
     for row in cursor.execute(query):
       items.append({"name": row[0], "price": row[1]})
 
-    connection.commit()
     connection.close()
     return {"items": items}
\ No newline at end of file
diff --git a/test/data.db b/test/data.db
index e7ccc2c6a658f4629b74699efe46a1aa2fca2c1c..0e8e31df11f997bfb3bfade14b265bb42b48e6c6 100644
GIT binary patch
delta 114
zcmZojXh@hK%_uZc#+gxQW5N=C4krF54E!JYpKKNsxWUiM&BVeWESi*`WN2h;GWnyt
sFc%~Ldj|gZKzJ6Y;t;=q00SxzLgn%^GmEk(<>zNR=>K}?zD}eX0A08lYybcN

delta 102
zcmZojXh@hK&B!@X#+i|GW5N=CHb(xB4E!HA3kqE3pV%NW`J=or7Zd+o2LAW_clpl%
wg%9!@3Nj!A0VZZ~_T-Gj%pwQPuZQ|$G`{gOGK;b&<>zNR=>K}?zD}eX0NS!0dH?_b


From 453932f64e66007a48c66f68405446d83bda4964 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Fri, 21 Jan 2022 21:08:52 +0530
Subject: [PATCH 14/42] minor changes

---
 test/test.db | Bin 12288 -> 0 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 delete mode 100644 test/test.db

diff --git a/test/test.db b/test/test.db
deleted file mode 100644
index fef2752436dc5b6d33dd3291e6afeca5141448ec..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 12288
zcmeI$ze~eF6bJD8k*HPD6C`B4(Lxbw{j~^I2`E<3T9ATJQk&99n$sl3uKrQ}365_5
z37wn-K^z>s3v}+P@_q2$-MdEu`D~ZVi)NIEa-h;tkjpw*C6tl_DG4D=C)YU(syEiG
z(W~j_1tS|*$By_SOei9hc$xPA<`94Y1Rwwb2tWV=5P$##AOL}XAaG3=J<p?$ULN$~
zaGZr{Rup#B@*8bmwi|~{UlvDlJ?hIS$>n+L<gC%^$Wy;lEk;Q&3S}Nn@~XTGvg|>n
z{i3Z@*n+q3Q4%HnaFX4}`exq^#<?o`Zt>P`tys*xe#v+`I&JYp#D|!QSMjX32nav`
z0uX=z1Rwwb2tWV=5P$##euF^Swy5XYH?jUbu)VXp=U5hXUF%j2lP%qsxf%0p6y?LZ
zK5&>BvsA@{P2I0htF-3!RIjGHW&J(2m=f_VKE=Cu(^~`tAOHafKmY;|fB*y_009U<
Y00Mtdz~+?NwyBn7D(9v$#(Amq18uZWrvLx|


From 68588800f1b924b92db8285501ebf4375745bf10 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Mon, 24 Jan 2022 18:56:54 +0530
Subject: [PATCH 15/42] made seperate folders for item and user

---
 __pycache__/security.cpython-39.pyc           | Bin 602 -> 593 bytes
 app.py                                        |   4 +-
 database.py                                   |   3 +
 models/__init__.py                            |   0
 models/__pycache__/__init__.cpython-39.pyc    | Bin 0 -> 154 bytes
 models/__pycache__/item.cpython-39.pyc        | Bin 0 -> 1517 bytes
 models/__pycache__/user.cpython-39.pyc        | Bin 0 -> 1182 bytes
 models/item.py                                |  48 +++++++
 models/user.py                                |  44 ++++++
 requiements.txt                               |   3 +-
 resources/__init__.py                         |   0
 resources/__pycache__/__init__.cpython-39.pyc | Bin 0 -> 157 bytes
 resources/__pycache__/item.cpython-39.pyc     | Bin 0 -> 2493 bytes
 resources/__pycache__/user.cpython-39.pyc     | Bin 0 -> 1152 bytes
 item.py => resources/item.py                  |  79 ++---------
 user.py => resources/user.py                  | 129 ++++++------------
 security.py                                   |   6 +-
 test/data.db                                  | Bin 12288 -> 12288 bytes
 18 files changed, 159 insertions(+), 157 deletions(-)
 create mode 100644 database.py
 create mode 100644 models/__init__.py
 create mode 100644 models/__pycache__/__init__.cpython-39.pyc
 create mode 100644 models/__pycache__/item.cpython-39.pyc
 create mode 100644 models/__pycache__/user.cpython-39.pyc
 create mode 100644 models/item.py
 create mode 100644 models/user.py
 create mode 100644 resources/__init__.py
 create mode 100644 resources/__pycache__/__init__.cpython-39.pyc
 create mode 100644 resources/__pycache__/item.cpython-39.pyc
 create mode 100644 resources/__pycache__/user.cpython-39.pyc
 rename item.py => resources/item.py (54%)
 rename user.py => resources/user.py (50%)

diff --git a/__pycache__/security.cpython-39.pyc b/__pycache__/security.cpython-39.pyc
index c398288b90f32042c7a50f6440c0306b27b74392..211b4693ecb25d635c2e170c05788150878eb2e4 100644
GIT binary patch
delta 80
zcmcb`a*>5Mk(ZZ?0SJ<$-z3hT$eYf^8CslL<eQ(8nlrJoOUyz)H?KtB$<@%+*wWPv
dL^>L{nNQYde8n5ZoeNS`tXB%uFj<bt1^~4D7%2b%

delta 89
zcmcb}a*KsGk(ZZ?0SI2$zfA0$$eYf}5?Y*EG_kHr$4|egG*3S_H6=4qzqm9hBQYg4
qwLsrBr8GIQBr`uxAu%sSAviy+q&%@Gb+R1eE7l@5pgEI8nQQ<p1sxjz

diff --git a/app.py b/app.py
index 1d2185f..9c07fb1 100644
--- a/app.py
+++ b/app.py
@@ -3,8 +3,8 @@
 from flask_jwt import JWT
 
 from security import authenticate, identity
-from user import UserRegister
-from item import Item, ItemList
+from resources.user import UserRegister
+from resources.item import Item, ItemList
 
 app = Flask(__name__)
 
diff --git a/database.py b/database.py
new file mode 100644
index 0000000..2e1eeb6
--- /dev/null
+++ b/database.py
@@ -0,0 +1,3 @@
+from flask_sqlalchemy import SQLAlchemy
+
+db = SQLAlchemy()
\ No newline at end of file
diff --git a/models/__init__.py b/models/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/models/__pycache__/__init__.cpython-39.pyc b/models/__pycache__/__init__.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..146323763bef207591952247972c2735eaf14cef
GIT binary patch
literal 154
zcmYe~<>g`k0>kI85<&E15P=LBfgA@QE@lA|DGb33nv8xc8Hzx{2;!H$er{fgzLTq=
ztFfi48;Eo?a5L8rD9X=DO)e?c52!53$j=LM4Gu{x$kflxPf5)w){l?R%*!l^kJl@x
Tyv1Py6fDh2wF4Ra8HgDGVZ0*%

literal 0
HcmV?d00001

diff --git a/models/__pycache__/item.cpython-39.pyc b/models/__pycache__/item.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..02879b2989df6bd7942663bc597f816ed474d5d4
GIT binary patch
literal 1517
zcmchXOK;RL5P)sxvFY}~Q{p8=E(n597sLS&^aZ3)36`q6fV7uriM=9KHfimwpsV!M
z9udEQ!|t(v$yZKX_yL@lah4Ve;)o@WC!Vo0{$}j%>};Jt3qF49ey|Dof*-#&3qF>i
ztBW8w;WQ;3@|1AKt$o6+J=UR|wn$)q1v_cRD1U8->+iv=AmB|pj8o3`Nyp+Aw_&t}
z!yWGKlResTd5wE8SL0K>4x`7XVfPt5wN{A!i=2xz#w~v~)EV^0(A7y0B`rxrN(K^s
z1xso3fN4AH_Jww~WD<+O(zX(5Pr`ADbU+*sS%cyGgGN6q8jr%;;hp>8D$12xt9Kjg
zGT#(&p&IKu#k)M)2wUy$R?_HWFshM2T=QEy+KZwjONuDM9To0Ps7r^Z596Ny=@3&i
zP8#ZX2y=irP)f3i9jJb05I$>4G#e36>7tIoR>A{K+nXxSra)6jg3#gI(Ld1?n`tyb
z!?hTk`QH;z3NnI!jp;5c*@%tFuEp7|U0Nfnv`gBfW47y*&d3If3m(pxP*S>bxdizM
z02|0w^ZVR<qY$cS@NUta=WmC8D|{Y4Zu>X<)s2@ge8i;uH_yV2(8pvfECsHvsqGXD
zcXTbzvkVw(Hy%ipOI;HmL_8>j_Ijd-fjVR_PID!KnzrIpndIsEWLc7D64_~Idm!YF
zcBN2*w9uB!-yf%Ss+VLu!f>LuI}wI53oA|S5LTxiv*{f3aAd<vM<D-L^;;H^DCXTz
zT?FNjDlMs@%7Cf`{H)S~?Ap+s9vd@YNk^_>N=G#uCp_ge>@vKv)@+3vZGWxVemOz-
zdgb}6u;pK0y6G<kfhT9cPvQ{_0eJ#7498S9@XY)Dq>!gz=D@DX=ggt=S=5eIlbd8p
z$l@}X6z)xE1?4P28J;`>Qn~#X3RhpPKUryq69BES?VF3du=IO9{hbA-r2=vuH3T6q
zpg4Z+!4{ORxCW+wp1X2u22*(Bv3#OP*P{qtgF%Y=OcZSox@l#Rcr7KquzEU9yGr#1
zJRw}3!)bg`<s}qHp%@KswZuz{H{S%~G0*mFM(ZcMy0HYTN<4b~ZMpUyRuL`Y17jWr
GkNp5506ymc

literal 0
HcmV?d00001

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..29d906712cc7e27ac853657cc95557b1341d66ff
GIT binary patch
literal 1182
zcmcgrOK;Oa5Z+xsn?8V2UKK()a0x;&s0YNO6sTMfqM_<TNV!<9cO#4(yV<o>5;>>#
zi1-c3v43f=oVf4<dSb?<A%J>ito?TEdF;%$<8XeyMnLwy{0I+CLcZb4v>5R60+w0^
z;DpnJw8?A288?mzH;!1Fa=Jqr=6A4@R)jb$llc4aRS@tdZN@2Q$E0ltlN;PTCP%bw
zfo^fT(rxZQMpw`5DIqsAE|LgJn+WO*);cV89iXHo2}sERX=wm5P9OnoH4M#SuH6Fi
zq+wTR_aId2Fq6DtYEy}%qm3Zu5;IB*;DksQw$rCxH_g3Q{zHG|vA==%^1;R<Z%byM
zM3gIUtDk?&(rtfdH#~^FE|#b~Jf(Ti*KQERX`BZEW>hu+p*B2&#YsQSbC(DkITt({
zOQ{-r3rbE#!0wn1S;<ChOoj$$L$fqSMroF`L&t1rmDb1vi(T6CNl8lkD;YYe$pIn8
z8WT!NWYcJ!E;PMdsNCaW9ya;@;O>t9&R^fH->YwIzu&B5`Ktcmjlb<zIuf?Jc4BKs
z^^!OjE82;&G==`P9Tie#Qaj?ah>Bda-Hym3U_@vuN-`zj@{A}^6|uVZD=f}Zc?r7G
zR<97UuWcz*k>uKt*`YS^_=@~9m_f(OojB#eem_7X)`PREmH-H=QJ0x?fw|OVHD<y-
zSpLoL-+}*;XE_Vy4ene_Zp>HL<QzCPT)7CFbP%p0AUzWMlh+V%xaAE59E~YrYUlmM
z{5DuFrex_~N@Ct>I5?z8Xb|XH5WoNz3F>n}&?~~^%p#F(JsTzP&vXS0JeN1Ij9Zgh
u{;W#kEaU&KFwkYL#c1scqt*8Ylk*sdK2zOP8LGQ>pPg0loMHxabJ<V2>kPmE

literal 0
HcmV?d00001

diff --git a/models/item.py b/models/item.py
new file mode 100644
index 0000000..8e8f0ff
--- /dev/null
+++ b/models/item.py
@@ -0,0 +1,48 @@
+import sqlite3
+
+class ItemModel:
+
+  def __init__(self, name, price):
+    self.name = name
+    self.price = price
+
+  def json(self):
+    return {"name": self.name, "price": self.price}
+
+  # searches the database for items using name
+  @classmethod
+  def find_item_by_name(cls, name):
+    connection = sqlite3.connect('./test/data.db')
+    cursor = connection.cursor()
+
+    query = "SELECT * FROM items WHERE name=?"
+    result = cursor.execute(query, (name,))
+
+    row = result.fetchone()
+    connection.close()
+
+    if row:
+      # return cls(row[0], row[1])
+      return cls(*row)    # same as above
+
+  # method to insert an item into
+  def insert(self):
+    connection = sqlite3.connect("./test/data.db")
+    cursor = connection.cursor()
+
+    query = "INSERT INTO items VALUES (?, ?)"
+    cursor.execute(query, (self.name, self.price))
+
+    connection.commit()
+    connection.close()
+
+  def update(self):
+    connection = sqlite3.connect("./test/data.db")
+    cursor = connection.cursor()
+
+    query = "UPDATE items SET price=? WHERE name=?"
+    cursor.execute(query, (self.price, self.name))
+
+    connection.commit()
+    connection.close()
+
diff --git a/models/user.py b/models/user.py
new file mode 100644
index 0000000..18263db
--- /dev/null
+++ b/models/user.py
@@ -0,0 +1,44 @@
+import sqlite3
+
+class UserModel:
+
+  def __init__(self, _id, username, password):
+    self.id = _id
+    self.username = username
+    self.password = password
+    
+  @classmethod
+  def find_by_username(cls, username):
+    connection = sqlite3.connect('./test/data.db')
+    cursor = connection.cursor()
+
+    query = "SELECT * FROM users WHERE username=?"
+    result = cursor.execute(query, (username,))   # parameters must be in the form of tuple.
+
+    row = result.fetchone()
+    if row:
+      # user = cls(row[0], row[1], row[2])
+      user = cls(*row)  # is similar to passing all values of row
+    else:
+      user = None
+
+    connection.close()
+    return user
+
+  @classmethod
+  def find_by_id(cls, _id):
+    connection = sqlite3.connect('./test/data.db')
+    cursor = connection.cursor()
+
+    query = "SELECT * FROM users WHERE id=?"
+    result = cursor.execute(query, (_id,))   # parameters must be in the form of tuple.
+
+    row = result.fetchone()
+    if row:
+      # user = cls(row[0], row[1], row[2])
+      user = cls(*row)  # is similar to passing all values of row
+    else:
+      user = None
+
+    connection.close()
+    return user
diff --git a/requiements.txt b/requiements.txt
index aaa2275..16bcdb4 100644
--- a/requiements.txt
+++ b/requiements.txt
@@ -1,3 +1,4 @@
 Flask
 Flask-RESTful
-Flask-JWT
\ No newline at end of file
+Flask-JWT
+Flask-SQLAlchemy
\ No newline at end of file
diff --git a/resources/__init__.py b/resources/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/resources/__pycache__/__init__.cpython-39.pyc b/resources/__pycache__/__init__.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..fbe2f604657164d0db3d87cbaf02e08d2447230a
GIT binary patch
literal 157
zcmYe~<>g`k0@>%U5<&E15P=LBfgA@QE@lA|DGb33nv8xc8Hzx{2;!HMer{fgzLTq=
ztFfi48;Eo?a5L8rD9X=DO)e?c52!53$j=LM4Gu{x$kZ=NEzU13N=_}-kB`sH%PfhH
Y*DI*J#bJ}1pHiBWY6mj=GY~TX0MO7RMgRZ+

literal 0
HcmV?d00001

diff --git a/resources/__pycache__/item.cpython-39.pyc b/resources/__pycache__/item.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..d96291831ed16e4a7059604a3d187fcc2208617f
GIT binary patch
literal 2493
zcmZ`*&2Jk;6rY*>^u|t;wv@J%vZc`C0(Pq&5E7J>)`3cGsFH}PD<Ny+87G_WhcmNQ
z8_SW9(j!P5xB*gp<WJ#Wm@B7TIB}{}iT7rc)G4smzMYS^vu}Ry_j}{G(Fh1!%^&`X
zFGK53>`Y%abQa)N91JI%rX<2AOKHX;mRXTSv2Uez=0r~BMy~1Gsh9bYZ`w{;%YrDN
z<SW8m?mZ{m6V9#`%|PGhHR#t&zs~6jX$Jf7C9>3H+F49v^+bD8Yz>7fVZ>h+su;?i
z&^`<fVyQ%v>iXu>vWrfM6dd}sd!@)86kMb|Tx$Aqp|b$DS_UIXL^+9=u=eZ;i5%f<
zx||A+Gj4JFN1GDi?-K5C_c__6QH^`te@>#njMjKyMrZg8ufu4aHz4>~ZR5waGmuG7
ztd7pFZX_z~CnDuxFV6F#4A(@smd5#$rlsw2dr)n~gs$xkkq&wcLOZ-HXyAPZZuKsh
zlI+njozNXNX7bFK?Xd}2fwXXzP;T`Z#9%LJFB3||>tb{wfoMYfY`+-hyp{Y+A=#Gn
zU@1M{PjcQxkM7!bH;*%+?M+qW7?~1jU)$9fdi+l0DR}3_t#+1|?JqkwIyXP<ETX-A
zeesj_Ls@K!Ua8s-x66$pU+%1|#)G6S57MRDxJGNRt*v!Y;zG&?Ls&p<>a&r552s=3
z*yfRYm@u>X4QL#0US7lvkLfSKyWcF>xQ!bx*``V44lBu+jv05(kzKZ9jp}1-&zTTP
z9+CVkg(t9*au?q7`phMd0l@17eB24}(Lh)`fKUL04u&3%PK0qPMa;KD@hnlL+W!fV
zlr@NIG=Dn}g_MO1i(YRC9Bl3X4U_wSz+}@iSj$;xOWd<|4Q-_k%(ENIb*0@TS3;KZ
z1ioR*Idq;!XPd`mEKgz|QLD^pGczbuc>!7qXA#NMEMT*Y(K>bMNj5SnXrb3JP#tha
zU=66Kf+J8DOSWh618$)rb}Y_zYy@v?k7=Jy7$v|sfXO^Pe4<hkkS#nN0Ms?`c}p*5
zTkR4w+s61?d~I~`Zs&eywG%EbfAb(jL{<3c>&|i~M2da>g**e1jOs{(5Oga_!AEmd
zugI^K73T6yaBBLm0M(w_N@1~^+Upg04g}OLBtR8Xd*Yes4NCz7MV2L{c6w<6)xwzq
zH#m4HDRPP0(hk%ax&1oQZWYkS;89_12Q&cI+H{ur6n@rd219LCe*Z%Ih{E5)3MJX3
zs97K>kku&JDlJ1-YUm1hb221y8E9)C(st|F0d1i&Rdhe3ZGOf0nVd|~8_0j$57vTw
zL3MDK3~6Npf*D<Uow?!DjU*LeMaLvxZ^^Uh7yggmZ~*y5H^>T-Tb@Vr78<ND73-0t
z+BL4CV)#@N<lE?n6preZOI49xPl7cVmJ8se@C$?nhU-49*nZkNVtrLfz<H_J(0<oc
zwQg4j-ELO!VJe_q?{>F_af-z2b|vaTH<qg-<{_Ra((FRlW6n{X!%XBrpMF}zrNmsy
zH_%)}^8uP`XkMw)v{0f35iAf2G4z2eF2oDJm#$~i!1w3Do-|%Pa5#418L$Ai!i5gc
zDJ*($(pcQWDzD8}??Wx>L9scyFv26op}yD24n>V0DI3{$sBCL&Pv~9p-Gv=zOo5LM
zx6To;_BlBBeq|F%$<}+IdB<qo9aGeL(_517z{;ajD<JAStKqdNSxXFNA5D{)8fNIG
zO%+v5SB5YnFQGxn$;)808xIB|=kk5%fQu=AH*xj~8sm2r{VZ8LokH4xjLCQmx5Bpw
z9480Tq~`(fs-hr9c(^P<Y5fqK<VR>w&s8e_D|a_w_FK3WX2Q25_L~h8J#qp5mq?tE
z78u<y1Mn9_mHlBVvAkBis#O#4|HLpSngJ4uRJEXHWtBpVYH;zXeVKSnk@r8VSbGcc
RRCO>uo1=5I&gyLL!9NawCl&wz

literal 0
HcmV?d00001

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..d3874b63e234027f8cd01369e05f477aa27e3b86
GIT binary patch
literal 1152
zcmYjQ&2Aev5GJ|5mZiWgdT^2+_Rs=VQAllbND2f=+(Ib=xT+z^J?v$%UXHAF_eUnV
zNF>;&=GX##1nHPZ=_~NsQ!aUcpoh+^Z9v@RaA$Ug^UcR$+Us=~j_?2ckY0O?{Y%R3
za8Y@IQ$Il=ndAkFX%z)8MJ!4ub~x!y;g(+ParQHluJqnA>4EseiG9hZtna_aXg2N(
z8%{vijmp4=3NDwa($MF2?^J{OrIt`+<hVP0R9@iJB!I<SvRHt#aknh?z`MW%5J({%
z>Hg(%)>^z>i}Ypimc^kA5y+nHQmP4@=h}d>VS`$gmM~jCm@RT0&2uPZl%-Wwo9GN8
zD3@l{cdTnx%Nxv1u0UFM0magW%T(*vwUQY}baw-JWCZ&soVr3`*ahE+ExYChfnRaS
z@3SpeUl8n^OLs1&%y=7LdRu-iuEZulUq|}a?v=9%uWlnSF1XL;Vk<a9pS>+>*AA^R
zlzX^Shj!}kj}@i2K?z!?=dk|zsEVl2=yh%uky)gsRjKYMEfl136~P;1L=W=6v6A(@
z!O(y<Lz$X%AkWrcz8X(QlUej?Jo~i`)zNQ9$ETxd^ws$E`1qUXIlg^GtrWLe0ka+w
z(@`oV$VfL?hG6DRQLF~<|3Sb0z9OEi-}ZpAopw!9b*>dPojsW6l}yf7$=wmzKwlQQ
zfk!sT>Z*dwSU+o&u9Xeo4P=c0G}L988|!67jh*FLS3@zkE)`-sw_$l*sZS||ciDhi
zy<_SDY9F5s%gPLY9DO%>^uy>S$)j&yJ|3Q^`T}$5;mOJ@>S{8Y&eCN*RJVPshlFpi
zTv>NnYjcP@>CaFw-Vygi*X@W<xZ+TRJQV9sh?2YJ8<77PTQW=%I*KH*og^u1*%b8M
zO_IwdEpGlO2X~Bn6F|h;oY1vVs)sh)MS_X7ri98^M;oO+M|)e+j(A8mBAliskC1?I
zar6A=2Rq+k>)8*~0s7hAyh!!$2^MVd{FFdj3&-vwRw(p<2x!l&4ckddv?|JM!>2cO
PJ)?V~sXIe{z`NpqV+k(R

literal 0
HcmV?d00001

diff --git a/item.py b/resources/item.py
similarity index 54%
rename from item.py
rename to resources/item.py
index 9a4c81d..e70727a 100644
--- a/item.py
+++ b/resources/item.py
@@ -4,6 +4,8 @@
 from flask_restful import Resource, reqparse
 from flask_jwt import jwt_required
 
+from models.item import ItemModel
+
 class Item(Resource):
 
   parser = reqparse.RequestParser()
@@ -12,89 +14,39 @@ class Item(Resource):
     required=True,
     help="This field cannot be blank"
   )
-  
-  # HELPER METHODS----------------------------
-  # searches the database for items using name
-  @classmethod
-  def find_item_by_name(cls, name):
-    connection = sqlite3.connect('./test/data.db')
-    cursor = connection.cursor()
-
-    query = "SELECT * FROM items WHERE name=?"
-    result = cursor.execute(query, (name,))
-
-    row = result.fetchone()
-    connection.close()
-
-    if row:
-        return {
-            "item": {
-                "name": row[0],
-                "price": row[1]
-            }
-        }
-
-  # method to insert an item into
-  @classmethod
-  def insert(cls, item):
-    connection = sqlite3.connect("./test/data.db")
-    cursor = connection.cursor()
-
-    query = "INSERT INTO items VALUES (?, ?)"
-    cursor.execute(query, (item["name"], item["price"]))
-
-    connection.commit()
-    connection.close()
-
-
-  @classmethod
-  def update(cls, item):
-    connection = sqlite3.connect("./test/data.db")
-    cursor = connection.cursor()
-
-    query = "UPDATE items SET price=? WHERE name=?"
-    cursor.execute(query, (item["price"], item["name"]))
-
-    connection.commit()
-    connection.close()
-  
-  # HELPER METHODS----------------------------X
 
   # TO GET ITEM WITH NAME
   @jwt_required()
   def get(self, name):
-    item = self.find_item_by_name(name)
+    item = ItemModel.find_item_by_name(name)
     if item:
-      return item
+      return item.json()
     
     return {"message": "item not found."}, 404
 
   # TO POST AN ITEM
   def post(self, name):
     # if there already exists an item with "name", show a messege, and donot add the item
-    if self.find_item_by_name(name):
+    if ItemModel.find_item_by_name(name):
       return {"messege": f"item {name} already exists"} ,400
 
     data = Item.parser.parse_args()
     # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
-    item = {                      # flask will look into the content, and format the data.
-      "name": name,
-      "price": data["price"]
-    }
+    item = ItemModel(name, data["price"])
 
     try:
-      self.insert(item)
+      item.insert()
     except:
       return {"messege": "An error occured."}, 500
     
-    return item, 201  # 201 is for CREATED status
+    return item.json(), 201  # 201 is for CREATED status
 
   # TO DELETE AN ITEM
   @jwt_required()
   def delete(self, name):
     # check if there exists any item by name: "name"
     # if exists then delete it
-    if self.find_item_by_name(name):
+    if ItemModel.find_item_by_name(name):
       connection = sqlite3.connect("./test/data.db")
       cursor = connection.cursor()
 
@@ -112,26 +64,23 @@ def delete(self, name):
   def put(self, name):
     data = Item.parser.parse_args()
     # data = request.get_json()
-    item = self.find_item_by_name(name)
+    item = ItemModel.find_item_by_name(name)
 
-    updated_item = {
-      "name": name,
-      "price": data["price"]
-    }
+    updated_item = ItemModel(name, data["price"])
     # if item is not available, add it
     if item is None:
       try:
-        self.insert(updated_item)
+        updated_item.insert()
       except:
         return {"message": "An error occured while inserting."}, 500
     # if item exists, update it
     else:
       try:
-        self.update(updated_item)
+        updated_item.update()
       except:
         return {"message": "An error occured while updating."}, 500
 
-    return updated_item
+    return updated_item.json()
 
 
 class ItemList(Resource):
diff --git a/user.py b/resources/user.py
similarity index 50%
rename from user.py
rename to resources/user.py
index dcca8df..379de51 100644
--- a/user.py
+++ b/resources/user.py
@@ -1,87 +1,44 @@
-import sqlite3
-from flask_restful import Resource, reqparse
-
-class User:
-
-  def __init__(self, _id, username, password):
-    self.id = _id
-    self.username = username
-    self.password = password
-    
-  @classmethod
-  def find_by_username(cls, username):
-    connection = sqlite3.connect('./test/data.db')
-    cursor = connection.cursor()
-
-    query = "SELECT * FROM users WHERE username=?"
-    result = cursor.execute(query, (username,))   # parameters must be in the form of tuple.
-
-    row = result.fetchone()
-    if row:
-      # user = cls(row[0], row[1], row[2])
-      user = cls(*row)  # is similar to passing all values of row
-    else:
-      user = None
-
-    connection.close()
-    return user
-
-  @classmethod
-  def find_by_id(cls, _id):
-    connection = sqlite3.connect('./test/data.db')
-    cursor = connection.cursor()
-
-    query = "SELECT * FROM users WHERE id=?"
-    result = cursor.execute(query, (_id,))   # parameters must be in the form of tuple.
-
-    row = result.fetchone()
-    if row:
-      # user = cls(row[0], row[1], row[2])
-      user = cls(*row)  # is similar to passing all values of row
-    else:
-      user = None
-
-    connection.close()
-    return user
-
-# New user registraction class
-class UserRegister(Resource):
-  # Creating a request parser
-  parser = reqparse.RequestParser()
-  # Adding username argument to parser
-  parser.add_argument(
-    "username",
-    type=str,
-    required=True,
-    help="This field cannot be empty"
-  )
-  # Adding password argument to parser
-  parser.add_argument(
-    "password",
-    type=str,
-    required=True,
-    help="This field cannot be empty"
-  )
-
-  # calls to post a new user (new user registration)
-  def post(self):
-    data = UserRegister.parser.parse_args()
-    # First check if that user is present or not
-    if User.find_by_username(data["username"]):
-      # if exists, then don't add
-      return {"message": "An user with that username already exists."}, 400
-    
-    # else...continue
-    # 1. Connect to database
-    connection = sqlite3.connect('./test/data.db')
-    # 2. Create database cursor
-    cursor = connection.cursor()
-    # 3. SQL query to inser new useer information
-    query = "INSERT INTO users VALUES (NULL, ?, ?)"
-
-    cursor.execute(query, (data["username"], data["password"]))
-    # 4. Commit the changes and close the connection to database
-    connection.commit()
-    connection.close()
-
+import sqlite3
+from flask_restful import Resource, reqparse
+from models.user import UserModel
+# New user registraction class
+class UserRegister(Resource):
+  # Creating a request parser
+  parser = reqparse.RequestParser()
+  # Adding username argument to parser
+  parser.add_argument(
+    "username",
+    type=str,
+    required=True,
+    help="This field cannot be empty"
+  )
+  # Adding password argument to parser
+  parser.add_argument(
+    "password",
+    type=str,
+    required=True,
+    help="This field cannot be empty"
+  )
+
+  # calls to post a new user (new user registration)
+  def post(self):
+    data = UserRegister.parser.parse_args()
+    # First check if that user is present or not
+    if UserModel.find_by_username(data["username"]):
+      # if exists, then don't add
+      return {"message": "An user with that username already exists."}, 400
+    
+    # else...continue
+    # 1. Connect to database
+    connection = sqlite3.connect('./test/data.db')
+    # 2. Create database cursor
+    cursor = connection.cursor()
+    # 3. SQL query to inser new useer information
+    query = "INSERT INTO users VALUES (NULL, ?, ?)"
+
+    cursor.execute(query, (data["username"], data["password"]))
+    # 4. Commit the changes and close the connection to database
+    connection.commit()
+    connection.close()
+
     return {"messege": "User added successfully."}, 201
\ No newline at end of file
diff --git a/security.py b/security.py
index d8db52d..9fb76aa 100644
--- a/security.py
+++ b/security.py
@@ -1,12 +1,12 @@
 from werkzeug.security import safe_str_cmp
-from user import User
+from models.user import UserModel
 
 def authenticate(username, password):
-  user = User.find_by_username(username)
+  user = UserModel.find_by_username(username)
   # if user and user.password == password:
   if user and safe_str_cmp(user.password, password):
     return user
 
 def identity(payload):  # payload is the contents of jwt
   user_id = payload["identity"]
-  return User.find_by_id(user_id)
+  return UserModel.find_by_id(user_id)
diff --git a/test/data.db b/test/data.db
index 0e8e31df11f997bfb3bfade14b265bb42b48e6c6..c352345b1eca5906bb3c44aada19a42e31165bc3 100644
GIT binary patch
delta 132
zcmZojXh@hK&B!@X##xY)K`-2kmw|zSi9d#ce;$9#W<h~Be3N7N*D`<Re*)xO=ARhA
zs=>>|!XPeMoSRvakyxCP#?8pWAS{}cpJZrcYy#1Jmx2E-|9hZ@i~Pz0Ow8i!$%z@6
ZMGo4(9=fj+spe;97G+P$&(DSl007$8B%}ZU

delta 147
zcmZojXh@hK%_uZc##vB^K`-2cmw|zSi9d#ce;$9#W<h~Be3N7N*D`<Pe*)xO=ARhA
zs>RL3!XPY~l%Hg1WNgCA$ig5l8l0P1k^$xdbu;q6XW)MiglB<T4)GfZ0L74j5Hg2>
WfuEUKlszdwKifh7*F*PpBGmw^79QUK


From 815d0b0b3e9c292269b9a8ffdd065709c57d985b Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Tue, 25 Jan 2022 17:20:22 +0530
Subject: [PATCH 16/42] Added Store functions

---
 README.md                                  |  18 +++++-
 __pycache__/database.cpython-39.pyc        | Bin 0 -> 191 bytes
 app.py                                     |  14 +++++
 create_tables.py                           |  13 -----
 {test => database}/data.db                 | Bin 12288 -> 16384 bytes
 models/__pycache__/item.cpython-39.pyc     | Bin 1517 -> 1507 bytes
 models/__pycache__/store.cpython-39.pyc    | Bin 0 -> 1559 bytes
 models/__pycache__/user.cpython-39.pyc     | Bin 1182 -> 1204 bytes
 models/item.py                             |  65 +++++++++------------
 models/store.py                            |  33 +++++++++++
 models/user.py                             |  47 +++++----------
 requiements.txt => requirements.txt        |   6 +-
 resources/__pycache__/item.cpython-39.pyc  | Bin 2493 -> 2226 bytes
 resources/__pycache__/store.cpython-39.pyc | Bin 0 -> 1521 bytes
 resources/__pycache__/user.cpython-39.pyc  | Bin 1152 -> 979 bytes
 resources/item.py                          |  53 ++++++-----------
 resources/store.py                         |  38 ++++++++++++
 resources/user.py                          |  14 +----
 test/test.py                               |  34 -----------
 19 files changed, 168 insertions(+), 167 deletions(-)
 create mode 100644 __pycache__/database.cpython-39.pyc
 delete mode 100644 create_tables.py
 rename {test => database}/data.db (71%)
 create mode 100644 models/__pycache__/store.cpython-39.pyc
 create mode 100644 models/store.py
 rename requiements.txt => requirements.txt (93%)
 create mode 100644 resources/__pycache__/store.cpython-39.pyc
 create mode 100644 resources/store.py
 delete mode 100644 test/test.py

diff --git a/README.md b/README.md
index 1331531..3661f3e 100644
--- a/README.md
+++ b/README.md
@@ -3,4 +3,20 @@ Contains <> branches
 
 Final and stable application is in the master branch
 
-Use a virtual environment with python 3.9 to run the application
\ No newline at end of file
+NOTE: Use a virtual environment with python 3.9 to run the application
+
+## INSATLLATION
+
+Run the following command to install dependencies:
+
+```
+pip install -r requirements.txt
+```
+
+## RUN
+
+Run the following command to start the application:
+
+```
+python app.py
+```
\ No newline at end of file
diff --git a/__pycache__/database.cpython-39.pyc b/__pycache__/database.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..ee989203d66d4a73022f0709e7b44a88769b5ec5
GIT binary patch
literal 191
zcmYe~<>g`kf`2pKC0YUL#~=<eU;=U+fVfx;NTe{NFy=7iGDa~nGNdv#Gej|^Fa<Mc
zGQR}MF=#U0;tCG*am-21NX@PE(`1ekNXtnq&W<lG%t?d@7J*E=#gvk?lA(wN$OIF=
zR9&oM0*dmpQj<%HV*)BmGV=3+T!TXr3o>I;5=#=35{pyy3My}L*yQG?l;)(`F#>fK
JgG}OK0sz7iE&l)j

literal 0
HcmV?d00001

diff --git a/app.py b/app.py
index 9c07fb1..e475db3 100644
--- a/app.py
+++ b/app.py
@@ -5,13 +5,24 @@
 from security import authenticate, identity
 from resources.user import UserRegister
 from resources.item import Item, ItemList
+from resources.store import Store, StoreList
+from database import db
 
 app = Flask(__name__)
 
+app.config["SQLALCHEMY_DATABASE_URI"] = "sqlite:///database/data.db"
+
+app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = False    # turns of flask_sqlalchemy modification tracker
 app.secret_key = "komraishumtirkomchuri"
 
 api = Api(app)
 
+@app.before_first_request
+def create_tables():
+  db.create_all()
+  # above function creates all the tables before the 1st request is made
+  # unless they exist alraedy
+
 # JWT() creates a new endpoint: /auth
 # we send an username and password to /auth
 # JWT() gets the username and password, and sends it to authenticate function
@@ -21,8 +32,11 @@
 jwt = JWT(app, authenticate, identity)
 
 api.add_resource(Item, '/item/<string:name>')
+api.add_resource(Store, '/store/<string:name>')
 api.add_resource(ItemList, '/items')
+api.add_resource(StoreList, '/stores')
 api.add_resource(UserRegister, '/register')
 
 if __name__ == "__main__":
+  db.init_app(app)
   app.run(port=5000, debug=True)
\ No newline at end of file
diff --git a/create_tables.py b/create_tables.py
deleted file mode 100644
index 6afb122..0000000
--- a/create_tables.py
+++ /dev/null
@@ -1,13 +0,0 @@
-import sqlite3
-
-connection = sqlite3.connect('./test/data.db')
-cursor = connection.cursor()
-
-create_table = "CREATE TABLE IF NOT EXISTS users (id INTEGER PRIMARY KEY, username text, password text)"
-cursor.execute(create_table)
-
-create_table = "CREATE TABLE IF NOT EXISTS items (name text, price real)"
-cursor.execute(create_table)
-
-connection.commit()
-connection.close()
\ No newline at end of file
diff --git a/test/data.db b/database/data.db
similarity index 71%
rename from test/data.db
rename to database/data.db
index c352345b1eca5906bb3c44aada19a42e31165bc3..b6cbb4bbceed794716e955ad0182f81d0283c66b 100644
GIT binary patch
literal 16384
zcmeI&J#W)M7zgk>JH<GtxCJ6B+cU-zZ)vE+QYj|7q!Gq}t3k?yoWxbFkh-!{bwCW^
z1MwyJ6dhTSm=FsS_E{FRph}FX{wLqtb3WhQZ#&5cue^8}(P5G<!X<Us7UP_Ci5O#>
zd9LNTN_yV-v(Kx6E9y=5aP*=0kbZlgS!dSGyh4Hi1Rwwb2tWV=5P$##AOL|i7Fg}+
zhHcyY<9HcP-bMMHa*?T`)|0{w1O@IhPml^xt8T_K8v2142uc1ZApf=J-KV;F94;by
z<I3K?D_c(=J4Ngyji(Xyy^$Lf-E5hp(c9nii`Yv!eBsJ5Jr`qY#WOXnKayfN@QYZh
zn&XfZeIbS469=S%nR>tOEHuMzHu-8-ZND5UOZ~zDs!9KKg3H^hJF6R9ajoWRz0)j8
zGgW98R#TxXxQg+Al7(4zmZY=Glz(rexSMn9JIfy=2tWV=5P$##AOHafKmY;|fB*!p
zkH9TnV|N>qWYXU0JSpz~n)Q`gKk@<z0uX=z1Rwwb2tWV=5P$##AOL|i7ce!QHP!D6
zJ0`E1?ehMA&a7|Nx%GL?kBIF<00Izz00bZa0SG_<0uX=z1g^C}!#4QzD2&tYgP&gp
jpYFZa*d1+y*@ihiio>+)l+kUz!5W4+Ns@W@Q5pILLW!f3

delta 284
zcmZo@U~EX3AT7wrz`(!^#4x}#QO6i4s2A?V3lw7Fk73}S#~-s<P~Z)pw*wQKxVSiD
zVo73BPHJXJYHl%@V0I32bqsM;2yt}saa8~dDQM&+=B6r?q*j#ZC=?WBCZ{SCr6%TR
zCNQ#tOlXv!+{mxun3<yB=@;Va?i!>J5aj9W7!;}C?HZ}0P+FW?gseZYxVSvOC<Sbs
zCd64!82CT)KLI-H2EPU`6AOd5XmM_4Nk(FEN*XsK3xlv|Qht)5k+BIx^<4)3yZrBg
msxR^@3otQ@vnMBJWEMGS|9a@YPNbTjnOT%QDL+3OCIA3s9ZdNE

diff --git a/models/__pycache__/item.cpython-39.pyc b/models/__pycache__/item.cpython-39.pyc
index 02879b2989df6bd7942663bc597f816ed474d5d4..dd94649c3550ee28227735855567f18bfec9a586 100644
GIT binary patch
literal 1507
zcmb_cOK%%D5GJ_~uU@t+t3jLe0koIu;vY~HMSwhtpon2qIV}tj>mAD3?LHK8T|k0v
z@v;5~Jy=Kop&WS4$*0_V$_&>JHSsYNI2>|@+;3*SQ8E~G8IJzD56RPjvG=su96oLy
z<1{~_00z8ZC6760zcUcvoiXqf&&69W_Q0RANpOXJY{IR8<CN6R5#r`CPV)~6#bORD
z7Qkaq`FVgdq$kfsyrujL++RfCulbtCopzshA%O6lPI}iTA+CMcLN5^yP~V0Ktvk?x
z?iq`R(1Sj%yJ`dj*gj)#dAtWZFvPPl?7|4wuV4>hk8S5gqso^xsKN#rs^%32(VOe6
zO!Pwjr50C*2>ME(KtpG)RhpTsu9h9s)LNPS4C3yTRQE_qiMtu3)5Rw^%>xuGzG9NC
z1WLa0PzqpEcF7MWp7pDwR5rjbr^-g|ahbuyx4u!uOjEgZk3=8ECDYru{P*+IUycrS
zovXAlM~92%bzS}WZ2BshXGbN)WR57N{rSR1Qf5`wNV$Xe3{`~j5P!?jZ36ahTvATv
z>p?m)WFrWcvlYuRlpF)eJ>dTm1H{3lZ$$<U-v-=WynD&@02hb36@<e2xv8r$YKF4J
z_;ULW3z<@POeP$pdpKP(N2uVp2?Ym!&M(9o6Nwlm+<hAJ8N4}FdSN@WtZ0;$#|s<G
zGHsfPuwGi279k~Z1JLd)t3Xo9&|gwPzD9=@oxgl^hwd}K&r)^^^&!5{AkYg;)*2hg
z>E4=gY^y2L9W+mTP0`scqYQD&dI^9H)4D9PM(?5N)65M`^0$&rEg@-=<HV>R(8)ON
z@jhQZyhHk_<Cg%cDJB~tzZ9nSTf%oA$Z_i+XSyzLf&TPApx@sCz0dhz@_>j-g^<#A
zr9@Jn7Nqy3d~=!<*Oq~ln1({N+cufule#!9E4%fgYSf9+nmA*_X`{31#8ux0&x<-~
zTvyrdb8O-4r20cG9D{9Nt0HNz8s>F2w}ER&J)~HPv9^~Mi7}<ZmIM6_9e+oH>abBP
z$1mc#CO*(K#HdL4-jEOZNQ`+`L_y>W-VGz)c^zQSM>lnCV+q`Ui?iPMxQ%{o6Z0E2
JtD|dQd<0LJSdjn#

literal 1517
zcmchXOK;RL5P)sxvFY}~Q{p8=E(n597sLS&^aZ3)36`q6fV7uriM=9KHfimwpsV!M
z9udEQ!|t(v$yZKX_yL@lah4Ve;)o@WC!Vo0{$}j%>};Jt3qF49ey|Dof*-#&3qF>i
ztBW8w;WQ;3@|1AKt$o6+J=UR|wn$)q1v_cRD1U8->+iv=AmB|pj8o3`Nyp+Aw_&t}
z!yWGKlResTd5wE8SL0K>4x`7XVfPt5wN{A!i=2xz#w~v~)EV^0(A7y0B`rxrN(K^s
z1xso3fN4AH_Jww~WD<+O(zX(5Pr`ADbU+*sS%cyGgGN6q8jr%;;hp>8D$12xt9Kjg
zGT#(&p&IKu#k)M)2wUy$R?_HWFshM2T=QEy+KZwjONuDM9To0Ps7r^Z596Ny=@3&i
zP8#ZX2y=irP)f3i9jJb05I$>4G#e36>7tIoR>A{K+nXxSra)6jg3#gI(Ld1?n`tyb
z!?hTk`QH;z3NnI!jp;5c*@%tFuEp7|U0Nfnv`gBfW47y*&d3If3m(pxP*S>bxdizM
z02|0w^ZVR<qY$cS@NUta=WmC8D|{Y4Zu>X<)s2@ge8i;uH_yV2(8pvfECsHvsqGXD
zcXTbzvkVw(Hy%ipOI;HmL_8>j_Ijd-fjVR_PID!KnzrIpndIsEWLc7D64_~Idm!YF
zcBN2*w9uB!-yf%Ss+VLu!f>LuI}wI53oA|S5LTxiv*{f3aAd<vM<D-L^;;H^DCXTz
zT?FNjDlMs@%7Cf`{H)S~?Ap+s9vd@YNk^_>N=G#uCp_ge>@vKv)@+3vZGWxVemOz-
zdgb}6u;pK0y6G<kfhT9cPvQ{_0eJ#7498S9@XY)Dq>!gz=D@DX=ggt=S=5eIlbd8p
z$l@}X6z)xE1?4P28J;`>Qn~#X3RhpPKUryq69BES?VF3du=IO9{hbA-r2=vuH3T6q
zpg4Z+!4{ORxCW+wp1X2u22*(Bv3#OP*P{qtgF%Y=OcZSox@l#Rcr7KquzEU9yGr#1
zJRw}3!)bg`<s}qHp%@KswZuz{H{S%~G0*mFM(ZcMy0HYTN<4b~ZMpUyRuL`Y17jWr
GkNp5506ymc

diff --git a/models/__pycache__/store.cpython-39.pyc b/models/__pycache__/store.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..b2aa6410ae08dff65999f515f17cb06caa48f40f
GIT binary patch
literal 1559
zcmb_czi%5i6ef8m>8u~N>;x^^6iu6Uxy8sF7)F7lC^A$qs!RtL#Q7fOoWi@4$#Ve-
z$`r2|y0?Hd`j6>9z_nAR4&6HSJzf<nj>i&s<m0_ZzVChS@zTMd%W(Yu$6x8|7Gr<X
zW_yIV`3}WC!U-5~%?h4y&VFDZAh==>C_WW$f+T=&%;MHN^kXr10?sm0w+9AjE}NpF
zSi*rN0(cUraN0s?)0J;U(ox|G_p1oPHDB{&2W?$wK^r<~?Lh=PS1jp67kao3)GqX4
zaK+y6WDj;>55Emz2>ZD1!vTW2=epy%GU~?)ly+@Px_yBldoz<4shP`HYX0s7LAjmh
zwJI9F4$RB6$TRc{b-I{mVk;NYNuHuuqHxKVOd>;LcFjlEcm&U?Sh&zCJu!XsxMpS-
zmw)1CPfkxvHC0({PfzCc%c}h8`|*o(mY)^`(4KmLhqJkhq|D2_mU2L0e0;vRcazKE
z#-4F>*bLH%YLD$JRF-T?!hwUhB2BD<HG77HLGW9E1cjpyE}%eE_%VvTkJC9G`nms_
zFZqhC*{|XPOYM^(Zl<;>F;Q{&*o8T==MBxYhi6^)NawcBs$zD$kNdw-*y5Y5B<O;}
zBVA>ww#TS!yyL)$96WcfMK{|xG@syU|H*ucnhR2`uel+9ZpAeeY>2YqZSPjdkLnqq
zv*+vp72<4)2?Kx2S7MD^#A0N6XhB%5i%VtZZfBC~S{ZpZcdbcoY>hMonYIl+D)tr)
z`;)u`Nok<Jr0yVQ8*t&`i!E>;Iet(as_uKFpW~)RoGY<pYkZYn$J%n=iG~^zIiq^I
zj#bv?Rf&`VxHi_K$ZPW%nr;#2hBp00$-0t|*6CSl)dO_0)DVpK`QpJA)Z3o_2U7D8
z1GzT71cl^&jhj1B-ftY_#8kz5q;&KK>BB9gcX^NE1A1aq3n^V!N_>Bpn)JSu7niC2
z&oYn_iO{OqHgvY1R{F9iUFUgOt8-<1W4iXZHhFp8^laZKoz_UXeVNaEyBg|8-<YnK
z>D1an;qwRcC4GKG)3-F;bdJ~P6&WfyiGPog2!kOXid_)}Q7Cw~9fjUw6o)R_l&t~U
X@_#dLz3XBZ9W_}WQ)Bsd?2CT^tT1AS

literal 0
HcmV?d00001

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 29d906712cc7e27ac853657cc95557b1341d66ff..de3c6aae46d3ea161ed52e57528f14dfa6b2ad96 100644
GIT binary patch
literal 1204
zcmbVLy>1gh5Z<3V`}~)fC=}!gIEplM2%$&;Aqt`>4$aEa>T<JA&fJf)dj>gjm$Z2Y
zyUauIB3sZ<rQrdnm_2ieWvCcyW@mQicE6eV9QAr_f^zcxXY`E`^1}t|;$d)rYF?lL
z0yHJUtt_P(6O5Ag1UPs%1U$vY{F)07=zxU&J?4|6kXi<3vGdo($KU|fT%b`zP#}T<
z6<m2^AGHAt_$?Dn<t;E?1mG>{l8V+w+y);SH$-$)7n%^<kZUS>=(nI<`CHI|E}m~g
z4>4`o)+eL%#{yI;{3*KTG^C<4(McBRnf$C~_s0k*=4fhhJ~oCNqMAOMIh_+p<_s;u
z9*{eF6fzsQ>+&d5Hkd@ld@VGD+<Hc(Bi+ESbQ8@T(JfqlJ%9UZc&v-Dic2#*o|P9x
ze)4W`8cmX6=D?YuyKR3mvw@UJo|IDd@H^v%L1=?s?L5@6Unj&4WG&8jz$?%@=*-EO
zjOm;Ly`>AbMA#w2;Z)G>xb-imO3y@Vl%%E7@@!`PQKC(Wh4DBws|p<S3cq%gvHek!
z1E$Kl@+Y`!DirK$?-Af;+J6DHECJoc2STQ|aS>eN#s;Ex{Zs-^*RbsVjU|DYVn!{_
ze`wbp1|>FYffHU*y7KvwP^A5UXh+@9)2>e2G|HHy$SscmL?bS;EGe<80UmCG>zn9{
zl4T(wDx<T=sArh;XQExY-muNYqp<II;K(JVZA*z9nWoO~N_jbr($$IRNr^Y7Y86%p
zMdPqYr&%tVAM#S2E3Ms-Y-3RBBtL&7rtY}yPMjijGlhHv?WnFDb+qf{S~XSE9Rsv$
znWLoHMH4WO_bL8Z;4#|fPOFU27fo}SCZ&35gSz+?I=}iWR$2dgzy_~ZrM__ks(KaB
GF8dAe^$cDB

literal 1182
zcmcgrOK;Oa5Z+xsn?8V2UKK()a0x;&s0YNO6sTMfqM_<TNV!<9cO#4(yV<o>5;>>#
zi1-c3v43f=oVf4<dSb?<A%J>ito?TEdF;%$<8XeyMnLwy{0I+CLcZb4v>5R60+w0^
z;DpnJw8?A288?mzH;!1Fa=Jqr=6A4@R)jb$llc4aRS@tdZN@2Q$E0ltlN;PTCP%bw
zfo^fT(rxZQMpw`5DIqsAE|LgJn+WO*);cV89iXHo2}sERX=wm5P9OnoH4M#SuH6Fi
zq+wTR_aId2Fq6DtYEy}%qm3Zu5;IB*;DksQw$rCxH_g3Q{zHG|vA==%^1;R<Z%byM
zM3gIUtDk?&(rtfdH#~^FE|#b~Jf(Ti*KQERX`BZEW>hu+p*B2&#YsQSbC(DkITt({
zOQ{-r3rbE#!0wn1S;<ChOoj$$L$fqSMroF`L&t1rmDb1vi(T6CNl8lkD;YYe$pIn8
z8WT!NWYcJ!E;PMdsNCaW9ya;@;O>t9&R^fH->YwIzu&B5`Ktcmjlb<zIuf?Jc4BKs
z^^!OjE82;&G==`P9Tie#Qaj?ah>Bda-Hym3U_@vuN-`zj@{A}^6|uVZD=f}Zc?r7G
zR<97UuWcz*k>uKt*`YS^_=@~9m_f(OojB#eem_7X)`PREmH-H=QJ0x?fw|OVHD<y-
zSpLoL-+}*;XE_Vy4ene_Zp>HL<QzCPT)7CFbP%p0AUzWMlh+V%xaAE59E~YrYUlmM
z{5DuFrex_~N@Ct>I5?z8Xb|XH5WoNz3F>n}&?~~^%p#F(JsTzP&vXS0JeN1Ij9Zgh
u{;W#kEaU&KFwkYL#c1scqt*8Ylk*sdK2zOP8LGQ>pPg0loMHxabJ<V2>kPmE

diff --git a/models/item.py b/models/item.py
index 8e8f0ff..987a584 100644
--- a/models/item.py
+++ b/models/item.py
@@ -1,48 +1,37 @@
-import sqlite3
+from database import db
 
-class ItemModel:
+class ItemModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
 
-  def __init__(self, name, price):
+  __tablename__ = "items"
+
+  # Columns
+  id = db.Column(db.Integer, primary_key=True)
+  name = db.Column(db.String(80))
+  price = db.Column(db.Float(precision=2))  # precision: numbers after decimal point
+
+  store_id = db.Column(db.Integer, db.ForeignKey("stores.id"))
+  store = db.relationship("StoreModel")
+
+  def __init__(self, name, price, store_id):
     self.name = name
     self.price = price
+    self.store_id = store_id
 
   def json(self):
-    return {"name": self.name, "price": self.price}
+    return {"id": self.id,"store_id":self.store_id, "name": self.name, "price": self.price}
 
   # searches the database for items using name
   @classmethod
   def find_item_by_name(cls, name):
-    connection = sqlite3.connect('./test/data.db')
-    cursor = connection.cursor()
-
-    query = "SELECT * FROM items WHERE name=?"
-    result = cursor.execute(query, (name,))
-
-    row = result.fetchone()
-    connection.close()
-
-    if row:
-      # return cls(row[0], row[1])
-      return cls(*row)    # same as above
-
-  # method to insert an item into
-  def insert(self):
-    connection = sqlite3.connect("./test/data.db")
-    cursor = connection.cursor()
-
-    query = "INSERT INTO items VALUES (?, ?)"
-    cursor.execute(query, (self.name, self.price))
-
-    connection.commit()
-    connection.close()
-
-  def update(self):
-    connection = sqlite3.connect("./test/data.db")
-    cursor = connection.cursor()
-
-    query = "UPDATE items SET price=? WHERE name=?"
-    cursor.execute(query, (self.price, self.name))
-
-    connection.commit()
-    connection.close()
-
+    # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
+    # this function would return a ItemModel object
+    return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
+
+  # method to insert or update an item into database
+  def save_to_database(self):
+    db.session.add(self)  # session here is a collection of objects that wil be written to database
+    db.session.commit()
+
+  def delete_from_database(self):
+    db.session.delete(self)
+    db.session.commit()
diff --git a/models/store.py b/models/store.py
new file mode 100644
index 0000000..97d8a04
--- /dev/null
+++ b/models/store.py
@@ -0,0 +1,33 @@
+from database import db
+
+class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
+
+  __tablename__ = "stores"
+
+  # Columns
+  id = db.Column(db.Integer, primary_key=True)
+  name = db.Column(db.String(80))
+
+  items = db.relationship("ItemModel", lazy="dynamic")  # this will allow us to check which item is in store whose id is equal to it's id.
+                                      # lazy="dynamic" tells sqlalchemy to not create seperate objects for each item that is created
+  def __init__(self, name):
+    self.name = name
+
+  def json(self):
+    return {"id": self.id, "name": self.name, "items": [item.json() for item in self.items.all()]}
+
+  # searches the database for items using name
+  @classmethod
+  def find_item_by_name(cls, name):
+    # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
+    # this function would return a StoreModel object
+    return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
+
+  # method to insert or update an item into database
+  def save_to_database(self):
+    db.session.add(self)  # session here is a collection of objects that wil be written to database
+    db.session.commit()
+
+  def delete_from_database(self):
+    db.session.delete(self)
+    db.session.commit()
diff --git a/models/user.py b/models/user.py
index 18263db..f5bde4f 100644
--- a/models/user.py
+++ b/models/user.py
@@ -1,44 +1,27 @@
 import sqlite3
+from database import db
 
-class UserModel:
+class UserModel(db.Model):
 
-  def __init__(self, _id, username, password):
-    self.id = _id
+  __tablename__ = "users"   # will be used to tell sqlalchemy the table name for users
+
+  # table columns for users table
+  id = db.Column(db.Integer, primary_key=True)
+  username = db.Column(db.String(80))
+  password = db.Column(db.String(80))
+
+  def __init__(self, username, password):
     self.username = username
     self.password = password
     
   @classmethod
   def find_by_username(cls, username):
-    connection = sqlite3.connect('./test/data.db')
-    cursor = connection.cursor()
-
-    query = "SELECT * FROM users WHERE username=?"
-    result = cursor.execute(query, (username,))   # parameters must be in the form of tuple.
-
-    row = result.fetchone()
-    if row:
-      # user = cls(row[0], row[1], row[2])
-      user = cls(*row)  # is similar to passing all values of row
-    else:
-      user = None
-
-    connection.close()
-    return user
+    return cls.query.filter_by(username=username).first()
 
   @classmethod
   def find_by_id(cls, _id):
-    connection = sqlite3.connect('./test/data.db')
-    cursor = connection.cursor()
-
-    query = "SELECT * FROM users WHERE id=?"
-    result = cursor.execute(query, (_id,))   # parameters must be in the form of tuple.
-
-    row = result.fetchone()
-    if row:
-      # user = cls(row[0], row[1], row[2])
-      user = cls(*row)  # is similar to passing all values of row
-    else:
-      user = None
+    return cls.query.filter_by(id=_id).first()
 
-    connection.close()
-    return user
+  def save_to_database(self):
+    db.session.add(self)
+    db.session.commit()
\ No newline at end of file
diff --git a/requiements.txt b/requirements.txt
similarity index 93%
rename from requiements.txt
rename to requirements.txt
index 16bcdb4..df44585 100644
--- a/requiements.txt
+++ b/requirements.txt
@@ -1,4 +1,4 @@
-Flask
-Flask-RESTful
-Flask-JWT
+Flask
+Flask-RESTful
+Flask-JWT
 Flask-SQLAlchemy
\ No newline at end of file
diff --git a/resources/__pycache__/item.cpython-39.pyc b/resources/__pycache__/item.cpython-39.pyc
index d96291831ed16e4a7059604a3d187fcc2208617f..779197585dc23ff0d4aff4633c79f1b376a0cf35 100644
GIT binary patch
literal 2226
zcmZuy&2QX96rT^<>vg=%ri9W$smzy<i?piXhDudLTT}@`l|({VL6);Kn|kYy&5XB@
z)#lV(K_GEMNQuOy7yb|a04{Uo)Ds6dAtCYJIA2@U);zy?^JeCK{N8ic>jea!>wo-}
z{pJ($Cr-{k4oq&t&;p1cf)*sfFDq!t5?1nrQ=Id{Dc!^^y~ML~r|6V^;#=M=x@C|A
zlzd8rCprg2bfo))CrdE*MHl8>I}ZijAaU>vZX#<jGw!`2(~nF?$=#{c4M_ZTsq3j4
zO5=lYk|`}?YQph1O^Qmnk^<)4`;9C=uZ1jzc+~mFgUM|e)*VR_DoDa4KXi^r;!1by
z2`W2+2`-%P97?Rjl|D$kV@dZ3m@oVT@`NUV=!)QgBuf&dOCq$=Q1rwFkoLqfxYIWd
znq%CF%7=1u_Uh)tTt}l^79tvERaH09wv4umta=o4<1~Ad);a5paURNIVtn1yN~XD(
zUA_BQs=X+O6QfE>p`$Fai%~8HLw3$p4m^%e(AzhGG~|%Z=@H#$bEYoM*&#b38<0@J
zaw_<UfvwJ(>6B9IY)8(P+dII#Q9Z51ApeOH5_8poqs+=EuSAL(>Gob)Wu-LESl884
z@IcFAWSmxp8c&IO8TS19-klG(9;kXOhmGEPu-81StM$7Zo7p7aQpZ`<Tex8`*)x1c
zHkZ+Iz$76opbquf%)gJzu(aSQLKO3AJsksc;;FiZ-p%RH0MB1Ic<G>*4IA5h@3V%?
z>4@fJ&VHre(|tY*=lsw;B9weds>>9<0ADIx*y)X!N4|o1-5{Xj9RUVx#QfukNr;$>
z#z(W|C@YlA#9k!7&2^)n{Q!ZRt$bWXQmI-+^>8=^oDTATK>qA^us815sH$b)6*_D@
z3vFcr`%N>oqfK9Dk7e4_smPjaJJVA2LG`JlF5<SAaGQfmY8B@g@|Ik(E0bC`ZvdxJ
z8w0w^0@i1YhSZ}M+053=0JRokyMUtWu=6Cg7Dd-u6xk>NiY%H=;~cwd3R5@>F>4W2
zqim#@_1jrpz1y?_QddCf7+5w0$!e>cj#OQqdAkB?&%5Qdn(xDswtcKc3ibJH$zr8l
zUvLTGg2TdP9hioUDHa0&0)SylgwMGkQ=$e9UxY}tI%k4j0T84vaLjTZK%#@Nfv=B6
z74tRKg_BheNZhqKRj;AoDiSQAHrc02>UET1Le(`S&!vw~rp-qn*Qh~gzyj{mi#(wC
zJuVASS&J_iKehFkrY1<!vKG@q0w1R7?ldc~D$`WCaER%xw{7(Sc2Q-`GhrqKqHS8r
zsxj`UsI$iKylNB{n0f_Cgao0au&bQ2)Y^<_v;LxMw(t1N2Z%9z|MT2auH(?a_g8=h
zR(}Zk3lBE4+b}fZ`J`22K|^chf@8Zfwjq25RW^iLI(?8o%`id`cL{!Qn&~^xyb-S0
z@NCuUh5dLl?%#l6Z{Hzv@^!cm?emZvkssNvv(Y*pQ=2pRGqJ&q7ZzS{vq1Cea&l`E
zj{6%1nMH_AG#h)_;AT+|vqIkj=0x?R&${sAQ_u~wqJXPxp)VrCrUXH((P+ZjVmmo{
zEq2sfAXaZ9c?XG2;n^8yIm6=q0){=v=L+X>&vf)|kvH-K1Oxnx6<(vTE0~@Yz<*aa
zqiLZqU@fq^?E?IiEozb_K%p%30FEhJ>|>9!7rY2P#=qIZ_7>(*hd_MRr+pf-koE8V
E4_`Xx!T<mO

literal 2493
zcmZ`*&2Jk;6rY*>^u|t;wv@J%vZc`C0(Pq&5E7J>)`3cGsFH}PD<Ny+87G_WhcmNQ
z8_SW9(j!P5xB*gp<WJ#Wm@B7TIB}{}iT7rc)G4smzMYS^vu}Ry_j}{G(Fh1!%^&`X
zFGK53>`Y%abQa)N91JI%rX<2AOKHX;mRXTSv2Uez=0r~BMy~1Gsh9bYZ`w{;%YrDN
z<SW8m?mZ{m6V9#`%|PGhHR#t&zs~6jX$Jf7C9>3H+F49v^+bD8Yz>7fVZ>h+su;?i
z&^`<fVyQ%v>iXu>vWrfM6dd}sd!@)86kMb|Tx$Aqp|b$DS_UIXL^+9=u=eZ;i5%f<
zx||A+Gj4JFN1GDi?-K5C_c__6QH^`te@>#njMjKyMrZg8ufu4aHz4>~ZR5waGmuG7
ztd7pFZX_z~CnDuxFV6F#4A(@smd5#$rlsw2dr)n~gs$xkkq&wcLOZ-HXyAPZZuKsh
zlI+njozNXNX7bFK?Xd}2fwXXzP;T`Z#9%LJFB3||>tb{wfoMYfY`+-hyp{Y+A=#Gn
zU@1M{PjcQxkM7!bH;*%+?M+qW7?~1jU)$9fdi+l0DR}3_t#+1|?JqkwIyXP<ETX-A
zeesj_Ls@K!Ua8s-x66$pU+%1|#)G6S57MRDxJGNRt*v!Y;zG&?Ls&p<>a&r552s=3
z*yfRYm@u>X4QL#0US7lvkLfSKyWcF>xQ!bx*``V44lBu+jv05(kzKZ9jp}1-&zTTP
z9+CVkg(t9*au?q7`phMd0l@17eB24}(Lh)`fKUL04u&3%PK0qPMa;KD@hnlL+W!fV
zlr@NIG=Dn}g_MO1i(YRC9Bl3X4U_wSz+}@iSj$;xOWd<|4Q-_k%(ENIb*0@TS3;KZ
z1ioR*Idq;!XPd`mEKgz|QLD^pGczbuc>!7qXA#NMEMT*Y(K>bMNj5SnXrb3JP#tha
zU=66Kf+J8DOSWh618$)rb}Y_zYy@v?k7=Jy7$v|sfXO^Pe4<hkkS#nN0Ms?`c}p*5
zTkR4w+s61?d~I~`Zs&eywG%EbfAb(jL{<3c>&|i~M2da>g**e1jOs{(5Oga_!AEmd
zugI^K73T6yaBBLm0M(w_N@1~^+Upg04g}OLBtR8Xd*Yes4NCz7MV2L{c6w<6)xwzq
zH#m4HDRPP0(hk%ax&1oQZWYkS;89_12Q&cI+H{ur6n@rd219LCe*Z%Ih{E5)3MJX3
zs97K>kku&JDlJ1-YUm1hb221y8E9)C(st|F0d1i&Rdhe3ZGOf0nVd|~8_0j$57vTw
zL3MDK3~6Npf*D<Uow?!DjU*LeMaLvxZ^^Uh7yggmZ~*y5H^>T-Tb@Vr78<ND73-0t
z+BL4CV)#@N<lE?n6preZOI49xPl7cVmJ8se@C$?nhU-49*nZkNVtrLfz<H_J(0<oc
zwQg4j-ELO!VJe_q?{>F_af-z2b|vaTH<qg-<{_Ra((FRlW6n{X!%XBrpMF}zrNmsy
zH_%)}^8uP`XkMw)v{0f35iAf2G4z2eF2oDJm#$~i!1w3Do-|%Pa5#418L$Ai!i5gc
zDJ*($(pcQWDzD8}??Wx>L9scyFv26op}yD24n>V0DI3{$sBCL&Pv~9p-Gv=zOo5LM
zx6To;_BlBBeq|F%$<}+IdB<qo9aGeL(_517z{;ajD<JAStKqdNSxXFNA5D{)8fNIG
zO%+v5SB5YnFQGxn$;)808xIB|=kk5%fQu=AH*xj~8sm2r{VZ8LokH4xjLCQmx5Bpw
z9480Tq~`(fs-hr9c(^P<Y5fqK<VR>w&s8e_D|a_w_FK3WX2Q25_L~h8J#qp5mq?tE
z78u<y1Mn9_mHlBVvAkBis#O#4|HLpSngJ4uRJEXHWtBpVYH;zXeVKSnk@r8VSbGcc
RRCO>uo1=5I&gyLL!9NawCl&wz

diff --git a/resources/__pycache__/store.cpython-39.pyc b/resources/__pycache__/store.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..7e6d780a72b5d122e5720840fb5b8a36da60560c
GIT binary patch
literal 1521
zcmZux!EVz)5Zzrni3tg`P)fxCjHp0C$f`J^s4Aj}3q)0egs_S%*SkqwoH*TefLQ6N
z{Q&rb=GaexBS&93^~3>AoS0cBX{vOi9nGv~cjmpBiC?Xj39P3-fBQcSLVlq!yG$@P
zV5>R^PB@K7hq{!a&LY+^T!WHVgd5yECfpSC$Z$=t3%m$+QQHMxYLc3D1}~5r&8%&q
z;=T+7=;dY-OYtV=A`0;H>|$VSz*egu1aT=RF5{H5W8xZlK-bIzx#JL7LBAK^)yV=>
z1osQr>JEs6oX{a1(L*+5a(T#3*oZU%59CN2HAA9vw%7{0+zS)Y@pcDZ*YAkT+*fh;
z)W}RFqE=?=vx36>Pl>z=m;OE3e73VC<9!h%YG-SZ?8V*fm(90+FWix1%xXv9aC(Ex
zXp5wXNueOLOih|z(fK>@Wex*+X$)JSOfbl0BqXHVXt5@o4(So#N-H@kO5Ty~3MKdh
zKNI{4EmkD&0qYt8A7cbH!ke{HBP(@;Qhr;cOF9YLkEG8Bw)hgNL^<JCN=W+ndDj+F
z#?p?1pf3ftKktQ+umdUlB<!~BWKY;R!tgI#IQtIC)=bT*EP$RZDF2i2lGx*Z;_v!O
zNCYNJD3HWlRM6Gz#VWxwwEzMcsxXT&TA@XHgQa=zIOsG-*0kUc;o^iWUGTdTYI5SB
z@IYQjfdaE3uYq@ZP3LbzOA3*2CtV!daraS@voUUx9MBRvCc<mUxN{EbGCalH6MInU
zsna#Ls09VnlsmaYqgKo;PdA<CWo6In#JnE~&?}yI(Dx&3J<pR>ct|dyxQXJNJ*^>y
z62}*}?lFs51?###3*hX+nhx6%9M2CM(v#)Q`5M|GfYMGE>KH>e=L#suEH{pU_kD`P
zwMmZXnBlCb$y65}z}Wae6Sl(mZ89VuDu*zoCuBsvu>-T2!>du<Ej5-gXH6o9GpKdX
zl<N`Z7k7H=So%M(NqS$ii;3f8IrS(G{79{XGVz^^ec_-lB#fpXMG(uH51>h3g>$9<
zV^~_f@OA@w9TCV|D3(#^DqU8a+wk=PZ2gi&CE8f}YAf>9M-Tonl2$*G7{{$Z3y4TL
fn!S9QkTHE{hJtC~Gpn9A%{o>`SHA+&vvBV}Km$I_

literal 0
HcmV?d00001

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index d3874b63e234027f8cd01369e05f477aa27e3b86..571f4578475bf5683c246d2d28ca0455e8bac7c4 100644
GIT binary patch
delta 309
zcmZqRyv)v*$ji&c00bMJyi0Us*~sV4$j1!ivH-C&5Er{mPG;0lW=><sWT;_W!q~@H
z%T&X(fOR1QBSQ*n3R@;)3VRw;FoPz?<ZFx$lY^Kv8QCV+Fd5bh6epIY#+T&BrzDmn
zCM6c9YBJwqDNfBvyTt+$xy4dioLaP!p-2R1$uDgetC)bI{H)aElH!<v%94!yydc-$
zki>$_n4;9;{L-T2)Z!SB2EBsHTPy|n#U&CTxA6c821YI>J|-R}K1L3vD#1{onxNG5
z%;L$F%rT;3KxwcANQCI*SIj1yx7dpdb23X(jVCL!80vuBfUE?_y~SaZo1apelWNBZ
P<Q2042@Xa9Mjj>rjJQqW

delta 468
zcmYjO!Aiq07*4Ww?Wz_Lg-t#5A~=-QsUV7MPN^b}DQ<eNO@@`NnMo>6HuM3!^#!)0
z7s0Eq;VsV~K7c1v@nHD>@8`>x@cn=CVLat*e`?ACYOOzi`9uB9K7zKcXjbKcN**Nv
zTt3l9S*(xY5Dn1C7=vL3XNTG#GcpI-0Ag4G3XKA2qcMU&oym>CZ?)2jO`HoMw%Vu(
ziWA8z+}nAuORgYXxY!qd312-d9XFcZdCNI&v`(Fv6ULp(TK&RnI?IiVdVSTYswgrG
zB%g2vP9%9$el+-PClq8u8Uc+W5(t?MV#X<x2Dv9eEQs2m-EJtP9&{)tMO|u~blOr&
zZKd^hEu;~fQL{?@HYTk90@%D_-xaqT33uNsdmG!{VT!f2!!7rW(HrH(-RfCiT+`^>
zYqtDe=rY1-%mTvQwEa@AFSQ=!BA-6utO5WnWTQ#VLMGBs9+}BIx|v&4!mr&wSV*=r
kn>w3TQgW9mucqDnmlc)fZkOV?Ln=@)p8l2zr{N^}0RuI7>i_@%

diff --git a/resources/item.py b/resources/item.py
index e70727a..1ecaecf 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -14,6 +14,11 @@ class Item(Resource):
     required=True,
     help="This field cannot be blank"
   )
+  parser.add_argument("store_id",
+    type=int,
+    required=True,
+    help="Every item needs a store id."
+  )
 
   # TO GET ITEM WITH NAME
   @jwt_required()
@@ -32,10 +37,10 @@ def post(self, name):
 
     data = Item.parser.parse_args()
     # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
-    item = ItemModel(name, data["price"])
+    item = ItemModel(name, **data)
 
     try:
-      item.insert()
+      item.save_to_database()
     except:
       return {"messege": "An error occured."}, 500
     
@@ -44,17 +49,9 @@ def post(self, name):
   # TO DELETE AN ITEM
   @jwt_required()
   def delete(self, name):
-    # check if there exists any item by name: "name"
-    # if exists then delete it
-    if ItemModel.find_item_by_name(name):
-      connection = sqlite3.connect("./test/data.db")
-      cursor = connection.cursor()
-
-      query = "DELETE FROM items WHERE name=?"
-      cursor.execute(query, (name,))
-
-      connection.commit()
-      connection.close()
+    item = ItemModel.find_item_by_name(name)
+    if item:
+      item.delete_from_database()
       return {"messege": "Item deleted"}
 
     # if doesn't exist, skip deleting
@@ -66,34 +63,22 @@ def put(self, name):
     # data = request.get_json()
     item = ItemModel.find_item_by_name(name)
 
-    updated_item = ItemModel(name, data["price"])
     # if item is not available, add it
     if item is None:
-      try:
-        updated_item.insert()
-      except:
-        return {"message": "An error occured while inserting."}, 500
+      item = ItemModel(name, **data)
     # if item exists, update it
     else:
-      try:
-        updated_item.update()
-      except:
-        return {"message": "An error occured while updating."}, 500
-
-    return updated_item.json()
+      item.price = data['price']
+      item.store_id = data['store_id']
+    
+    # whether item is changed or inserted, it has to be saved to db
+    item.save_to_database()
+    return item.json()
 
 
 class ItemList(Resource):
 
   # TO GET ALL ITEMS
   def get(self):
-    items = []
-    connection = sqlite3.connect("./test/data.db")
-    cursor = connection.cursor()
-
-    query = "SELECT * FROM items"
-    for row in cursor.execute(query):
-      items.append({"name": row[0], "price": row[1]})
-
-    connection.close()
-    return {"items": items}
\ No newline at end of file
+    # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
+    return {"items": [item.json() for item in ItemModel.query.all()]}
\ No newline at end of file
diff --git a/resources/store.py b/resources/store.py
new file mode 100644
index 0000000..9dad423
--- /dev/null
+++ b/resources/store.py
@@ -0,0 +1,38 @@
+from flask_restful import Resource
+from models.store import StoreModel
+
+class Store(Resource):
+
+  def get(self, name):
+    store = StoreModel.find_item_by_name(name)
+    if store:
+      return store.json()
+
+  def post(self, name):
+    if StoreModel.find_item_by_name(name):
+      return {"message": "Store alrady exists."}, 400
+
+    store = StoreModel(name)
+
+    try:
+      store.save_to_database()
+    except:
+      return {"message": "An error occured while creating the store."}, 500
+        
+    return store.json(), 201
+
+
+
+  def delete(self, name):
+    store = StoreModel.find_item_by_name(name)
+    if store:
+      store.delete_from_database()
+      return {"message": "store deleetd."}
+
+    return {"message": "store don't exist"}
+
+
+class StoreList(Resource):
+  def get(self):
+    # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
+    return {"stores": [store.json() for store in StoreModel.query.all()]}
\ No newline at end of file
diff --git a/resources/user.py b/resources/user.py
index 379de51..3f6eed1 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -28,17 +28,7 @@ def post(self):
       # if exists, then don't add
       return {"message": "An user with that username already exists."}, 400
     
-    # else...continue
-    # 1. Connect to database
-    connection = sqlite3.connect('./test/data.db')
-    # 2. Create database cursor
-    cursor = connection.cursor()
-    # 3. SQL query to inser new useer information
-    query = "INSERT INTO users VALUES (NULL, ?, ?)"
-
-    cursor.execute(query, (data["username"], data["password"]))
-    # 4. Commit the changes and close the connection to database
-    connection.commit()
-    connection.close()
+    user = UserModel(**data)  # since parser only takes in username and password, only those two will be added.
+    user.save_to_database()
 
     return {"messege": "User added successfully."}, 201
\ No newline at end of file
diff --git a/test/test.py b/test/test.py
deleted file mode 100644
index 56eab91..0000000
--- a/test/test.py
+++ /dev/null
@@ -1,34 +0,0 @@
-import sqlite3
-
-connection = sqlite3.connect('./test/test.db')
-
-cursor = connection.cursor()
-
-create_table = "CREATE TABLE IF NOT EXISTS users (id int PRIMARY KEY, username text, password text)"
-cursor.execute(create_table)
-
-# user1 = (1, "bob", "1234")
-
-# insert_query = "INSERT INTO users VALUES (?, ?, ?)"
-
-# cursor.execute(insert_query, user1)
-
-users = [
-  (2, "rolf", "2345"),
-  (3, "smith", "3456"),
-  (4, "john", "4567"),
-  (5, "clint", "5678")
-]
-
-# cursor.executemany(insert_query, users)
-
-select_query = "SELECT username, password FROM users where username='gold'"
-for row in cursor.execute(select_query):
-  print(row)
-
-
-
-# commiting the changes to database
-connection.commit()
-# closing the connection to database
-connection.close()
\ No newline at end of file

From f235ca9869922c1184780d75755e46af693428c7 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Tue, 25 Jan 2022 20:52:35 +0530
Subject: [PATCH 17/42] initial commit

---
 resources/store.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/resources/store.py b/resources/store.py
index 9dad423..ffb88d8 100644
--- a/resources/store.py
+++ b/resources/store.py
@@ -27,7 +27,7 @@ def delete(self, name):
     store = StoreModel.find_item_by_name(name)
     if store:
       store.delete_from_database()
-      return {"message": "store deleetd."}
+      return {"message": "store deleted."}
 
     return {"message": "store don't exist"}
 

From 02cb51e16309a1d409badbecbe127ee141c79bf2 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Wed, 26 Jan 2022 16:37:57 +0530
Subject: [PATCH 18/42] created login endpoint

---
 __pycache__/database.cpython-39.pyc           | Bin 191 -> 191 bytes
 __pycache__/security.cpython-39.pyc           | Bin 593 -> 574 bytes
 app.py                                        |  19 +++-
 database/data.db                              | Bin 16384 -> 16384 bytes
 models/__pycache__/__init__.cpython-39.pyc    | Bin 154 -> 135 bytes
 models/__pycache__/item.cpython-39.pyc        | Bin 1507 -> 1656 bytes
 models/__pycache__/store.cpython-39.pyc       | Bin 1559 -> 1707 bytes
 models/__pycache__/user.cpython-39.pyc        | Bin 1204 -> 1532 bytes
 models/item.py                                |  11 ++-
 models/store.py                               |  10 +-
 models/user.py                                |   7 ++
 requirements.txt                              |   2 +-
 resources/__pycache__/__init__.cpython-39.pyc | Bin 157 -> 138 bytes
 resources/__pycache__/item.cpython-39.pyc     | Bin 2226 -> 2628 bytes
 resources/__pycache__/store.cpython-39.pyc    | Bin 1521 -> 1517 bytes
 resources/__pycache__/user.cpython-39.pyc     | Bin 979 -> 2205 bytes
 resources/item.py                             |  23 ++++-
 resources/store.py                            |   2 +-
 resources/user.py                             |  88 ++++++++++++++----
 security.py                                   |  12 ---
 20 files changed, 131 insertions(+), 43 deletions(-)
 delete mode 100644 security.py

diff --git a/__pycache__/database.cpython-39.pyc b/__pycache__/database.cpython-39.pyc
index ee989203d66d4a73022f0709e7b44a88769b5ec5..ff40e8eff1b473f057917ac8e8f60f851f525992 100644
GIT binary patch
delta 26
gcmdnbxSx?Xk(ZZ?0SL;TzfZK8$XmgfGO^7P0A7~|#{d8T

delta 26
gcmdnbxSx?Xk(ZZ?0SNxhc$a83k+*`;Wn!Bp0AVf%-2eap

diff --git a/__pycache__/security.cpython-39.pyc b/__pycache__/security.cpython-39.pyc
index 211b4693ecb25d635c2e170c05788150878eb2e4..0289371ba947aa6c731075d50479986f9cf8c5ba 100644
GIT binary patch
delta 52
zcmcb}vX6y3k(ZZ?0SL;Tzn{qcS6Vg2Dkh*PKPxr4q&Oy^vLquvFUU1GB(WefX0sWi
GG$R1Mn-NI>

delta 71
zcmdnTa*>5Qk(ZZ?0SJ<$-%RBGt7oB~n^&Um<Z9?@Z0YI-A{`Cf%=H6`^0QKtON#Xa
XDoZl*^MYK1LlO%z^*1XsN;3ig%xo0J

diff --git a/app.py b/app.py
index e475db3..1f5b99c 100644
--- a/app.py
+++ b/app.py
@@ -1,9 +1,8 @@
 from flask import Flask
 from flask_restful import Api
-from flask_jwt import JWT
+from flask_jwt_extended import JWTManager
 
-from security import authenticate, identity
-from resources.user import UserRegister
+from resources.user import UserRegister, User, UserLogin
 from resources.item import Item, ItemList
 from resources.store import Store, StoreList
 from database import db
@@ -13,7 +12,9 @@
 app.config["SQLALCHEMY_DATABASE_URI"] = "sqlite:///database/data.db"
 
 app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = False    # turns of flask_sqlalchemy modification tracker
+app.config["PROPAGATE_EXCEPTIONS"] = True   # if flask_jwt raises an error, the flask app will check the error if this is set to true
 app.secret_key = "komraishumtirkomchuri"
+# app.config["JWT_SECRET_KEY"] = "YOUR KEY HERE"
 
 api = Api(app)
 
@@ -29,13 +30,23 @@ def create_tables():
 # the authenticate function maps the username and checks the password
 # if all goes well, the authenticate function returns user
 # which is the identity or jwt(or token)
-jwt = JWT(app, authenticate, identity)
+# jwt = JWT(app, authenticate, identity)
+jwt = JWTManager(app)   # JwtManager links up to the application, doesn't create /auth point
+
+@jwt.additional_claims_loader   # modifies the below function, and links it with JWTManager, which in turn is linked with our app
+def add_claims_to_jwt(identity):
+  if identity == 1:   # insted of hardcoding this, we should read it from a config file or database
+    return {"is_admin": True}
+  
+  return {"is_admin": False}
 
 api.add_resource(Item, '/item/<string:name>')
 api.add_resource(Store, '/store/<string:name>')
 api.add_resource(ItemList, '/items')
 api.add_resource(StoreList, '/stores')
 api.add_resource(UserRegister, '/register')
+api.add_resource(User, '/user/<int:user_id>')
+api.add_resource(UserLogin, '/login')
 
 if __name__ == "__main__":
   db.init_app(app)
diff --git a/database/data.db b/database/data.db
index b6cbb4bbceed794716e955ad0182f81d0283c66b..9b81762182de102d680547eccbc48e560310e3df 100644
GIT binary patch
delta 112
zcmZo@U~Fh$oFL7}IZ?)$k#l3h5`GRQ{wEClpZT9`78JO_uf)s5!XPeMoSRvaVQ6G*
z!p+FSAS{}cp9JFYG5~=9P~9W`i4!EaAY29p{<jdJ02TpZQFhLx{QPVO&0i1Q*NIdE
E03=@=O8@`>

delta 163
zcmZo@U~Fh$oFL7}J5k1&k#}Rl5`H#D{?82jpEnCCyyTbUW@KRy7EQ`eGBh$a;bmZ8
zVB&wp!2gy16;S#fzX~T4GlOJtNq$kP5ho*zX$VnwlY##&|4shGn*{}S@LP$Bvoj`V
xBxV*l=>B@>zD}f?i9v{ol|h`HGdUwOvB*IaA}Ywp${@<lnUtTO?Vt}40syKeEd~Gp

diff --git a/models/__pycache__/__init__.cpython-39.pyc b/models/__pycache__/__init__.cpython-39.pyc
index 146323763bef207591952247972c2735eaf14cef..9c283e0cddf4018c42185141f4c9febce703aca2 100644
GIT binary patch
delta 57
zcmbQm*v`nE$ji&c00d>v-%sSWQPN4ViU}yn&q_@$DUJ!KEXl~v3vvw(Ni4{W$<0qm
L%_)wVSR)4j?XeRl

delta 76
zcmZo?oW;nU$ji&c00f55Urpq;F}2sv%`4G&ay4`{wsds^k&Xs#=K29e`B|ySCB^yy
bl_eSZc|oqhA&CW<`nmZjsX4{^6Eo!i8^{+A

diff --git a/models/__pycache__/item.cpython-39.pyc b/models/__pycache__/item.cpython-39.pyc
index dd94649c3550ee28227735855567f18bfec9a586..06be40f2629fe1075d542397b758a5f4495fa19a 100644
GIT binary patch
delta 292
zcmaFN{ey=$k(ZZ?0SG)~J|te5$eYDDV`4?MQmRl2e~Lg0Lo;KPNQz*JPzytpXo_%(
z2#^*_5e;V06r0S+cz`iw@+rn+d|>@dER10IXYw?r$&9j-wU{l^nSkax1934(MGZq1
z!ve;I48aUVoItK7Q;{f;y2YHBlcUL4Bmra>@xcjxkQ7H+W?o7>P+l3xD+U?Hz*HsV
zS(2LTo1c=JqX(0o9LU_js4@8xb1t6@NFN(eGPNYNNN%z(i!P(i<Z2c@M)Aq3SXOaM
v1Eq`PL4@MuC{{%|ka7+t7G?oP0Y)Jv5k@X14pt6MCPpq+AZD37mDLXbEFe9~

delta 168
zcmeyt^O&1Ak(ZZ?0SI`my-#$R$eYF3GqIvtEQLQspoJkyBt<Yq2uO>j2nRE0icA(|
zJizEO`5NOfHYSiB#>uOgCNoM*wqv%K{Ej)FQGRk9ORlgKQ05j}N@`AONotV{kW(Z)
zIgm|w@<$d?M&-%uta^-Mlg(IHvB`p@<R`yoRg{tdGC7!7m<1RG7=@Tb7`d1@SUFgj
M7`fOcYq9wO04!uB7XSbN

diff --git a/models/__pycache__/store.cpython-39.pyc b/models/__pycache__/store.cpython-39.pyc
index b2aa6410ae08dff65999f515f17cb06caa48f40f..e5808788b6b59be6eb8b39ab24c3d0c377c16954 100644
GIT binary patch
delta 315
zcmbQvvznJTk(ZZ?0SKC8J|y0s$eYDjHnAd7DU~mUFNME_p_wsCAVnZWu!SK?FhwXu
z7)T4Hhy*ieicWmq$Cxs?jPWO<$m9a1QXUSFAxtccEQ~^bC%<Nz#3(Vjj@eR&2`K6e
z#Kj;>Y8bK@7BDVk2xce(aW$EWq<~bB1c=R8Bs=*7tB6KgW?o8sVor`6P_P)Jn}MlH
zIJhLgDAhMVB{fG6CO<iV#bxp<W*bK3$?7b5f(k%|x7dIRQcF^clz^N`ETWTlvxqXP
zPrk^a&nP^Zk+s`R9w=U<3?fuP1RpBF58^Td2@oy@If{dcg;{`6fQgTZgPDVaiIIyH
Lh*>6|Wc338k^Dhy

delta 174
zcmZ3@JDrC&k(ZZ?0SM-veV<r6kvEGmYhp#DSPEYXe+xsDK#D+$AdnVJ5ejC|6rT9G
zkI`jv6XQ=t!O1mDrEE+fjf|83GEHI>nLL5na`GD%<H@BgHjL7fH?idL$pd9?v8ANu
zq?V)>DNfd7)n$~Q9K)*5C^Wf;wVO=|C|#s7xt>j2p@<pC2H|26Ai=@J!Ysfjz{JPI
Q!OX$J#K^@qIhM^20Nj2j`2YX_

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index de3c6aae46d3ea161ed52e57528f14dfa6b2ad96..1807a90bcfd423268ef2009b51372dae8d3221ff 100644
GIT binary patch
delta 511
zcmZutO-sW-5Y22tn<j0V)+!Z?_zC9XQ4fL_1yAjzs8GQWJ5gJj1~w5&DO9l+k7cj^
z0q=V8H~0t4j}Whd2WMMR5NDaUZ)e^PZ}&0tX<A+`XDAdqEAL)k9a|iF<C}vmOrt(h
z8d*Pw88k-9Ei^3RCT1r*k2$ocZ(|;9+6!2yD^79zb_XbWP#=Pv`5lt0lzWtsMKDm>
zG6CV9(KS|cSi)MEXk9Px9mcby;VFU#;JW0QACO)XtsRBk0<nk@DA2bKBcE48^gElf
z)nwuYuAwBV?8KT*vq?vjXT%d*g|c{M+(=T*FbG;Px5Tl!1{E<-H^c|qAM!a8Cn=id
z$38F9flJqaU6iH*_ne1;i(c%Vd6B<F!bl@fAPfD)Utj-;YfdrIU01%^brZvNgAlJe
z;#u9^m0ysg>M?J1FD75X(^TQ6guLvT&5jpEfgfLn$V;+3D`8&3f>_s<E7G{mG}Q)L
QOxJXkfiX#46Q|nI7ZBogApigX

delta 213
zcmeyvy@iu6k(ZZ?0SJQby-VE7G?A}}F=Jw*yILww3VRAi3qvzw6fcm?nZgBT^QCa7
z@U$>Q@u%<xGidTn{MX6oGP#2>crp{S>Eu2pA4b8+x0#}OZ!u-26!8E})nqE-pX|b{
z%qTiJgSm(&iY+-mH#f6Hld*_n@)KqiM#;&XEE>#yngWv_vUmYC>##~m-r`QqNh~hT
zO)bgDPbm@rno=YLB19*jV-=s=z{({d0_1Wqu`mlT0wEIz3lk$3GYC&!#u^3ym{K!X

diff --git a/models/item.py b/models/item.py
index 987a584..d4fad3d 100644
--- a/models/item.py
+++ b/models/item.py
@@ -18,7 +18,12 @@ def __init__(self, name, price, store_id):
     self.store_id = store_id
 
   def json(self):
-    return {"id": self.id,"store_id":self.store_id, "name": self.name, "price": self.price}
+    return {
+      "id": self.id,
+      "store_id":self.store_id,
+      "name": self.name, 
+      "price": self.price
+      }
 
   # searches the database for items using name
   @classmethod
@@ -27,6 +32,10 @@ def find_item_by_name(cls, name):
     # this function would return a ItemModel object
     return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
 
+  @classmethod
+  def find_all(cls):
+    return cls.query.all()
+
   # method to insert or update an item into database
   def save_to_database(self):
     db.session.add(self)  # session here is a collection of objects that wil be written to database
diff --git a/models/store.py b/models/store.py
index 97d8a04..fe85208 100644
--- a/models/store.py
+++ b/models/store.py
@@ -14,7 +14,11 @@ def __init__(self, name):
     self.name = name
 
   def json(self):
-    return {"id": self.id, "name": self.name, "items": [item.json() for item in self.items.all()]}
+    return {
+      "id": self.id, 
+      "name": self.name, 
+      "items": [item.json() for item in self.items.all()]
+    }
 
   # searches the database for items using name
   @classmethod
@@ -23,6 +27,10 @@ def find_item_by_name(cls, name):
     # this function would return a StoreModel object
     return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
 
+  @classmethod
+  def find_all(cls):
+    return cls.query.all()
+
   # method to insert or update an item into database
   def save_to_database(self):
     db.session.add(self)  # session here is a collection of objects that wil be written to database
diff --git a/models/user.py b/models/user.py
index f5bde4f..c0b6dfa 100644
--- a/models/user.py
+++ b/models/user.py
@@ -14,6 +14,9 @@ def __init__(self, username, password):
     self.username = username
     self.password = password
     
+  def json(self):
+    return {"id": self.id, "name": self.username}
+
   @classmethod
   def find_by_username(cls, username):
     return cls.query.filter_by(username=username).first()
@@ -24,4 +27,8 @@ def find_by_id(cls, _id):
 
   def save_to_database(self):
     db.session.add(self)
+    db.session.commit()
+
+  def delete_from_database(self):
+    db.session.delete(self)
     db.session.commit()
\ No newline at end of file
diff --git a/requirements.txt b/requirements.txt
index df44585..9ffc1ca 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,4 +1,4 @@
 Flask
 Flask-RESTful
-Flask-JWT
+Flask_-JWT-Extended
 Flask-SQLAlchemy
\ No newline at end of file
diff --git a/resources/__pycache__/__init__.cpython-39.pyc b/resources/__pycache__/__init__.cpython-39.pyc
index fbe2f604657164d0db3d87cbaf02e08d2447230a..a90037809627f3d14cba49dbdcb36d8919ebf5af 100644
GIT binary patch
delta 60
zcmbQs*u}`5$ji&c00d>v-%sSWQPoeeiU}yn&q_@$DUJ!KEXl~v3vvw(Ni4{WDM~HQ
OFD*(=EsmL3F9!fEXcUbA

delta 79
zcmeBToXg0a$ji&c00gqnUrpq;v2fDQ%`4G&ay4`{wsds^k&Xs#=K29e`B|ySCB^yy
el_eSZc|oqhA&CW<`bDY5`K3k4sm1yebL0SHq!?iU

diff --git a/resources/__pycache__/item.cpython-39.pyc b/resources/__pycache__/item.cpython-39.pyc
index 779197585dc23ff0d4aff4633c79f1b376a0cf35..038515709395517b32fa671f01a2f56e2a5c457f 100644
GIT binary patch
delta 1247
zcmZux%}>-&5Pu)tZg;nQiU<aAi3$|s#`qNv#Q2pMBS9lZ<0e`P@9n10Zt=CKkR=@8
zWP)+is|Puncv1fa58gB$d-medKS1NmTLp|ZdB4s~XXd^4o0-1r`Ow$tb#xR7JX>Sm
zy=Jl1IYfij@w4Z`LbVVUt3^r#5xJlg+Ets9YebkLzez-1<~De>19VFiKrd*$v-SM!
z1kdb+CyA@%qh()7k>%?$alw*x{}x<d$VTEPD{sHd(%}N^o%PiGhH(8vhVI;o+wek}
z84GdLaMD|>pZ346vk_WCPt}7^OjABF)(hfmL+wLLA3$aZFY(lV)cbefK>C$Wt{b3p
zSXW@hR{;{TLDpE42|7sPgMta}Q(@HD3`yuK)}-5XjW@YE-{i0OHUSoL!u073zVqN|
zp{G-r&MZH6JrVj1)eTu!2QQ&qUQ+&JKk(`@E^8i&K!o3-aInF2);PL&5PTg&<>94v
zu9fu(8OTJsH5G*}-et~<CAjV0(3}rEKaBsmBjm}<cJwKbV>}CCCbOuWem0)nE`h4L
z0GxutYO5iHLkK(Ds~smbj31C*br@j}nV@ETX*s!^zR5kLLutu8;tZhA2*NRhQH0$P
zEge8xF}-J=c+jN}Fb{^m9xTp9STXJ`NtFsxWs(aj*cKIB7@K5+Rt=E@+Re<m4y`if
z$H^UsW>&P6_))_P=4twg4qU@Dy1W#lH+4a`$yJDlf>Sjvc$57pHk1=Qnhd{UYrkae
zCUC6j)XJYeg{OC@=HfNWSmoq@sV`0jaF+QfT)J>S4f7Lrmcw3-zkP&o$TPa0z!(jZ
z7JFpC`KfMKc<EA{1fM;8X{xY@9@<X>tPV^?b!e(2DnIt+lX4g-S;qFLI82>EFD$pi
zm4&jNCri(h7X)C%?pe?B%du22dF_DR^62fbf_GuXSaawb+RF`U8#ZM>4bFb7+JES-
zzz9z}IW-1uY8=5qFcEYc>?YQd&R!v8Ke+=gF;1ZcO{u^{oUXKNow?at3%qy{e-N&G
sn#hKbqMc6<2VSXK3M1(4xPqLv`&AQ%N%j!e-Y|V(4Vit+X5BY_0gzz><p2Nx

delta 927
zcmZuv&ubG=5Pt9NZnB#nZK7$dv=(bCvJpdR4PIgq6h$ZzT2Cu<-S)jm;wEX|Zjef(
zhvw8<Sm@REn2Vr-e}Ol>dU;3x0Z$$UXErvm=!5xoW_ISy%s20I;X{7H%VtvqPVw6h
z@15D7n4`RZvs|Kt6K?ocGv%Zxc|>@ECwqh^g>k4kX|PRhfo;Whrhi<Xq$<;R6}nRF
zb?Q>^_dlQ0auP09`C7fj-FhgR?)JXh@|r^FjiB8cXi5)+UsL+fhY<rJr#>FB1)9cG
zIf-CKpS0qQ9H;|bUO>-90Ht#;^kf0;sS!*^Nxc&NqS@6V_(F0*yY!U4VO=KYyX=IW
z5*UnfR;Qcz)#{Y%HMU7?qbg^julmyZWyrHNIV$fIxbQ_N+?s4RU97q71w!UWCFA1L
zV5-D0as~7t<}`X{9Bo(_nFX*dX`()hFo!TIB1b{;3jV-h<vhY)qk*Zk-A;Hnx|7(V
zv(a&4(Y}N+R}mHvt|5$5My&yd-xIeEQgH)25OnS^u<n5bNTwhT<-}pgQja(q*MJ>e
znU7&R>-8Yqp%8R-P}f23g9I}Gn8mdoFyEla_5*TAk!xG8D#O4H2ho@0>I!yd(|Ass
zDOOtkXOR$~QWYO7wwt?aPorhCc<^U2%Gm1&xvw<O_u-cKO^m0;T}UKm10=xV2z#A5
z>%a6ugjHLYi{O?^2-gu}BFA@(nZtMV1OzWi5mS@su(Q!y>-Lsa^S$7u3(sCA!0V)&
oZFmAf3FjOxH(oeq{BJADtUyA?7i-94kO44Rj^=2FWmxXvZ>Vy${Qv*}

diff --git a/resources/__pycache__/store.cpython-39.pyc b/resources/__pycache__/store.cpython-39.pyc
index 7e6d780a72b5d122e5720840fb5b8a36da60560c..ba56a097635e5c0b032ff94a1a441a6e3abb55b4 100644
GIT binary patch
delta 76
zcmey!{g#_Ik(ZZ?0SF#QeMmgHk=KclF=cZA<9SA=lGM$L%m$1CVnE3h#uTO$<`#w$
dh6Rk1lUbJWG8Hicg>P}BW#*;CPnKZ42>=gz6gU6?

delta 80
zcmaFM{gInDk(ZZ?0SJsPy-z%~k=Kcl(PeW0<9SA=)RN7L%m$1?5<tlm#uTO$<`#w$
hhAhSfOp_B?mhm$eF#{!Tu@;u57FFJ2o-D$8698P<6`ueA

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 571f4578475bf5683c246d2d28ca0455e8bac7c4..ad58679d161cfc38124d7aefb3511ea592f9ee96 100644
GIT binary patch
literal 2205
zcmah~NpBoQ6t1Ovrf2myIFOia2<rrCF5D1{QGyT%tjIB!mPM=6Rb#i)%cQD0&Wy&V
z<VX-m95`^WB`*0V@E7XJ$w#gcAl|FCqj4ajM)js%RlV15`TFa)*J~3PU#$NTf7>GD
zcT|=~1C$Mz`X>;A2%3?chBRj(qo}it=U(W!HP8IK5jOH>*mSy=1$irMQ6kw<`<R3s
z+1c+3U-m>pG)3?btlUm(dFL}C+M@G-h>oQ9dDsWND|(>!oW25jU#x(>;`D(S+$5vb
z6NrwCm<_h1E-RHt8z^~a8Y?YF)OK||k&!kkO7bb(dM;5iHZqEnL~0$G^0qAO+Ucf}
z6D9Rty$i;zueDTPl|p7Vs9;&dx!j(wZ||jgI7wwDhDlr$r5WCmLzz#_Y{ac+X45)^
zDpgWgZ%<}Z8%$%Z4@xBxjCOf2P&Q!dH4u`7RFIGfD%b-Oa={@(&vr46ExDU&BUM7-
z;@RM^@L*npsjq`D<cJ=VLu%L&Ur<3WlVhr`2qt(+g*Rb0iD46xk_G*Ren$`4f*pCs
z1bXI+2Ha@kjZv_v0`O&<In*fLmGi5g6hkb)@E|pNL$enfr(!*ZaRwC?v!T2P;puVu
zJ;WC}O9_^jF!W(8gcL(vxuQ?1ESrr_euF2BeA|uCapd}?Y}@@uvD($Di6IOoX(6Ip
zGj|K07Y=lMS3-*-5u5l{3|)qzYne@~hdb6oe~*ZI9?T!Vd;R^L8>-xwiP1YZW@fJ}
zwm!YN9Z%C8=(K~2-a&)$bY{J2sm(f==`ILD1J-9<-iQDBDyDJPfid3OguVn(gds(d
zZAVdFiYmi(H;V35aaNzGOW?`HvLs%>y&ec$XhcB3o&GO$V1GC8(i<So&>?w^kNY(A
zV9ka1fWX=pKJ>0(J&ZL$uV(|j;JgM?UjczAS<qwGf4z?0p!Xbm4|rh51W~uC`f&5{
z3VItN$R}l0i1Epf(BBcSyVE}FP6|NZ*JbgDTb^V(Y+_BLRH%#K<EhLo-<9SnhJqj?
zyiGmYW%B?ZG=`&RhmJ=77dk*0fSyuF!LL(LFN2wS1;o7Pl7aVG8Y#x7S*TaxC|s*|
zqlqf>C(u%_p(!G%7T7P_sBgXpYwZ}6)fohI-f=n9=bNL3x{Q{HDD@&*c9INeAeR6`
zp<c&rZ0nML_aujom*C(Xn65?vW3(MGs&F@fd2V25H(+Xn+J9l>ltmnyeOd0N#W@P`
z!RiTxd;`jVQ3w)++A`jP?fXD0>@vBJdIR((0`MU_<R);M|BxPf3%>9~<7ZYAiU>pt
z0M>To(y7Ts;XAgCyqyYJnAFUy@7Q-l)!T3cC*5---8;w5C%?iShtT=j=f&MPOM#4m
zZ_!np0S*0tFm0&;URy<hbfPYxz--;)73OXkz!blABVXaWp^%7c+>UUCpj&E@>kd}>
zW0)EnMtH#c-Wm`^mov)#_Bi{?^XGlUf-CnaU-(bKLA?pK&*q1>;PgY78pA~dDBRf`
zt=irMV01eI0yDs+3g2{vAP83vq`Ezq)$Ul!q*72*m#e){8|)vLNZvED05W!|yR^d&
zFqedqRS>VMQrO#)cPj9H13#k5)exE?1oCo~Ly0YiFREiK2T2#%QjMO#*ajcewD=Kp
egJ?`(K)ZARv>L!$57olopN+=SIvA`DF8%{VWcj@S

literal 979
zcmYjP&2G~`5Z+z?#0^PRBtQjm@PSJ}%7sgX5NgHWiK<G=#foHYvy;Zfj-A~#B~^Q(
zR}hcTNL;w_8oa_@;nE8afH*MYP$_HecxOE0`Mz&fcDrqc>-(?Ya>r-vCpoJNV{99@
z*+Qe3;yFv`EplFnL=;})aq_*~FM=fC>@`!q3NDxmKz#I)Q1N}%3$L)6?e>I=24Kos
zkHAG5W|h<idfctOHK5;=3i1&puC5TBZQO<ou!Jj?2=Ffb1xo@5j<Er>lu(}XKlz+B
zkzh5VLe;upNu(kKvgSI}Y5+%>v7lX4qc@cW9Gu=em}Dj%XOOFSB&XBT#)l9?QQ3LV
zbH1HdOU!kqK{<Z{dF7%?8go)=HR6cwdU<#t-Jat%uh3X_%rC`)opX!8&$!}u*@Ei_
z1Uuu(AB%lvy)nz!8UM;Z^K)?~E`tR_WdjvrMvF3f(XJ*nT&n<M<Pn@c+?mEiAU?_L
zB(@W28<+URGS?v0JcbX*)bz72h%jj?0V_92g;**DDmL|Kgg+eDc|Px7{lE^rPzTf~
zZ04g~yLqQl9~n)=+{QSYs`PN4Ud!h;jC>ENEmI|}Jd`+9)XYFWc0NU%PnqACzJ=v~
z9=&)n+|%VTjI0^%&F!R|4qomb$SND^|JTC|si0rYonMv4Zep3~pkcf%)<s9G^GKZD
zBo^1R>{H$@PB=<aQXoxTJ57sH)j6FzX*#QAzWkzTL`io5vl@)uqg$wT7h|r2nh?>t
zfT?w!v0C53c!PVz+@=_5MBCg)6NyOpTr8izVQb|aHJQDZYnfS|S$OQa<6N3|DU!7)
ryB72}g5+)>UdT<K$Tw0qr7Mj|KTX|T^mNJX8C^X?7bD^uyd(YrB8vbx

diff --git a/resources/item.py b/resources/item.py
index 1ecaecf..3bbb063 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -2,7 +2,7 @@
 
 from flask import Flask, request
 from flask_restful import Resource, reqparse
-from flask_jwt import jwt_required
+from flask_jwt_extended import jwt_required, get_jwt, get_jwt_identity
 
 from models.item import ItemModel
 
@@ -49,6 +49,11 @@ def post(self, name):
   # TO DELETE AN ITEM
   @jwt_required()
   def delete(self, name):
+    claims = get_jwt()
+
+    if not claims["is_admin"]:
+      return {"message": "Admin privilages required"}, 401
+
     item = ItemModel.find_item_by_name(name)
     if item:
       item.delete_from_database()
@@ -78,7 +83,17 @@ def put(self, name):
 
 class ItemList(Resource):
 
-  # TO GET ALL ITEMS
+  @jwt_required(optional=True)
   def get(self):
-    # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
-    return {"items": [item.json() for item in ItemModel.query.all()]}
\ No newline at end of file
+    user_id = get_jwt_identity()
+    items = [item.json() for item in ItemModel.find_all()]
+
+    # if user id is given, then display full details
+    if user_id:
+      return {"items": items}, 200
+
+    # else display only item name
+    return {
+      "items": [Item["name"] for item in items],
+      "message": "Login to view more data."
+    }, 200
\ No newline at end of file
diff --git a/resources/store.py b/resources/store.py
index ffb88d8..17f719e 100644
--- a/resources/store.py
+++ b/resources/store.py
@@ -35,4 +35,4 @@ def delete(self, name):
 class StoreList(Resource):
   def get(self):
     # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
-    return {"stores": [store.json() for store in StoreModel.query.all()]}
\ No newline at end of file
+    return {"stores": [store.json() for store in StoreModel.find_all()]}
\ No newline at end of file
diff --git a/resources/user.py b/resources/user.py
index 3f6eed1..90ce528 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -1,34 +1,84 @@
-import sqlite3
 from flask_restful import Resource, reqparse
+from werkzeug.security import safe_str_cmp
+from flask_jwt_extended import create_access_token, create_refresh_token
+
 from models.user import UserModel
+
+# extracted parser variable for global use, and made it private
+_user_parser = reqparse.RequestParser()
+_user_parser.add_argument(
+  "username",
+  type=str,
+  required=True,
+  help="This field cannot be empty"
+)
+_user_parser.add_argument(
+  "password",
+  type=str,
+  required=True,
+  help="This field cannot be empty"
+)
+
 # New user registraction class
 class UserRegister(Resource):
-  # Creating a request parser
-  parser = reqparse.RequestParser()
-  # Adding username argument to parser
-  parser.add_argument(
-    "username",
-    type=str,
-    required=True,
-    help="This field cannot be empty"
-  )
-  # Adding password argument to parser
-  parser.add_argument(
-    "password",
-    type=str,
-    required=True,
-    help="This field cannot be empty"
-  )
 
   # calls to post a new user (new user registration)
   def post(self):
-    data = UserRegister.parser.parse_args()
+    data = _user_parser.parse_args()
     # First check if that user is present or not
     if UserModel.find_by_username(data["username"]):
       # if exists, then don't add
       return {"message": "An user with that username already exists."}, 400
     
+    # user = UserModel(data["username"], data["password"])
     user = UserModel(**data)  # since parser only takes in username and password, only those two will be added.
     user.save_to_database()
 
-    return {"messege": "User added successfully."}, 201
\ No newline at end of file
+    return {"messege": "User added successfully."}, 201
+
+
+class User(Resource):
+
+  @classmethod
+  def get(cls, user_id):
+
+    user = UserModel.find_by_id(user_id)
+    if not user:
+      return {"message": "User not found."}, 404
+  
+    return user.json()
+  
+  @classmethod
+  def delete(cls, user_id):
+    user = UserModel.find_by_id(user_id)
+    if not user:
+      return {"message": "User not found."}, 404
+
+    user.delete_from_database()
+    return {"message": "User deleted."}
+
+
+class UserLogin(Resource):
+
+  @classmethod
+  def post(cls):
+    # get data from parser
+    data = _user_parser.parse_args()
+
+    # find user in database
+    user = UserModel.find_by_username(data["username"])
+
+    # check password
+    # this here is what authenticate() function used to do
+    if user and safe_str_cmp(user.password, data["password"]):
+
+      # create access and refresh tokens
+      access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
+      refresh_token = create_refresh_token(identity=user.id)
+
+      return {
+        "access_token": access_token,
+        "refresh_token": refresh_token
+      }, 200
+    
+    return {"message": "Invalid credentials."}, 401 # Unauthorized
diff --git a/security.py b/security.py
deleted file mode 100644
index 9fb76aa..0000000
--- a/security.py
+++ /dev/null
@@ -1,12 +0,0 @@
-from werkzeug.security import safe_str_cmp
-from models.user import UserModel
-
-def authenticate(username, password):
-  user = UserModel.find_by_username(username)
-  # if user and user.password == password:
-  if user and safe_str_cmp(user.password, password):
-    return user
-
-def identity(payload):  # payload is the contents of jwt
-  user_id = payload["identity"]
-  return UserModel.find_by_id(user_id)

From 8ea12759d1fa66aa3ffcdae66618184924365302 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Thu, 27 Jan 2022 21:51:41 +0530
Subject: [PATCH 19/42] Added blocklist and other jwt configs

---
 __pycache__/blacklist.cpython-39.pyc      | Bin 0 -> 155 bytes
 app.py                                    |  53 +++++++++++++++++++++-
 blacklist.py                              |   1 +
 database/data.db                          | Bin 16384 -> 16384 bytes
 resources/__pycache__/item.cpython-39.pyc | Bin 2628 -> 2647 bytes
 resources/__pycache__/user.cpython-39.pyc | Bin 2205 -> 2614 bytes
 resources/item.py                         |   3 +-
 resources/user.py                         |  17 ++++++-
 8 files changed, 69 insertions(+), 5 deletions(-)
 create mode 100644 __pycache__/blacklist.cpython-39.pyc
 create mode 100644 blacklist.py

diff --git a/__pycache__/blacklist.cpython-39.pyc b/__pycache__/blacklist.cpython-39.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..bc810dd404a761e8bbb2e418049bf322b5d33139
GIT binary patch
literal 155
zcmYe~<>g`k0?SRG5-oxBV-N=!FabFZKwQiNBvKes7&Dln7*d#m88n$+g5+K@0|`G(
z##@|DK90`bKAyoLD;bJdfP!G+mzs-JOh8e7R%&udaZEsENk)ENkZW*AVnJq1QchxW
dc1~t-iC#hFEe@O9{FKt1R69nX*3Ur9004n0BM$%o

literal 0
HcmV?d00001

diff --git a/app.py b/app.py
index 1f5b99c..752d83f 100644
--- a/app.py
+++ b/app.py
@@ -1,10 +1,11 @@
-from flask import Flask
+from flask import Flask, jsonify
 from flask_restful import Api
 from flask_jwt_extended import JWTManager
 
-from resources.user import UserRegister, User, UserLogin
+from resources.user import UserRegister, User, UserLogin, TokenRefresh
 from resources.item import Item, ItemList
 from resources.store import Store, StoreList
+from blacklist import BLACKLIST
 from database import db
 
 app = Flask(__name__)
@@ -13,6 +14,9 @@
 
 app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = False    # turns of flask_sqlalchemy modification tracker
 app.config["PROPAGATE_EXCEPTIONS"] = True   # if flask_jwt raises an error, the flask app will check the error if this is set to true
+app.config["JWT_BLACKLIST_ENABLED"] = True
+app.config["JWT_BLACKLIST_TOKEN_CHECKS"] = ["access", "refresh"]   # both access and refresh tokens will be denied for the user ids 
+
 app.secret_key = "komraishumtirkomchuri"
 # app.config["JWT_SECRET_KEY"] = "YOUR KEY HERE"
 
@@ -40,6 +44,50 @@ def add_claims_to_jwt(identity):
   
   return {"is_admin": False}
 
+# JWT Configurations
+@jwt.expired_token_loader
+def expired_token_callback():
+  return jsonify({
+    "description": "The token has expired.",
+    "error": "token_expired"
+  }), 401
+
+# below function returns True, if the token that is sent is in the blacklist
+@jwt.token_in_blocklist_loader
+def check_if_token_in_blacklist(jwt_header, jwt_data):
+  # print("Log Message:", jwt_data)
+  return jwt_data["sub"] in BLACKLIST
+
+@jwt.invalid_token_loader
+def invalid_token_callback(error):
+  return jsonify({
+    "description": "Signature verification failed.",
+    "error": "invalid_token"
+  }), 401
+
+@jwt.unauthorized_loader
+def missing_token_callback(error):  # when no jwt is sent
+  return jsonify({
+    "description": "Request doesn't contain a access token.",
+    "error": "authorization_required"
+  }), 401
+
+@jwt.needs_fresh_token_loader
+def token_not_fresh_callback(self, callback):
+  print("Log:", callback)
+  return jsonify({
+    "description": "The token is not fresh.",
+    "error": "fresh_token_required"
+  }), 401
+
+@jwt.revoked_token_loader
+def revoked_token_callback(self, callback):
+  print("Log:", callback)
+  return jsonify({
+    "description": "The token has been revoked.",
+    "error": "token_revoked"
+  }), 401
+
 api.add_resource(Item, '/item/<string:name>')
 api.add_resource(Store, '/store/<string:name>')
 api.add_resource(ItemList, '/items')
@@ -47,6 +95,7 @@ def add_claims_to_jwt(identity):
 api.add_resource(UserRegister, '/register')
 api.add_resource(User, '/user/<int:user_id>')
 api.add_resource(UserLogin, '/login')
+api.add_resource(TokenRefresh, '/refresh')
 
 if __name__ == "__main__":
   db.init_app(app)
diff --git a/blacklist.py b/blacklist.py
new file mode 100644
index 0000000..d6e7c77
--- /dev/null
+++ b/blacklist.py
@@ -0,0 +1 @@
+BLACKLIST = {2, 3}  # user ids that will be denied access
\ No newline at end of file
diff --git a/database/data.db b/database/data.db
index 9b81762182de102d680547eccbc48e560310e3df..21ada3baaa2a07ab916701414f8eefbc5da747ff 100644
GIT binary patch
delta 118
zcmZo@U~Fh$oFL7}J5k1&k#}Rl5`7*P{tXQLZ~1TXALHM!Sx{gBe}D)JD}y9EV?k<O
za%PT$`mcxX>qM%V1esYGgu$W?s!$;zCRPS<cFyFC#LOZGZHS;CBP)X_J7-dUezt=q
GL<j)x+9Ngq

delta 48
zcmZo@U~Fh$oFL7}IZ?)$k#l3h5`8uX0R{&Cx0?kOp79F^i?VYj<>zNRX#RTWzD}eX
E06+Z>JOBUy

diff --git a/resources/__pycache__/item.cpython-39.pyc b/resources/__pycache__/item.cpython-39.pyc
index 038515709395517b32fa671f01a2f56e2a5c457f..4b85e3022593835d2c61b9729e01f66a32d4b3d9 100644
GIT binary patch
delta 355
zcmX>ia$STsk(ZZ?0SK}ed`g_Tk(Zy5F>kUgqpMyjX9`maXD?$4R|<CvLo;I(cPeKy
zLkdp{FPO)Z!k5C|!VtxqA`r}=DY&_fF@%v*lkpa7T2X3o#^zg04vdV<lciZUFiK56
z!=l0{J^3R`6r=HEAJ$cDvOw#K<R<@NmEe{KF@->c!em2MVOHjX(h}#%=4^3{vXiH=
zX>conq|`u!`s9302`-RRIf1xXW%6q_1tvzW&D`uNjEqr}4LD-VYZy})BpD_$6|w-G
z#8@N((k2EX4B;#=R~*DO1`<gihRNik914u4lb><uOPXR)C;=1;pRC8J!>s|5)dUe*
olT$gBg!O^UP#`X50TLWc9E?T!lV@=jGwK7KDn412OODY80Ch`7g#Z8m

delta 317
zcmcaEazunTk(ZZ?0SJ24KPJ{}<mG2%Oqndp=&F*!nZnh=5XGI!+02l_ox;<?(99Uc
zlfs+A2NdN^;SXle6xck0F@$mRTP6oaMyAPnEE^alC*NmLVU(K8!WzYBG&!Di6`Ksu
z=pxz4{A?1+av-J<h>!;nVsJtn$hyT`P+H<N*^4cXQD*W=HVtk?khCg@P@AmCCC*(0
zawR7a7b{Kv$EL7Zfn9}>F><miM~qAfLkfc=!$hV+7NDaTi$s8mfD}l5k-_ALY{Fbd
zKxQI{YdrY|hXSL?<ewb+KoTg$DghJ@o9xJ`!>tZdpaCK@Cs%MP3F`rwAwXQr0wg$?
UI2eocCa>izX4C^Z$CS|<0Gqu(KmY&$

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index ad58679d161cfc38124d7aefb3511ea592f9ee96..8db7b3911b7fbaad6afa5cd0e99949b947014285 100644
GIT binary patch
delta 1150
zcmZ`&OHUL*5bo}I?99$SVbNvfu>?hi$HsWjgN8sz^ag@>8BI1Dx)&Drp*^!98ptNX
zmBZR5UNli}+&r21157-7oSR2(#>9&UW7QC0No11#roQUxn)<41-ey1LQk7&fPT+aH
z^0RUj@1}<6$L{oOr(t<k!}e@SIN^Fd-f%pJ62aaj-V-k=l3OWmh%`5Oj9Ujf?4ZZ)
z_1q;q&YgY29YOarF9STmlfaV^&jL^JH1Kr9`+#S77I+r8t$F>t?>=$+yI*Ih-u*RQ
z3=>=1L0O8Y?V1!k%xs9DjGh`7&7c-MQ$_lR#?>f$L2dPc&C$I2&Th~VmDiT13ZPKt
z&%z+mG{7ZTJ_E2cnO0q`JCXtNJN>{Hve;||#cHeF<fWrmln_^wwwl)`1}{QLPex1@
zYEV;2b@Zx(3FIh3QT@;dOdHKH<rsybaWqd$i4K}v)I}g}ss&?w1<R2`2*UuOvtF<G
zenSMCEiSL1djjD!Lu5r_MqpzGmTv)AjM2Eos2l-F!|I!HIEEK3Qvhp+EVTYLE;OoA
z_?s@3Q|gU5Ni*t;IacVy*nWhl_8eL|Lh5BKH+vba3kXpk@S}1T;k2x%BJBI3T8Ler
zKdVY!#o%*qWfFE5VEOn(6e1^4L<a>5;!#dKCNxetJD^<S`aapCp3V&z7&A<)wH}M+
zs)$srxipN)V|yL$@8r?I!t9H%e9Rk=J+ey!x<jM9Y?pCuht(+8s|@lQOLt_)g*X|B
zErI1SiH(*9+L|1ISD09DO9=y6Zo}|+c2jJZ11#r%jd=tId=r2$lP1{nY;WPECoMl%
zat+zjxLXh^V+iMV?i%bqgmv6GYEg-vB{!!&$Cf+Chp}kSX|!PI{1Vm~U9p#3g?~%<
z!M%z^9}Ym6sBm7c$c=UbG=-WU$moxe*f5E=6s7MGcQTBjbsN6Wu8TSBx{t9LgC=O+
LRJ&G@WeR@*D;MSC

delta 751
zcmZ{hO=}ZD7=U+XKQfzSHXDhpiK#Y5+it2w6ueX`UKBjo`h~I;%IZwol*Hi728>7b
zs9=~&FM|FFJ$dyPc-oUEZyx*sitoDxV+9xH;r-tC<3sIjHApxwTJT+O{77E;lb}iV
zCd+5e5=&UZ>9c_!`^1v;UGcpYmt<+TEL_QjCkleScEE!cU-HSD`eJa+5@o?(T7paR
z!j3DT2ciOcCD%g{-nOFZ<m+id4JXUyKKVtMxksOqg30I_nK5<y0%@2Hd%bf6dQvk7
zF^eh(pr9#$*@~O*?wt8%rz9|&P7_K!br$M}F?5=a37Neu(~kM*bRPuhokJW0JmYt@
zRP#diWh%u=WUB(YjsxP_zICgshJ!7Uq{+hsVq56{r@FTvdESiO_RTs5G!RDtS?N(f
z(Rv`$ouN=|G@nFFE96o>UK1Qk@H7K3N=cDXqM9(|=N6h&8E_|}8S4r8IPIn5%<U?v
zcOs$|%@=P8*6`D7ZH5?IMdZUALdij3zH$K>?Fr?95V`6E8f%DraS=)##I(h{JG{ze
zGcKIFdT>H@3WNW9vjy;8f~T<q97>_(MpQLd{PlKR8Vq51dSwKw&D)LnE%{_5b-Ix#
qw1wuAKf8*TSGb=%`>)piY%gOMq131^*9e4Z{7Fd4B&4QRoc|3mJCH;G

diff --git a/resources/item.py b/resources/item.py
index 3bbb063..1256555 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -30,6 +30,7 @@ def get(self, name):
     return {"message": "item not found."}, 404
 
   # TO POST AN ITEM
+  @jwt_required(fresh=True)
   def post(self, name):
     # if there already exists an item with "name", show a messege, and donot add the item
     if ItemModel.find_item_by_name(name):
@@ -94,6 +95,6 @@ def get(self):
 
     # else display only item name
     return {
-      "items": [Item["name"] for item in items],
+      "items": [item["name"] for item in items],
       "message": "Login to view more data."
     }, 200
\ No newline at end of file
diff --git a/resources/user.py b/resources/user.py
index 90ce528..ee1d0bf 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -1,7 +1,11 @@
 from flask_restful import Resource, reqparse
 from werkzeug.security import safe_str_cmp
-from flask_jwt_extended import create_access_token, create_refresh_token
-
+from flask_jwt_extended import (
+  create_access_token, 
+  create_refresh_token, 
+  jwt_required, 
+  get_jwt_identity
+)
 from models.user import UserModel
 
 # extracted parser variable for global use, and made it private
@@ -82,3 +86,12 @@ def post(cls):
       }, 200
     
     return {"message": "Invalid credentials."}, 401 # Unauthorized
+
+
+class TokenRefresh(Resource):
+  @jwt_required(refresh=True)
+  def post(self):
+    current_user = get_jwt_identity()
+    new_token = create_access_token(identity=current_user, fresh=False)   # fresh=Flase means that user have logged in days ago.
+
+    return {"access_token": new_token}, 200
\ No newline at end of file

From 60d5cf8d7d3afea54bab4e571c81d6d3fe79e86d Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Thu, 27 Jan 2022 23:05:56 +0530
Subject: [PATCH 20/42] added logout feature

---
 __pycache__/blacklist.cpython-39.pyc      | Bin 155 -> 148 bytes
 app.py                                    |   9 +++++----
 blacklist.py                              |   3 ++-
 resources/__pycache__/user.cpython-39.pyc | Bin 2614 -> 3004 bytes
 resources/user.py                         |  12 +++++++++++-
 5 files changed, 18 insertions(+), 6 deletions(-)

diff --git a/__pycache__/blacklist.cpython-39.pyc b/__pycache__/blacklist.cpython-39.pyc
index bc810dd404a761e8bbb2e418049bf322b5d33139..1a3d5041a96f174e49017ed012f9c3d0c0ad15e1 100644
GIT binary patch
delta 100
zcmbQuIE67Lk(ZZ?0SMGCd`h$d(vLwLWWWgIH~?`mNLeaFGeZ<(3PUi1CZnGw(=F!W
f)RJ4APCky#-aekeAuAb*n1QOm#4oj!iOCiKK4lWV

delta 107
zcmbQjIGZs!k(ZZ?0SGKNeM+<h(vLwLWWWUEH~?`m50FS<NMX!iiegA%3TDt`ehHF$
j$qXd?G#PJkI{7#{d;53>hpc2MVgU+*iC=0i6Jsm@gryRY

diff --git a/app.py b/app.py
index 752d83f..be88c3b 100644
--- a/app.py
+++ b/app.py
@@ -2,7 +2,7 @@
 from flask_restful import Api
 from flask_jwt_extended import JWTManager
 
-from resources.user import UserRegister, User, UserLogin, TokenRefresh
+from resources.user import UserRegister, User, UserLogin,UserLogout, TokenRefresh
 from resources.item import Item, ItemList
 from resources.store import Store, StoreList
 from blacklist import BLACKLIST
@@ -56,7 +56,7 @@ def expired_token_callback():
 @jwt.token_in_blocklist_loader
 def check_if_token_in_blacklist(jwt_header, jwt_data):
   # print("Log Message:", jwt_data)
-  return jwt_data["sub"] in BLACKLIST
+  return jwt_data["jti"] in BLACKLIST
 
 @jwt.invalid_token_loader
 def invalid_token_callback(error):
@@ -74,7 +74,7 @@ def missing_token_callback(error):  # when no jwt is sent
 
 @jwt.needs_fresh_token_loader
 def token_not_fresh_callback(self, callback):
-  print("Log:", callback)
+  # print("Log:", callback)
   return jsonify({
     "description": "The token is not fresh.",
     "error": "fresh_token_required"
@@ -82,7 +82,7 @@ def token_not_fresh_callback(self, callback):
 
 @jwt.revoked_token_loader
 def revoked_token_callback(self, callback):
-  print("Log:", callback)
+  # print("Log:", callback)
   return jsonify({
     "description": "The token has been revoked.",
     "error": "token_revoked"
@@ -95,6 +95,7 @@ def revoked_token_callback(self, callback):
 api.add_resource(UserRegister, '/register')
 api.add_resource(User, '/user/<int:user_id>')
 api.add_resource(UserLogin, '/login')
+api.add_resource(UserLogout, '/logout')
 api.add_resource(TokenRefresh, '/refresh')
 
 if __name__ == "__main__":
diff --git a/blacklist.py b/blacklist.py
index d6e7c77..ffab0a7 100644
--- a/blacklist.py
+++ b/blacklist.py
@@ -1 +1,2 @@
-BLACKLIST = {2, 3}  # user ids that will be denied access
\ No newline at end of file
+BLACKLIST = set()  # user ids that will be denied access
+
diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 8db7b3911b7fbaad6afa5cd0e99949b947014285..10c5a803505ae4f06d77ea85a3ca2123793b842c 100644
GIT binary patch
delta 1343
zcmZ`&OKTHR6rOu$CYekoX&Td)R!v)cq^+@36a^6<h)8RFR1rrdjJY>8b<*gW3EH9*
ztXmi5{sCS32Xv!b*Mj0=R<7K+(4`=F&aD!a8n|EX`OcX$-+9c-((8eIkjuFS{w}`%
z7M%9h^TX`j`ozK2mg~FB5QebAY|HaKeYeA0EAQu-A^EeO=Z0U9g~eWxl0}ggj>tT<
z&_j&-Cv(OSS>Zh~geTdW>2E<hC-P|LwOvBHM-<R5XuA*XUNKTcqNs^}B({hW+9hod
zh`xEF(!c&`lG!T9X2z2Af{bg6_u~pnGFKuA=h{MsWSpEmacXAv?EGaV*;nSNtNbx@
zRl<*@w_?TLCxqH*PO-AOV4fczMh1xf1GbUbi?AI}#1R}5des+uyZUU#tf;PA!<g`a
zwR>oYLc5RClZlDCrqnB|aid7y5rR>Kl^m%oqevM`QLUIj6M!)UzqG;D8qjXlL=XqJ
z0*u{7{(rKkHX@IxWqa%*34|R4I}ws>Jq)6#CF9#|0egtvOVG`rZ@RoPI;wag2f^W-
zxejMg#v<R2ct}A3;qnWfI87m!;%2;@*bR`;?FxfQ^&zzv+wdbba=k>ceFVCge!5u%
z^gP%I32zEW;iY23ZXyQ>bmK?>>?i0-)aqy|r`2+L`uN`!LWP3=JF{{0p28E60xAl|
zX=<yKT^c?UhR>zBW(X$u6Jw3}mN0Rtti+|s%(fTWow&|0`1g-yZ{pEO%Xo<mdV0us
z#A5c0KV;7tej!|#O(v`c$6WSYVlKu_pwX`k&Ufl{8LdW*P8cqi!}h|06lHu#6{gUS
z8<4?2$RZ?WAVh`301*cWHfc!>`G{I+aF@AkrKc;qdbb_Lb1!W8r(tOf-uM5GO{4oJ
zo?jia7)<LucbwJp6Uc)ekrvB=Rz;5#g_F+2t9Jl!J8B(lpPyNh_iJ(cj$GPIdqaJ6
zMi0P2%F!)N-}J~2p+n-?P{JGr#LQI&)rrit!@5y^wnd+KRHfJHeM>U8!k~U9Y(}x}
zqMy4Y?{#DpUkHF=O6pB!;0%4rP$r-S0jgOi-%Lm19L1M(LV1k#AeuxdFpmwVJ*G<T
IC@(la0qk1|_y7O^

delta 980
zcmZ`&OK;Oa5cb-R<M@#{59ouWG!#nQM^u3j7gQC2gb;$ZKo7W;BGcWLM;>DB2#HH1
zK)v-4_P_xl!Lb+0i4(uX|9}HRaOA|yMk1l2k@nNfH?y<f%s5}izLc_|>sku@-md=&
zzghiknSAcgU+NKsDpYS;EjzG@!qgAWM<sBX`y@+KEJqERrslp55o9u>%ngNF)PAi{
zn~_&q;DPT@7kpRxdGNC|2Yyca1@JwZ2R|?UA}!ogd{TTv7Kknu$t~9>NoFHr{C0=3
zrg%qw5=-o>FG)st+H!gvwEv#JE;h6!G9~u3)wxMvIMO39fo=}q6r4x}Fg2bNRkI?>
zdQ3dg*UM1wlRi5!hN;8rcr(#<SzH(2^_?vbqo)z30baN$Y#Ma2n9;hg@eGEl06}TM
zHg<TY)u3S<J`5pu2IEJn8-vWt;xIL{jskfZp#qTD+s!bFS}cClq5K@uvk1cq(vs~>
zL0|z+WCEC~N-R?)d`dRCVjLK_W}X#4j7c&ltaJ^!zL>6V7LYC?NbM!GbeW2f0!Y-y
zlpA39DSj5olL&H7_#R(G7%Gxta0%DMVfw<#zYX#8n0)MtY7o5&Cqf0-1FuQ_dzs#<
zk2mFmb+CMuW1mtW%>4w|iL>41oVDXd7bYEK+U$8F?mT7f|B2fY_pLKGp`#=E(pdCZ
zeM=DCgfq}bOu~`5<CnyN^`IBnE&N8KI=(N*8Mt@Zvo4F`wU8r+!%m!#(niR4yDiX~
tXi?1Nr^#`F948=)j)?xd<HWoIFLax1nLt{ExgK%IxZ!9f{9E4Jl|LEqy1@Vd

diff --git a/resources/user.py b/resources/user.py
index ee1d0bf..ee7fb9c 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -4,9 +4,11 @@
   create_access_token, 
   create_refresh_token, 
   jwt_required, 
-  get_jwt_identity
+  get_jwt_identity,
+  get_jwt
 )
 from models.user import UserModel
+from blacklist import BLACKLIST
 
 # extracted parser variable for global use, and made it private
 _user_parser = reqparse.RequestParser()
@@ -88,6 +90,14 @@ def post(cls):
     return {"message": "Invalid credentials."}, 401 # Unauthorized
 
 
+class UserLogout(Resource):
+  # Loggig out requirees jwt as if user is not logged in they cannot log out
+  @jwt_required()
+  def post(self):
+    jti = get_jwt()["jti"]   # jti is JWT ID, unique identifier for a JWT
+    BLACKLIST.add(jti)
+    return {"message": "Successfully logged out."}, 200
+
 class TokenRefresh(Resource):
   @jwt_required(refresh=True)
   def post(self):

From e7c80afa2ebc1a54b5f8010669bde5a676eeba82 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Thu, 27 Jan 2022 23:08:28 +0530
Subject: [PATCH 21/42] files exclusion

---
 .gitignore | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.gitignore b/.gitignore
index 4a25664..e4a1c96 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,2 +1,4 @@
 test/test.py
-test/test.db
\ No newline at end of file
+test/test.db
+__pycache__
+.vscode
\ No newline at end of file

From f4b1c8345b9c36a8814a93fe97e0e56c7e7e4caf Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Thu, 3 Feb 2022 10:41:51 +0530
Subject: [PATCH 22/42] minor changes

---
 .gitignore                                |   6 +-
 .vscode/settings.json                     |   4 +-
 blacklist.py                              |   4 +-
 database.py                               |   4 +-
 models/item.py                            |  92 +++++-----
 models/store.py                           |  82 ++++-----
 models/user.py                            |  66 +++----
 requirements.txt                          |   6 +-
 resources/__pycache__/user.cpython-39.pyc | Bin 3004 -> 3037 bytes
 resources/item.py                         | 198 ++++++++++----------
 resources/store.py                        |  74 ++++----
 resources/user.py                         | 213 +++++++++++-----------
 12 files changed, 375 insertions(+), 374 deletions(-)

diff --git a/.gitignore b/.gitignore
index e4a1c96..120273b 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,4 +1,4 @@
-test/test.py
-test/test.db
-__pycache__
+test/test.py
+test/test.db
+__pycache__
 .vscode
\ No newline at end of file
diff --git a/.vscode/settings.json b/.vscode/settings.json
index 7e7f74b..6be470f 100644
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -1,3 +1,3 @@
-{
-    "python.pythonPath": "/usr/sbin/python3.9"
+{
+    "python.pythonPath": "/usr/sbin/python3.9"
 }
\ No newline at end of file
diff --git a/blacklist.py b/blacklist.py
index ffab0a7..ec72982 100644
--- a/blacklist.py
+++ b/blacklist.py
@@ -1,2 +1,2 @@
-BLACKLIST = set()  # user ids that will be denied access
-
+BLACKLIST = set()  # user ids that will be denied access
+
diff --git a/database.py b/database.py
index 2e1eeb6..fa42112 100644
--- a/database.py
+++ b/database.py
@@ -1,3 +1,3 @@
-from flask_sqlalchemy import SQLAlchemy
-
+from flask_sqlalchemy import SQLAlchemy
+
 db = SQLAlchemy()
\ No newline at end of file
diff --git a/models/item.py b/models/item.py
index d4fad3d..2f6930f 100644
--- a/models/item.py
+++ b/models/item.py
@@ -1,46 +1,46 @@
-from database import db
-
-class ItemModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
-
-  __tablename__ = "items"
-
-  # Columns
-  id = db.Column(db.Integer, primary_key=True)
-  name = db.Column(db.String(80))
-  price = db.Column(db.Float(precision=2))  # precision: numbers after decimal point
-
-  store_id = db.Column(db.Integer, db.ForeignKey("stores.id"))
-  store = db.relationship("StoreModel")
-
-  def __init__(self, name, price, store_id):
-    self.name = name
-    self.price = price
-    self.store_id = store_id
-
-  def json(self):
-    return {
-      "id": self.id,
-      "store_id":self.store_id,
-      "name": self.name, 
-      "price": self.price
-      }
-
-  # searches the database for items using name
-  @classmethod
-  def find_item_by_name(cls, name):
-    # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
-    # this function would return a ItemModel object
-    return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
-
-  @classmethod
-  def find_all(cls):
-    return cls.query.all()
-
-  # method to insert or update an item into database
-  def save_to_database(self):
-    db.session.add(self)  # session here is a collection of objects that wil be written to database
-    db.session.commit()
-
-  def delete_from_database(self):
-    db.session.delete(self)
-    db.session.commit()
+from database import db
+
+class ItemModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
+
+  __tablename__ = "items"
+
+  # Columns
+  id = db.Column(db.Integer, primary_key=True)
+  name = db.Column(db.String(80))
+  price = db.Column(db.Float(precision=2))  # precision: numbers after decimal point
+
+  store_id = db.Column(db.Integer, db.ForeignKey("stores.id"))
+  store = db.relationship("StoreModel")
+
+  def __init__(self, name, price, store_id):
+    self.name = name
+    self.price = price
+    self.store_id = store_id
+
+  def json(self):
+    return {
+      "id": self.id,
+      "store_id":self.store_id,
+      "name": self.name, 
+      "price": self.price
+      }
+
+  # searches the database for items using name
+  @classmethod
+  def find_item_by_name(cls, name):
+    # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
+    # this function would return a ItemModel object
+    return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
+
+  @classmethod
+  def find_all(cls):
+    return cls.query.all()
+
+  # method to insert or update an item into database
+  def save_to_database(self):
+    db.session.add(self)  # session here is a collection of objects that wil be written to database
+    db.session.commit()
+
+  def delete_from_database(self):
+    db.session.delete(self)
+    db.session.commit()
diff --git a/models/store.py b/models/store.py
index fe85208..d226c87 100644
--- a/models/store.py
+++ b/models/store.py
@@ -1,41 +1,41 @@
-from database import db
-
-class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
-
-  __tablename__ = "stores"
-
-  # Columns
-  id = db.Column(db.Integer, primary_key=True)
-  name = db.Column(db.String(80))
-
-  items = db.relationship("ItemModel", lazy="dynamic")  # this will allow us to check which item is in store whose id is equal to it's id.
-                                      # lazy="dynamic" tells sqlalchemy to not create seperate objects for each item that is created
-  def __init__(self, name):
-    self.name = name
-
-  def json(self):
-    return {
-      "id": self.id, 
-      "name": self.name, 
-      "items": [item.json() for item in self.items.all()]
-    }
-
-  # searches the database for items using name
-  @classmethod
-  def find_item_by_name(cls, name):
-    # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
-    # this function would return a StoreModel object
-    return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
-
-  @classmethod
-  def find_all(cls):
-    return cls.query.all()
-
-  # method to insert or update an item into database
-  def save_to_database(self):
-    db.session.add(self)  # session here is a collection of objects that wil be written to database
-    db.session.commit()
-
-  def delete_from_database(self):
-    db.session.delete(self)
-    db.session.commit()
+from database import db
+
+class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
+
+  __tablename__ = "stores"
+
+  # Columns
+  id = db.Column(db.Integer, primary_key=True)
+  name = db.Column(db.String(80))
+
+  items = db.relationship("ItemModel", lazy="dynamic")  # this will allow us to check which item is in store whose id is equal to it's id.
+                                      # lazy="dynamic" tells sqlalchemy to not create seperate objects for each item that is created
+  def __init__(self, name):
+    self.name = name
+
+  def json(self):
+    return {
+      "id": self.id, 
+      "name": self.name, 
+      "items": [item.json() for item in self.items.all()]
+    }
+
+  # searches the database for items using name
+  @classmethod
+  def find_item_by_name(cls, name):
+    # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
+    # this function would return a StoreModel object
+    return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
+
+  @classmethod
+  def find_all(cls):
+    return cls.query.all()
+
+  # method to insert or update an item into database
+  def save_to_database(self):
+    db.session.add(self)  # session here is a collection of objects that wil be written to database
+    db.session.commit()
+
+  def delete_from_database(self):
+    db.session.delete(self)
+    db.session.commit()
diff --git a/models/user.py b/models/user.py
index c0b6dfa..7cfa703 100644
--- a/models/user.py
+++ b/models/user.py
@@ -1,34 +1,34 @@
-import sqlite3
-from database import db
-
-class UserModel(db.Model):
-
-  __tablename__ = "users"   # will be used to tell sqlalchemy the table name for users
-
-  # table columns for users table
-  id = db.Column(db.Integer, primary_key=True)
-  username = db.Column(db.String(80))
-  password = db.Column(db.String(80))
-
-  def __init__(self, username, password):
-    self.username = username
-    self.password = password
-    
-  def json(self):
-    return {"id": self.id, "name": self.username}
-
-  @classmethod
-  def find_by_username(cls, username):
-    return cls.query.filter_by(username=username).first()
-
-  @classmethod
-  def find_by_id(cls, _id):
-    return cls.query.filter_by(id=_id).first()
-
-  def save_to_database(self):
-    db.session.add(self)
-    db.session.commit()
-
-  def delete_from_database(self):
-    db.session.delete(self)
+import sqlite3
+from database import db
+
+class UserModel(db.Model):
+
+  __tablename__ = "users"   # will be used to tell sqlalchemy the table name for users
+
+  # table columns for users table
+  id = db.Column(db.Integer, primary_key=True)
+  username = db.Column(db.String(80))
+  password = db.Column(db.String(80))
+
+  def __init__(self, username, password):
+    self.username = username
+    self.password = password
+    
+  def json(self):
+    return {"id": self.id, "name": self.username}
+
+  @classmethod
+  def find_by_username(cls, username):
+    return cls.query.filter_by(username=username).first()
+
+  @classmethod
+  def find_by_id(cls, _id):
+    return cls.query.filter_by(id=_id).first()
+
+  def save_to_database(self):
+    db.session.add(self)
+    db.session.commit()
+
+  def delete_from_database(self):
+    db.session.delete(self)
     db.session.commit()
\ No newline at end of file
diff --git a/requirements.txt b/requirements.txt
index 9ffc1ca..e773535 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,4 +1,4 @@
-Flask
-Flask-RESTful
-Flask_-JWT-Extended
+Flask
+Flask-RESTful
+Flask_-JWT-Extended
 Flask-SQLAlchemy
\ No newline at end of file
diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 10c5a803505ae4f06d77ea85a3ca2123793b842c..682ed374f6dbf78825c3467aadb840fd62133873 100644
GIT binary patch
delta 260
zcmdlZepj3~k(ZZ?0SHt=z9nXD<aK9eblDurtjEllHrbI$T&$L<hN&p3gr$Zli?xO^
zg-Md38OWc!kxfdagfoS$nURs9hPj3%g?$cF3P&1KFhdGw3Rfm$3O9(Y$us#mo0>os
zUukh_kwQ*>dU|S#LT27%UUpYTuF1jdI_$St3yL!HN+#E{n+QsPoWab&%*P_a%*V*X
z$g%klyEY@E$>et&;*1HC**F7)je#oSfVh|iNN_N*Fcuk4R^*VK+{Ss9F@16fmolT-
oWIIj?VRN8#8eAPC2V;@><i%Wj*+BY%Ogm2T$+g@z%+dlJ0Nn^UjQ{`u

delta 225
zcmcaBzDJxlk(ZZ?0SE#we@b-S$m`C`n6f#PS&x}9Zn7hjxL7Sy4O3B22}=!A7HbV-
z3X>#5Gmt-dBb$^=4RZ}k3fml}6!tWxV1^Wq6wXY>6fO{3lY8=eHnqvB?5>QQle5`%
zCeLFx;THqh!py<U$0EYa$H=q!F}pS+qw!>ZPI1Qg$?BW|!bU*(SRgKD0TLWcER01)
zlm9czPF~J=mN9K|DVH*%>Ew7$31Ks!bShjOBL`!V+2kW!d)Ywxfy{VL@yYYJZJ4D5
FH~@W6FX{jQ

diff --git a/resources/item.py b/resources/item.py
index 1256555..9ce54de 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -1,100 +1,100 @@
-import sqlite3
-
-from flask import Flask, request
-from flask_restful import Resource, reqparse
-from flask_jwt_extended import jwt_required, get_jwt, get_jwt_identity
-
-from models.item import ItemModel
-
-class Item(Resource):
-
-  parser = reqparse.RequestParser()
-  parser.add_argument("price",
-    type=float,
-    required=True,
-    help="This field cannot be blank"
-  )
-  parser.add_argument("store_id",
-    type=int,
-    required=True,
-    help="Every item needs a store id."
-  )
-
-  # TO GET ITEM WITH NAME
-  @jwt_required()
-  def get(self, name):
-    item = ItemModel.find_item_by_name(name)
-    if item:
-      return item.json()
-    
-    return {"message": "item not found."}, 404
-
-  # TO POST AN ITEM
-  @jwt_required(fresh=True)
-  def post(self, name):
-    # if there already exists an item with "name", show a messege, and donot add the item
-    if ItemModel.find_item_by_name(name):
-      return {"messege": f"item {name} already exists"} ,400
-
-    data = Item.parser.parse_args()
-    # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
-    item = ItemModel(name, **data)
-
-    try:
-      item.save_to_database()
-    except:
-      return {"messege": "An error occured."}, 500
-    
-    return item.json(), 201  # 201 is for CREATED status
-
-  # TO DELETE AN ITEM
-  @jwt_required()
-  def delete(self, name):
-    claims = get_jwt()
-
-    if not claims["is_admin"]:
-      return {"message": "Admin privilages required"}, 401
-
-    item = ItemModel.find_item_by_name(name)
-    if item:
-      item.delete_from_database()
-      return {"messege": "Item deleted"}
-
-    # if doesn't exist, skip deleting
-    return {"messege": "Item don't exist"}, 400
-
-  # TO ADD OR UPDATE AN ITEM
-  def put(self, name):
-    data = Item.parser.parse_args()
-    # data = request.get_json()
-    item = ItemModel.find_item_by_name(name)
-
-    # if item is not available, add it
-    if item is None:
-      item = ItemModel(name, **data)
-    # if item exists, update it
-    else:
-      item.price = data['price']
-      item.store_id = data['store_id']
-    
-    # whether item is changed or inserted, it has to be saved to db
-    item.save_to_database()
-    return item.json()
-
-
-class ItemList(Resource):
-
-  @jwt_required(optional=True)
-  def get(self):
-    user_id = get_jwt_identity()
-    items = [item.json() for item in ItemModel.find_all()]
-
-    # if user id is given, then display full details
-    if user_id:
-      return {"items": items}, 200
-
-    # else display only item name
-    return {
-      "items": [item["name"] for item in items],
-      "message": "Login to view more data."
+import sqlite3
+
+from flask import Flask, request
+from flask_restful import Resource, reqparse
+from flask_jwt_extended import jwt_required, get_jwt, get_jwt_identity
+
+from models.item import ItemModel
+
+class Item(Resource):
+
+  parser = reqparse.RequestParser()
+  parser.add_argument("price",
+    type=float,
+    required=True,
+    help="This field cannot be blank"
+  )
+  parser.add_argument("store_id",
+    type=int,
+    required=True,
+    help="Every item needs a store id."
+  )
+
+  # TO GET ITEM WITH NAME
+  @jwt_required()
+  def get(self, name):
+    item = ItemModel.find_item_by_name(name)
+    if item:
+      return item.json()
+    
+    return {"message": "item not found."}, 404
+
+  # TO POST AN ITEM
+  @jwt_required(fresh=True)
+  def post(self, name):
+    # if there already exists an item with "name", show a messege, and donot add the item
+    if ItemModel.find_item_by_name(name):
+      return {"messege": f"item {name} already exists"} ,400
+
+    data = Item.parser.parse_args()
+    # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
+    item = ItemModel(name, **data)
+
+    try:
+      item.save_to_database()
+    except:
+      return {"messege": "An error occured."}, 500
+    
+    return item.json(), 201  # 201 is for CREATED status
+
+  # TO DELETE AN ITEM
+  @jwt_required()
+  def delete(self, name):
+    claims = get_jwt()
+
+    if not claims["is_admin"]:
+      return {"message": "Admin privilages required"}, 401
+
+    item = ItemModel.find_item_by_name(name)
+    if item:
+      item.delete_from_database()
+      return {"messege": "Item deleted"}
+
+    # if doesn't exist, skip deleting
+    return {"messege": "Item don't exist"}, 400
+
+  # TO ADD OR UPDATE AN ITEM
+  def put(self, name):
+    data = Item.parser.parse_args()
+    # data = request.get_json()
+    item = ItemModel.find_item_by_name(name)
+
+    # if item is not available, add it
+    if item is None:
+      item = ItemModel(name, **data)
+    # if item exists, update it
+    else:
+      item.price = data['price']
+      item.store_id = data['store_id']
+    
+    # whether item is changed or inserted, it has to be saved to db
+    item.save_to_database()
+    return item.json()
+
+
+class ItemList(Resource):
+
+  @jwt_required(optional=True)
+  def get(self):
+    user_id = get_jwt_identity()
+    items = [item.json() for item in ItemModel.find_all()]
+
+    # if user id is given, then display full details
+    if user_id:
+      return {"items": items}, 200
+
+    # else display only item name
+    return {
+      "items": [item["name"] for item in items],
+      "message": "Login to view more data."
     }, 200
\ No newline at end of file
diff --git a/resources/store.py b/resources/store.py
index 17f719e..a8392cf 100644
--- a/resources/store.py
+++ b/resources/store.py
@@ -1,38 +1,38 @@
-from flask_restful import Resource
-from models.store import StoreModel
-
-class Store(Resource):
-
-  def get(self, name):
-    store = StoreModel.find_item_by_name(name)
-    if store:
-      return store.json()
-
-  def post(self, name):
-    if StoreModel.find_item_by_name(name):
-      return {"message": "Store alrady exists."}, 400
-
-    store = StoreModel(name)
-
-    try:
-      store.save_to_database()
-    except:
-      return {"message": "An error occured while creating the store."}, 500
-        
-    return store.json(), 201
-
-
-
-  def delete(self, name):
-    store = StoreModel.find_item_by_name(name)
-    if store:
-      store.delete_from_database()
-      return {"message": "store deleted."}
-
-    return {"message": "store don't exist"}
-
-
-class StoreList(Resource):
-  def get(self):
-    # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
+from flask_restful import Resource
+from models.store import StoreModel
+
+class Store(Resource):
+
+  def get(self, name):
+    store = StoreModel.find_item_by_name(name)
+    if store:
+      return store.json()
+
+  def post(self, name):
+    if StoreModel.find_item_by_name(name):
+      return {"message": "Store alrady exists."}, 400
+
+    store = StoreModel(name)
+
+    try:
+      store.save_to_database()
+    except:
+      return {"message": "An error occured while creating the store."}, 500
+        
+    return store.json(), 201
+
+
+
+  def delete(self, name):
+    store = StoreModel.find_item_by_name(name)
+    if store:
+      store.delete_from_database()
+      return {"message": "store deleted."}
+
+    return {"message": "store don't exist"}
+
+
+class StoreList(Resource):
+  def get(self):
+    # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
     return {"stores": [store.json() for store in StoreModel.find_all()]}
\ No newline at end of file
diff --git a/resources/user.py b/resources/user.py
index ee7fb9c..0d3cc9b 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -1,107 +1,108 @@
-from flask_restful import Resource, reqparse
-from werkzeug.security import safe_str_cmp
-from flask_jwt_extended import (
-  create_access_token, 
-  create_refresh_token, 
-  jwt_required, 
-  get_jwt_identity,
-  get_jwt
-)
-from models.user import UserModel
-from blacklist import BLACKLIST
-
-# extracted parser variable for global use, and made it private
-_user_parser = reqparse.RequestParser()
-_user_parser.add_argument(
-  "username",
-  type=str,
-  required=True,
-  help="This field cannot be empty"
-)
-_user_parser.add_argument(
-  "password",
-  type=str,
-  required=True,
-  help="This field cannot be empty"
-)
-
-# New user registraction class
-class UserRegister(Resource):
-
-  # calls to post a new user (new user registration)
-  def post(self):
-    data = _user_parser.parse_args()
-    # First check if that user is present or not
-    if UserModel.find_by_username(data["username"]):
-      # if exists, then don't add
-      return {"message": "An user with that username already exists."}, 400
-    
-    # user = UserModel(data["username"], data["password"])
-    user = UserModel(**data)  # since parser only takes in username and password, only those two will be added.
-    user.save_to_database()
-
-    return {"messege": "User added successfully."}, 201
-
-
-class User(Resource):
-
-  @classmethod
-  def get(cls, user_id):
-
-    user = UserModel.find_by_id(user_id)
-    if not user:
-      return {"message": "User not found."}, 404
-  
-    return user.json()
-  
-  @classmethod
-  def delete(cls, user_id):
-    user = UserModel.find_by_id(user_id)
-    if not user:
-      return {"message": "User not found."}, 404
-
-    user.delete_from_database()
-    return {"message": "User deleted."}
-
-
-class UserLogin(Resource):
-
-  @classmethod
-  def post(cls):
-    # get data from parser
-    data = _user_parser.parse_args()
-
-    # find user in database
-    user = UserModel.find_by_username(data["username"])
-
-    # check password
-    # this here is what authenticate() function used to do
-    if user and safe_str_cmp(user.password, data["password"]):
-
-      # create access and refresh tokens
-      access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
-      refresh_token = create_refresh_token(identity=user.id)
-
-      return {
-        "access_token": access_token,
-        "refresh_token": refresh_token
-      }, 200
-    
-    return {"message": "Invalid credentials."}, 401 # Unauthorized
-
-
-class UserLogout(Resource):
-  # Loggig out requirees jwt as if user is not logged in they cannot log out
-  @jwt_required()
-  def post(self):
-    jti = get_jwt()["jti"]   # jti is JWT ID, unique identifier for a JWT
-    BLACKLIST.add(jti)
-    return {"message": "Successfully logged out."}, 200
-
-class TokenRefresh(Resource):
-  @jwt_required(refresh=True)
-  def post(self):
-    current_user = get_jwt_identity()
-    new_token = create_access_token(identity=current_user, fresh=False)   # fresh=Flase means that user have logged in days ago.
-
+from flask_restful import Resource, reqparse
+from werkzeug.security import safe_str_cmp
+from flask_jwt_extended import (
+  create_access_token, 
+  create_refresh_token, 
+  jwt_required, 
+  get_jwt_identity,
+  get_jwt
+)
+from models.user import UserModel
+from blacklist import BLACKLIST
+
+# extracted parser variable for global use, and made it private
+_user_parser = reqparse.RequestParser()
+_user_parser.add_argument(
+  "username",
+  type=str,
+  required=True,
+  help="This field cannot be empty"
+)
+_user_parser.add_argument(
+  "password",
+  type=str,
+  required=True,
+  help="This field cannot be empty"
+)
+
+# New user registraction class
+class UserRegister(Resource):
+
+  # calls to post a new user (new user registration)
+  def post(self):
+    data = _user_parser.parse_args()
+    # First check if that user is present or not
+    if UserModel.find_by_username(data["username"]):
+      # if exists, then don't add
+      return {"message": "An user with that username already exists."}, 400
+    
+    # user = UserModel(data["username"], data["password"])
+    user = UserModel(**data)  # since parser only takes in username and password, only those two will be added.
+    user.save_to_database()
+
+    return {"messege": "User added successfully."}, 201
+
+
+class User(Resource):
+
+  @classmethod
+  def get(cls, user_id):
+
+    user = UserModel.find_by_id(user_id)
+    if not user:
+      return {"message": "User not found."}, 404
+  
+    return user.json()
+  
+  @classmethod
+  def delete(cls, user_id):
+    user = UserModel.find_by_id(user_id)
+    if not user:
+      return {"message": "User not found."}, 404
+
+    user.delete_from_database()
+    return {"message": "User deleted."}
+
+
+class UserLogin(Resource):
+
+  @classmethod
+  def post(cls):
+    # get data from parser
+    data = _user_parser.parse_args()
+
+    # find user in database
+    user = UserModel.find_by_username(data["username"])
+
+    # check password
+    # this here is what authenticate() function used to do
+    if user and safe_str_cmp(user.password, data["password"]):
+
+      # create access and refresh tokens
+      access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
+      refresh_token = create_refresh_token(identity=user.id)
+      print("user logged in")
+      
+      return {
+        "access_token": access_token,
+        "refresh_token": refresh_token
+      }, 200
+    
+    return {"message": "Invalid credentials."}, 401 # Unauthorized
+
+
+class UserLogout(Resource):
+  # Loggig out requirees jwt as if user is not logged in they cannot log out
+  @jwt_required()
+  def post(self):
+    jti = get_jwt()["jti"]   # jti is JWT ID, unique identifier for a JWT
+    BLACKLIST.add(jti)
+    return {"message": "Successfully logged out."}, 200
+
+class TokenRefresh(Resource):
+  @jwt_required(refresh=True)
+  def post(self):
+    current_user = get_jwt_identity()
+    new_token = create_access_token(identity=current_user, fresh=False)   # fresh=Flase means that user have logged in days ago.
+
     return {"access_token": new_token}, 200
\ No newline at end of file

From 447a3ecf0c14dfed4d8bce51db1e39efbcfc5ede Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Wed, 23 Feb 2022 12:44:21 +0530
Subject: [PATCH 23/42] added type-hinying to all methods

---
 app.py             |  11 ++++++-----
 database/data.db   | Bin 16384 -> 16384 bytes
 models/item.py     |  16 +++++++++-------
 models/store.py    |  16 +++++++++-------
 models/user.py     |  14 +++++++-------
 resources/item.py  |  13 ++++++-------
 resources/store.py |  12 ++++++------
 resources/user.py  |   8 ++++----
 8 files changed, 47 insertions(+), 43 deletions(-)

diff --git a/app.py b/app.py
index be88c3b..46b1338 100644
--- a/app.py
+++ b/app.py
@@ -37,6 +37,12 @@ def create_tables():
 # jwt = JWT(app, authenticate, identity)
 jwt = JWTManager(app)   # JwtManager links up to the application, doesn't create /auth point
 
+# below function returns True, if the token that is sent is in the blacklist
+@jwt.token_in_blocklist_loader
+def check_if_token_in_blacklist(jwt_header, jwt_data):
+  # print("Log Message:", jwt_data)
+  return jwt_data["jti"] in BLACKLIST
+
 @jwt.additional_claims_loader   # modifies the below function, and links it with JWTManager, which in turn is linked with our app
 def add_claims_to_jwt(identity):
   if identity == 1:   # insted of hardcoding this, we should read it from a config file or database
@@ -52,11 +58,6 @@ def expired_token_callback():
     "error": "token_expired"
   }), 401
 
-# below function returns True, if the token that is sent is in the blacklist
-@jwt.token_in_blocklist_loader
-def check_if_token_in_blacklist(jwt_header, jwt_data):
-  # print("Log Message:", jwt_data)
-  return jwt_data["jti"] in BLACKLIST
 
 @jwt.invalid_token_loader
 def invalid_token_callback(error):
diff --git a/database/data.db b/database/data.db
index 21ada3baaa2a07ab916701414f8eefbc5da747ff..b604776a4f4f3510b7d8eb24cfc1434e00ca74b1 100644
GIT binary patch
delta 146
zcmZo@U~Fh$oFL68I#I@%QFLR%LV0ffFAR+Q&l&ii^FQA#sBoKKo12N5K{mItxFo+Q
z)rf(Cfd`1efEP%z^3P)6f6IT9{}}%U{#ly^1v>b}L|9oFB-t606LV9G5*@UEJ#=3u
jQq44ZgT1~YLvlu9W)VzGkdc)^l${|dKR??+6QT?N2ofnB

delta 93
zcmZo@U~Fh$oFL7}J5k1&k#}RlLU~pOAQ0FrsBn#c;sg}|ULcQ!e***mTmGB;$M`pF
r78F>(KY4?_z9MIGMq*}>gZ8h7?(0OV1sPcxMA<o$^7FGDG$BF&u%R2|

diff --git a/models/item.py b/models/item.py
index 2f6930f..f5fe323 100644
--- a/models/item.py
+++ b/models/item.py
@@ -1,3 +1,5 @@
+from typing import Dict, List
+
 from database import db
 
 class ItemModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
@@ -6,18 +8,18 @@ class ItemModel(db.Model):    # tells SQLAlchemy that it is something that will
 
   # Columns
   id = db.Column(db.Integer, primary_key=True)
-  name = db.Column(db.String(80))
+  name = db.Column(db.String(80), unique=True)
   price = db.Column(db.Float(precision=2))  # precision: numbers after decimal point
 
   store_id = db.Column(db.Integer, db.ForeignKey("stores.id"))
   store = db.relationship("StoreModel")
 
-  def __init__(self, name, price, store_id):
+  def __init__(self, name: str, price: float, store_id: int):
     self.name = name
     self.price = price
     self.store_id = store_id
 
-  def json(self):
+  def json(self) -> Dict:
     return {
       "id": self.id,
       "store_id":self.store_id,
@@ -27,20 +29,20 @@ def json(self):
 
   # searches the database for items using name
   @classmethod
-  def find_item_by_name(cls, name):
+  def find_item_by_name(cls, name: str):
     # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
     # this function would return a ItemModel object
     return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
 
   @classmethod
-  def find_all(cls):
+  def find_all(cls) -> List:
     return cls.query.all()
 
   # method to insert or update an item into database
-  def save_to_database(self):
+  def save_to_database(self) -> None:
     db.session.add(self)  # session here is a collection of objects that wil be written to database
     db.session.commit()
 
-  def delete_from_database(self):
+  def delete_from_database(self) -> None:
     db.session.delete(self)
     db.session.commit()
diff --git a/models/store.py b/models/store.py
index d226c87..f50749e 100644
--- a/models/store.py
+++ b/models/store.py
@@ -1,3 +1,5 @@
+
+from typing import Dict, List
 from database import db
 
 class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
@@ -6,14 +8,14 @@ class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will
 
   # Columns
   id = db.Column(db.Integer, primary_key=True)
-  name = db.Column(db.String(80))
+  name = db.Column(db.String(80), unique=True)
 
   items = db.relationship("ItemModel", lazy="dynamic")  # this will allow us to check which item is in store whose id is equal to it's id.
                                       # lazy="dynamic" tells sqlalchemy to not create seperate objects for each item that is created
-  def __init__(self, name):
+  def __init__(self, name: str):
     self.name = name
 
-  def json(self):
+  def json(self) -> Dict:
     return {
       "id": self.id, 
       "name": self.name, 
@@ -22,20 +24,20 @@ def json(self):
 
   # searches the database for items using name
   @classmethod
-  def find_item_by_name(cls, name):
+  def find_store_by_name(cls, name: str):
     # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
     # this function would return a StoreModel object
     return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
 
   @classmethod
-  def find_all(cls):
+  def find_all(cls) -> List:
     return cls.query.all()
 
   # method to insert or update an item into database
-  def save_to_database(self):
+  def save_to_database(self) -> None:
     db.session.add(self)  # session here is a collection of objects that wil be written to database
     db.session.commit()
 
-  def delete_from_database(self):
+  def delete_from_database(self) -> None:
     db.session.delete(self)
     db.session.commit()
diff --git a/models/user.py b/models/user.py
index 7cfa703..1946af1 100644
--- a/models/user.py
+++ b/models/user.py
@@ -1,4 +1,4 @@
-import sqlite3
+from typing import Dict
 from database import db
 
 class UserModel(db.Model):
@@ -10,25 +10,25 @@ class UserModel(db.Model):
   username = db.Column(db.String(80))
   password = db.Column(db.String(80))
 
-  def __init__(self, username, password):
+  def __init__(self, username: str, password: str):
     self.username = username
     self.password = password
     
-  def json(self):
+  def json(self) -> Dict:
     return {"id": self.id, "name": self.username}
 
   @classmethod
-  def find_by_username(cls, username):
+  def find_by_username(cls, username: str):
     return cls.query.filter_by(username=username).first()
 
   @classmethod
-  def find_by_id(cls, _id):
+  def find_by_id(cls, _id: int):
     return cls.query.filter_by(id=_id).first()
 
-  def save_to_database(self):
+  def save_to_database(self) -> None:
     db.session.add(self)
     db.session.commit()
 
-  def delete_from_database(self):
+  def delete_from_database(self) -> None:
     db.session.delete(self)
     db.session.commit()
\ No newline at end of file
diff --git a/resources/item.py b/resources/item.py
index 9ce54de..bec2003 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -1,5 +1,4 @@
-import sqlite3
-
+from typing import Dict
 from flask import Flask, request
 from flask_restful import Resource, reqparse
 from flask_jwt_extended import jwt_required, get_jwt, get_jwt_identity
@@ -22,16 +21,16 @@ class Item(Resource):
 
   # TO GET ITEM WITH NAME
   @jwt_required()
-  def get(self, name):
+  def get(self, name: str) -> Dict:
     item = ItemModel.find_item_by_name(name)
     if item:
-      return item.json()
+      return item.json(), 200
     
     return {"message": "item not found."}, 404
 
   # TO POST AN ITEM
   @jwt_required(fresh=True)
-  def post(self, name):
+  def post(self, name: str):
     # if there already exists an item with "name", show a messege, and donot add the item
     if ItemModel.find_item_by_name(name):
       return {"messege": f"item {name} already exists"} ,400
@@ -49,7 +48,7 @@ def post(self, name):
 
   # TO DELETE AN ITEM
   @jwt_required()
-  def delete(self, name):
+  def delete(self, name: str):
     claims = get_jwt()
 
     if not claims["is_admin"]:
@@ -64,7 +63,7 @@ def delete(self, name):
     return {"messege": "Item don't exist"}, 400
 
   # TO ADD OR UPDATE AN ITEM
-  def put(self, name):
+  def put(self, name: str):
     data = Item.parser.parse_args()
     # data = request.get_json()
     item = ItemModel.find_item_by_name(name)
diff --git a/resources/store.py b/resources/store.py
index a8392cf..e016bfa 100644
--- a/resources/store.py
+++ b/resources/store.py
@@ -3,13 +3,13 @@
 
 class Store(Resource):
 
-  def get(self, name):
-    store = StoreModel.find_item_by_name(name)
+  def get(self, name: str):
+    store = StoreModel.find_store_by_name(name)
     if store:
       return store.json()
 
-  def post(self, name):
-    if StoreModel.find_item_by_name(name):
+  def post(self, name: str):
+    if StoreModel.find_store_by_name(name):
       return {"message": "Store alrady exists."}, 400
 
     store = StoreModel(name)
@@ -23,8 +23,8 @@ def post(self, name):
 
 
 
-  def delete(self, name):
-    store = StoreModel.find_item_by_name(name)
+  def delete(self, name: str):
+    store = StoreModel.find_store_by_name(name)
     if store:
       store.delete_from_database()
       return {"message": "store deleted."}
diff --git a/resources/user.py b/resources/user.py
index 0d3cc9b..b074b24 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -46,22 +46,22 @@ def post(self):
 class User(Resource):
 
   @classmethod
-  def get(cls, user_id):
+  def get(cls, user_id: int):
 
     user = UserModel.find_by_id(user_id)
     if not user:
       return {"message": "User not found."}, 404
   
-    return user.json()
+    return user.json(), 200
   
   @classmethod
-  def delete(cls, user_id):
+  def delete(cls, user_id: int):
     user = UserModel.find_by_id(user_id)
     if not user:
       return {"message": "User not found."}, 404
 
     user.delete_from_database()
-    return {"message": "User deleted."}
+    return {"message": "User deleted."}, 200
 
 
 class UserLogin(Resource):

From b251732b71b0c82c6d8585b0e795272c76c8012f Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Fri, 25 Feb 2022 19:01:39 +0530
Subject: [PATCH 24/42] added marshmallow serialization and deserialization

---
 .idea/.gitignore                              |   3 +
 .idea/PythonRESTapi.iml                       |  11 +
 .../inspectionProfiles/profiles_settings.xml  |   6 +
 .idea/misc.xml                                |   7 +
 .idea/modules.xml                             |   8 +
 .idea/vcs.xml                                 |   6 +
 .vscode/settings.json                         |   3 +-
 app.py                                        | 105 +++++-----
 database/data.db                              | Bin 16384 -> 16384 bytes
 ma.py                                         |   3 +
 models/__pycache__/item.cpython-39.pyc        | Bin 1656 -> 1922 bytes
 models/__pycache__/store.cpython-39.pyc       | Bin 1707 -> 2003 bytes
 models/__pycache__/user.cpython-39.pyc        | Bin 1532 -> 1588 bytes
 models/item.py                                |  10 +-
 models/store.py                               |  11 +-
 models/user.py                                |  14 +-
 requirements.txt                              |   5 +-
 resources/__pycache__/item.cpython-39.pyc     | Bin 2647 -> 2900 bytes
 resources/__pycache__/store.cpython-39.pyc    | Bin 1517 -> 1626 bytes
 resources/__pycache__/user.cpython-39.pyc     | Bin 3037 -> 3278 bytes
 resources/item.py                             | 188 ++++++++++--------
 resources/store.py                            |  15 +-
 resources/user.py                             |  64 +++---
 schemas/user.py                               |  14 ++
 24 files changed, 294 insertions(+), 179 deletions(-)
 create mode 100644 .idea/.gitignore
 create mode 100644 .idea/PythonRESTapi.iml
 create mode 100644 .idea/inspectionProfiles/profiles_settings.xml
 create mode 100644 .idea/misc.xml
 create mode 100644 .idea/modules.xml
 create mode 100644 .idea/vcs.xml
 create mode 100644 ma.py
 create mode 100644 schemas/user.py

diff --git a/.idea/.gitignore b/.idea/.gitignore
new file mode 100644
index 0000000..26d3352
--- /dev/null
+++ b/.idea/.gitignore
@@ -0,0 +1,3 @@
+# Default ignored files
+/shelf/
+/workspace.xml
diff --git a/.idea/PythonRESTapi.iml b/.idea/PythonRESTapi.iml
new file mode 100644
index 0000000..e469c68
--- /dev/null
+++ b/.idea/PythonRESTapi.iml
@@ -0,0 +1,11 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<module type="PYTHON_MODULE" version="4">
+  <component name="NewModuleRootManager">
+    <content url="file://$MODULE_DIR$">
+      <excludeFolder url="file://$MODULE_DIR$/myvenv" />
+      <excludeFolder url="file://$MODULE_DIR$/venv" />
+    </content>
+    <orderEntry type="jdk" jdkName="Python 3.9 (PythonRESTapi)" jdkType="Python SDK" />
+    <orderEntry type="sourceFolder" forTests="false" />
+  </component>
+</module>
\ No newline at end of file
diff --git a/.idea/inspectionProfiles/profiles_settings.xml b/.idea/inspectionProfiles/profiles_settings.xml
new file mode 100644
index 0000000..105ce2d
--- /dev/null
+++ b/.idea/inspectionProfiles/profiles_settings.xml
@@ -0,0 +1,6 @@
+<component name="InspectionProjectProfileManager">
+  <settings>
+    <option name="USE_PROJECT_PROFILE" value="false" />
+    <version value="1.0" />
+  </settings>
+</component>
\ No newline at end of file
diff --git a/.idea/misc.xml b/.idea/misc.xml
new file mode 100644
index 0000000..e7ffb93
--- /dev/null
+++ b/.idea/misc.xml
@@ -0,0 +1,7 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="ProjectRootManager" version="2" project-jdk-name="Python 3.9 (PythonRESTapi)" project-jdk-type="Python SDK" />
+  <component name="PyCharmProfessionalAdvertiser">
+    <option name="shown" value="true" />
+  </component>
+</project>
\ No newline at end of file
diff --git a/.idea/modules.xml b/.idea/modules.xml
new file mode 100644
index 0000000..bb14381
--- /dev/null
+++ b/.idea/modules.xml
@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="ProjectModuleManager">
+    <modules>
+      <module fileurl="file://$PROJECT_DIR$/.idea/PythonRESTapi.iml" filepath="$PROJECT_DIR$/.idea/PythonRESTapi.iml" />
+    </modules>
+  </component>
+</project>
\ No newline at end of file
diff --git a/.idea/vcs.xml b/.idea/vcs.xml
new file mode 100644
index 0000000..94a25f7
--- /dev/null
+++ b/.idea/vcs.xml
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="VcsDirectoryMappings">
+    <mapping directory="$PROJECT_DIR$" vcs="Git" />
+  </component>
+</project>
\ No newline at end of file
diff --git a/.vscode/settings.json b/.vscode/settings.json
index 6be470f..2c6c77b 100644
--- a/.vscode/settings.json
+++ b/.vscode/settings.json
@@ -1,3 +1,4 @@
 {
-    "python.pythonPath": "/usr/sbin/python3.9"
+    "python.pythonPath": "/usr/sbin/python3.9",
+    "python.formatting.provider": "black"
 }
\ No newline at end of file
diff --git a/app.py b/app.py
index 46b1338..07fea44 100644
--- a/app.py
+++ b/app.py
@@ -2,9 +2,10 @@
 from flask_restful import Api
 from flask_jwt_extended import JWTManager
 
-from resources.user import UserRegister, User, UserLogin,UserLogout, TokenRefresh
-from resources.item import Item, ItemList
-from resources.store import Store, StoreList
+from ma import ma
+from resources.user import UserRegister, User, UserLogin, UserLogout, TokenRefresh
+# from resources.item import Item, ItemList
+# from resources.store import Store, StoreList
 from blacklist import BLACKLIST
 from database import db
 
@@ -12,21 +13,25 @@
 
 app.config["SQLALCHEMY_DATABASE_URI"] = "sqlite:///database/data.db"
 
-app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = False    # turns of flask_sqlalchemy modification tracker
-app.config["PROPAGATE_EXCEPTIONS"] = True   # if flask_jwt raises an error, the flask app will check the error if this is set to true
+app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = False  # turns of flask_sqlalchemy modification tracker
+app.config[
+    "PROPAGATE_EXCEPTIONS"] = True  # if flask_jwt raises an error, the flask app will check the error if this is set to true
 app.config["JWT_BLACKLIST_ENABLED"] = True
-app.config["JWT_BLACKLIST_TOKEN_CHECKS"] = ["access", "refresh"]   # both access and refresh tokens will be denied for the user ids 
+app.config["JWT_BLACKLIST_TOKEN_CHECKS"] = ["access",
+                                            "refresh"]  # both access and refresh tokens will be denied for the user ids
 
 app.secret_key = "komraishumtirkomchuri"
 # app.config["JWT_SECRET_KEY"] = "YOUR KEY HERE"
 
 api = Api(app)
 
+
 @app.before_first_request
 def create_tables():
-  db.create_all()
-  # above function creates all the tables before the 1st request is made
-  # unless they exist alraedy
+    db.create_all()
+    # above function creates all the tables before the 1st request is made
+    # unless they exist already
+
 
 # JWT() creates a new endpoint: /auth
 # we send an username and password to /auth
@@ -35,64 +40,71 @@ def create_tables():
 # if all goes well, the authenticate function returns user
 # which is the identity or jwt(or token)
 # jwt = JWT(app, authenticate, identity)
-jwt = JWTManager(app)   # JwtManager links up to the application, doesn't create /auth point
+jwt = JWTManager(app)  # JwtManager links up to the application, doesn't create /auth point
+
 
 # below function returns True, if the token that is sent is in the blacklist
 @jwt.token_in_blocklist_loader
 def check_if_token_in_blacklist(jwt_header, jwt_data):
-  # print("Log Message:", jwt_data)
-  return jwt_data["jti"] in BLACKLIST
+    print("Log Message:", jwt_data)
+    return jwt_data["jti"] in BLACKLIST
 
-@jwt.additional_claims_loader   # modifies the below function, and links it with JWTManager, which in turn is linked with our app
+
+@jwt.additional_claims_loader  # modifies the below function, and links it with JWTManager, which in turn is linked with our app
 def add_claims_to_jwt(identity):
-  if identity == 1:   # insted of hardcoding this, we should read it from a config file or database
-    return {"is_admin": True}
-  
-  return {"is_admin": False}
+    if identity == 1:  # instead of hard-coding this, we should read it from a config file or database
+        return {"is_admin": True}
+
+    return {"is_admin": False}
+
 
 # JWT Configurations
 @jwt.expired_token_loader
 def expired_token_callback():
-  return jsonify({
-    "description": "The token has expired.",
-    "error": "token_expired"
-  }), 401
+    return jsonify({
+        "description": "The token has expired.",
+        "error": "token_expired"
+    }), 401
 
 
 @jwt.invalid_token_loader
 def invalid_token_callback(error):
-  return jsonify({
-    "description": "Signature verification failed.",
-    "error": "invalid_token"
-  }), 401
+    return jsonify({
+        "description": "Signature verification failed.",
+        "error": "invalid_token"
+    }), 401
+
 
 @jwt.unauthorized_loader
 def missing_token_callback(error):  # when no jwt is sent
-  return jsonify({
-    "description": "Request doesn't contain a access token.",
-    "error": "authorization_required"
-  }), 401
+    return jsonify({
+        "description": "Request doesn't contain a access token.",
+        "error": "authorization_required"
+    }), 401
+
 
 @jwt.needs_fresh_token_loader
 def token_not_fresh_callback(self, callback):
-  # print("Log:", callback)
-  return jsonify({
-    "description": "The token is not fresh.",
-    "error": "fresh_token_required"
-  }), 401
+    # print("Log:", callback)
+    return jsonify({
+        "description": "The token is not fresh.",
+        "error": "fresh_token_required"
+    }), 401
+
 
 @jwt.revoked_token_loader
 def revoked_token_callback(self, callback):
-  # print("Log:", callback)
-  return jsonify({
-    "description": "The token has been revoked.",
-    "error": "token_revoked"
-  }), 401
-
-api.add_resource(Item, '/item/<string:name>')
-api.add_resource(Store, '/store/<string:name>')
-api.add_resource(ItemList, '/items')
-api.add_resource(StoreList, '/stores')
+    # print("Log:", callback)
+    return jsonify({
+        "description": "The token has been revoked.",
+        "error": "token_revoked"
+    }), 401
+
+
+# api.add_resource(Item, '/item/<string:name>')
+# api.add_resource(Store, '/store/<string:name>')
+# api.add_resource(ItemList, '/items')
+# api.add_resource(StoreList, '/stores')
 api.add_resource(UserRegister, '/register')
 api.add_resource(User, '/user/<int:user_id>')
 api.add_resource(UserLogin, '/login')
@@ -100,5 +112,6 @@ def revoked_token_callback(self, callback):
 api.add_resource(TokenRefresh, '/refresh')
 
 if __name__ == "__main__":
-  db.init_app(app)
-  app.run(port=5000, debug=True)
\ No newline at end of file
+    db.init_app(app)
+    ma.init_app(app)  # tells masrshmallow that it should be communicating with this flask app
+    app.run(port=5000, debug=True)
diff --git a/database/data.db b/database/data.db
index b604776a4f4f3510b7d8eb24cfc1434e00ca74b1..b252df8f75f917bd63695760bdbe60f5cb4fd1c1 100644
GIT binary patch
delta 19
acmZo@U~Fh$oFL68K2gS*QG8><0($^CVFkVb

delta 19
acmZo@U~Fh$oFL68I#I@%QFLR%0($^CLj}43

diff --git a/ma.py b/ma.py
new file mode 100644
index 0000000..cf7687a
--- /dev/null
+++ b/ma.py
@@ -0,0 +1,3 @@
+from flask_marshmallow import Marshmallow
+
+ma = Marshmallow()
diff --git a/models/__pycache__/item.cpython-39.pyc b/models/__pycache__/item.cpython-39.pyc
index 06be40f2629fe1075d542397b758a5f4495fa19a..6050267c09de74188b7724e220e4a8a0218aa262 100644
GIT binary patch
literal 1922
zcmb_cOK%%D5GJ_~JuKO>EI(uiX<D=>1Qb?*K2AkZAWe$2i5pbOWiN~M4rQ;pyHdzi
z3K_n|R|EY4K3GTpmHq@?d-Ao%qKD3K{ZL~c%LQjS!y)<2$KgcHW}RVs``7yZ?>=LH
zlCs#)#=gU@pQ8W<JY^XVcqRgoIf28;CQ>)^0*^Dvr7s;>L0KI-T{aY57Sw)V;DCF=
zz?I&p{>}-Oz#Fihe~CM?o@3nalejSM^F$ZMdz~layvL1z{g~z#+YOdK&?;HLfdvA1
z;7E7mVfR6Rb1H&Lsh?NDopZE#Xsb#0oP6rwL*<mud9ZY4@$uh)>YUF-(8TdF)Npo1
zw&bd8L;cKwC1{+u!J6zq^NhnXtf00oH)IQAZ=DHPh4zX2jt84)+XB{Q)^80u*4l-2
zt8c(2uG_xSwxEmJ4y+>++otxcklBkd$kccV4)rUfU}>U~EK;-ZS2??Ui6NuSpXSM%
zsk{`WTAL^tCmJa`s_9~^q~1*+s1Impx4S@k^C*+X!_8u8s@5w^Aa)m+r7`XJ7`xs;
zam<fd$c_a{e(azWzy|Ds@2Muv_FUs?nGV%5Dr$v93&jOfYxw*7ML&~}M14KoKa4=i
zN&g8<<ETKCkD?qN4aURbw@AtUOEn(JxX}HVv*K`^|MFz;Dw-tyjCjy};$e3(Gu1Fm
z@}vku+FVl(Fz(}b)V?8Y_u7RRQnHw;Jm%zh)oAQtzm1QL*fASnlp~CB<N!Z&@gl_D
zg=<6tHk^g%HgW9*S8e>+5KGZP)wm-)&bM%+?K=`Kx8FZU%eUyrr6<b$h~1dDzHT&j
zuv=_&0^%WL9QY|e7jxttarL-ej<3bT>sK>V8zyNXRk%Mh-Y`+R=n3P*sV+|;sun=5
z4wD>0A{6~Y%7+ipL0cH^(atT>JAQX)yh#%Zm!O_=f~Zze#Ta++XPhWa5%5DCzfV`y
zo`Cb8;$#UxEMDaG^xmC=Z#de<l?5_%jyE^wyc|1oMy2Q)h^y$jO+`yhj{^|_7(X6o
zSyHI(J-AvrdMm?X970q?`;nHP5kC7yc!M8p-%|9x<NpCveMD$|OnZrU`Z3|V4`iow
z2#0E%-2nakKR_Se0=>_<_kf-gB|sROdKltUo2E2wgyEZMlwQp=!w^|WWvP~2`j5xy
zG|NrpSzgEksT3u>@dt%U@&lW7#(SEMqrw&hQ-6vjC^^V~k~907Ohd`k)&PB&OpIsi
zka2XOFn?*8agw}H>$GW=g7|Up^PZx+HcN3DX`M-|5uiRmi=tdml)~y05|m2|iDr|Z
z9;c#WQNgYspr{JhY4Hwkiw>`gwzpgpyzL3zahF}|xz}qLznD!Z9!m4_7|H=ty-o|u
nh5CYKzasG^iLc4Uv-Q?)bRQN|{iY=QTPjAjjCDjqY>0mWADOxn

literal 1656
zcmb_cOK%%D5GJ|1^6F*Fvh21=nxf4m0s{Ylq9_6cNgEV3j4G#v0b;#FIjinNA=d>Y
z=oVjn&mjlt=>L-wuRZzJbJ0U*D9ch~AIk-Y!=2&oH{Z-KZnql@$Ip-cia!O6{Yjh6
z;p65xPV*fKV8An$^N4fy69WO>1p`m<k$CS#9{2;+53bRV^|=*rnvl9VYPflh(|kao
zSj2%v0(j&pe-z-X(I+oOw59wx?&l%+3%=k{eYqbsAb{E>y=mUOso~m!E%Xvm8})4n
z(Ygb5Xk4(U15Ie*x~sa-hV2XXo=1DA??A`tJ=ldV+V^1(dbl3IK8A2$>#r-7|5}2|
zY>=XA-e5q@u}<??Pvq}va(#>eTniLvsE@TuQj?a&v~H?WD|47a)EJQJK9UfLt3f&)
ze1X#(pqTL)lWZnX@|lNH02{C?e$@A@U&Ohx0sc8rHgq4CDfE5o8<h<;rA{|Vv`}0z
zy^YJ?PvQHMV_l9^Qkj$EN%giYetS816OYrAoMJL36w~2&VnZp@BCVv{!E=VP!*~s!
zY4?_Z!<9?I$$T?N$7<OKf{oaWjWCoE1~T%1f23*<M_0ZTDL8x^aCh<S71wQC9Ok7U
z6xJV^vgn~^Tww~IyXT+j_8JqpBt+tBknZ7hq;^q341|UQzvOeVKtd5qpF0T1Yw+$|
z>4~im)2vcjo=$8qOtq={!g@(&mPm=r4Pd*&v;axep}(ZWe2osq!SJUK*XZu}-J$L_
z{}duYopXYy>$vR;y^o9a;w(eJU!wjwMWOox+Ml3t2|#S7Y-PUl-&=|v;K2$Bnq#sS
z*vwA%7K~$yuW<O9VA?IC4AnLQ0<g8D%=5I;d-uTVnD`GRt5QN-#iy}RPYIr@ecs~J
z2Wy5tcl<wq>PLjOhV`v5rH={UeIR>F2RYPbehc*3e}Fz-1HI4rsQ(2u4i$iuwjm`p
z)p<sGOUifWadu;AONlgOYPnsKS$k1t=XqhbUKf=*Q(9B4+S;JfX>sPN&IYftGOk=#
z+r}%rLejJ17d3GmWLsKgafR71Z_}|2+=ZY!6f1R%Z6;Z4Os=ryL4QTBACmZn#J42Y
zCG9k7I88-C(-487@VyT2@UH0bh6sbOE_frr>4(1aJi^N-TqSrJRNyW-XT9$SHvD19
N(2sO$xN>cYe*vJ@a?$_*

diff --git a/models/__pycache__/store.cpython-39.pyc b/models/__pycache__/store.cpython-39.pyc
index e5808788b6b59be6eb8b39ab24c3d0c377c16954..2b6321c99d4d826603df8ce1c9705391fe2cbd5a 100644
GIT binary patch
literal 2003
zcmbVNOK%%D5GJ|Y)mye@*@@GpF_1Qh(8B7Wy%|P;Bq&m}u2ChIMT^B+r0iAqA(N{X
z65Nx0&7pT6WS|%SiT)5?d&)Vt0tGt5wPN{kDuLn742R^*H#6L@(Wnv_Ywy?g|MCd=
z8->MD0^u2u{s|^Q1dT~TeVQ<zC64b<)UlW+uJ2mjiM^!cmne}`mZc*rFf&=&AOi=8
zZ4kfu4G~<pr$o5Y9o9}9zb?EU>6G5V4W#23{vzt<hJP37+_-PjC`&ukFtHDF`Bg5H
zZ+k!N_R)56a1fpW=|5qT#HWJzOi<sEeCPssf(hp>^Gk(1D+_*3LFa<50=la3L`jrE
zs>!;joKaB~wNvglWK+~ZYKSICOL7@jiC8*gVp*)5@)PQ>fUYIT2C;T6v1+xeqHX0h
zu@3v%m(o3PAEY(WhIltjwU=i~exC^$8&4yzUqg_!k&2Q~O@d$K<lP>G13GV<Mn_|5
zDhNQaqa-G2m_&V8<#9NjT)-C;vd>`4d?1hX97toPkLfW9AZa~vL3h;>XgbVrE#rY&
z2H}FJRrvg~+fAg1!mb|gABIB8QTL@7_rn~Lu^FafvzHC>-$Et3dny~sey+QFll(AC
ze|*_{9gd=If<fu74QgvNG36kL(kKst7M!lFhjhAn75~<J9b;88AFH%a!E`>5cY$mi
zo4_2CArcjk#8c$h%sD47$O#qBnFH|h-D?Nnl~^M^Al-)P05<(x|D7Jw8966^up{0p
zVn;lO8j6k?w)Lgq5g=|sDJI-&s@pMCXFp3uI~yRs2O`tQ3*q1aTibEg4`aOp%-kBv
zn?=GxZCpHAcewf(c3YKt2%K@kIKH3?k-BlOx(B*7AYF!uFitsb{X1Q{adC$gr>%p{
zt!i*UX;H-U5yc@uAn02<W9NWQhh0{MV_YaWH8GVz6z5U}`xE01BBgTx#_7kpxC5(Y
z0hrbxN=0DP4jTfjM~tb+IG;XT@btFjwS-~DuU9VkI-}^LT7fkPauYu46XdCSjQkB}
z%JvFC6Bi2?*tMdYuU{_}y!iu44?xHPqZvCU=ad#aR2n{Zb5FR!(ljM4wT1?P1PWn1
zsE#Dc)gxHC>DaOkf0aR=1tQGD{ZPxNV5G4;39ZxVM++$3w7iAU|L{~jfs2d>9V#KQ
zc=w%NwhMz`pt9tHr(b~em8XvuJiW`hvyPpQRS*QG8U*kxjAP{ML2xt<<I9ys5C9Ib
zEW`p$?|BxFlhl-6rMWzi%65tIdbx_ygQ9`zO2+m{(udLLvUhZ@6n2QISl94hVY|lE
z`f;drBH@)1>QjsvkyD@H)WPX<oUSU!a@gz&e}UL<`aUv@JIl1qnyl$G%Z#>MM%%o}
zt<`R)VZ3}YLJzTaiz_g%raVt|5nZi#Ah+z}0{>m2zCtS}N^|u!a;|;k?WuP;Wy;$H
RmOEIj_Bm*?I<2z@>_7ch${+v$

literal 1707
zcmb_cJ8v6D5Z>LpBTsxt)FaNzi47ZpagE?Q5Cj8`5x58;gsu(>7AMY9KIR_O?#TcN
zrm@w!NS}f%^_R9uk;+|wbO8cnW-qj;N0|d=Z}w((=G$*(F6nk#44=36|4e=l82f`Z
z>yM9{XDH?oF2I0iEax%j?0W_RybA`N;$!j7i#_lMEDAoLAB(sZa55xy{lNrvus5hE
z7IR>+03LhF9|tH63i)2dP313ezX-u!@+FTq(AI(g8qh>*8$#H)U~vap(8hOHZ9)gS
z7wjF6w@}}NEvNUO2is`hh8@_&_YUkKz)x&zP?cK!P=d;A!;o%XA>j5zr+K2M@@F;u
zaD)Ku#>-0OwO<paMUtmO^z*Z1HXVw!dy!7^9K{fwb3SJh*&47*-oL~ncveNi`bK3V
z-9e8_rZ@5RcLd)aAL(+ehLt%!npUsN;>Q<*SIHzj&IzD7b^!M$QyWT|7HK7Am(sZW
ze71Xam;IG}$kAc-kWREaY!6YHvoQ$=4&s6|vGA7cJ0uUh-#jG9?_Uc*iKqz%C}t0r
zQ#|xj=NCTb3$|pxiZd*`y9{wNHf4bq75h)EpCWtCP%m3}*0v6^)KtSVpBz%Gzfjoh
z@!BOQ!2Us24wK9rqO$UiJS$Rg+}VI4o5<Jq@U;7+KSj-YNtRu5P5j)*tGDr655<JI
zFyV8b@BA~{x{>%+RXuce%<Z5;%#HEdz~A$QSRx~l=<7CG5L|F}uJqJyjMA)9TAoa8
zFiN$lkPL5_nHnXPe2t9lQCfhc%b>rc9{CI%>eBkN`)lBCIbJIf)%be<A<_jWgqqqh
z68a0uOwl8*zasqxl+a~B{=P<IjX+#$u9f{(;*S(jiV6u@h&fy055no#THFmn4aC=k
z(>9GVCM^rB7=UeHJLGAlKfeQ4&m?b@tV#(<m7F9-JtlnAkBoQt?8`NdZhHP7NcBTZ
zWE(h$3ak1EH+Q1ks~zM>m-$DePtf}c>4P<-cX{`tU7B!e0x4}vN*w?5jP#C_XXi=w
zpQS4$5|OETThrNiUS{WcVVf_DN}Ve0=E61xl}?M(dSp6UWl4pUo7d^YO^c>+aC2eX
z!z?i-SNQh<O%0$Q&_Yz}Z)mw{7N^l9YpOemp{@#r@AY_3Y>LneL%~}CiXZyUs~`C`
bT-C2e9Js%#v)&clh6nZa52>|XJ9fmsjY@k$

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 1807a90bcfd423268ef2009b51372dae8d3221ff..2c7d39a2afca9b91c378d827ea492ea881057fcc 100644
GIT binary patch
literal 1588
zcmb_c&5j#I5bo~z@%VQguYnLyw1)_34#Y2jBBT%ype!q#T>8=)PqmX-=EvzCCvxOl
z_L>{V9M(ra2rtoBPI(1RRE^`^#pHx&tIJi@H9cQ_RW(V!-(k4E{^R!SXP>b@$+)=!
zG`_`czefQKc+Ltgc_F0WWQ*J@eCczhxem0@p$_Kab4FXXeqi8%f5E`l{(1DqlWhp5
zEDqn}T`U&P|1L{w7d$Pqs*Jf4FiYv==DK?S@95P`a$r&bmmc02;0{56_g2W3_Ak-C
zjKJUU4VUc$yQ90h3&A@9A+#=h+0%Wr8ARx5L+8SO!{q>dN9gOKuLu3cH-rHkz2h*1
zTlmzi57r2d(Hg-3vl+YgQ>)G63Un@mC93vG%w>0BvLZ1n^_yP3KSS_a;UYRMlR~>_
zky!hxGLU*VvL#*Meu&!+QLOozDYh0UG4Uze@>A17f9yHm>U?e@G)x=CmYE*@{q=ZK
zXvmU@UCy2-p!H(%2$pG5Bf}?22`AHPUcX9=o}8KLT&K02oUQ8TRr%|q>62uUO$tiG
zP6+7z#mYrWWo1??MQAKG2xC0tuSZuI-`@wsq5<PVqwA$9Q_5q%NT=MIyhf<3**QDs
zYYzM^zZ4tHEEcCRZ*JInE_kujW+mJ6EU&duvy}_xnXxstjF;wimo=r^<ZSw=x#2u3
z0YlZE<J;)94GQu4&Nbe{FuGG^V2&{SKY?}vpC)>cfn)qLpO82}*V(@|gD>%Tk8AvI
zTp17%4H}M-`$hT{g?G@Xk-$rAj1A{I-P<sl$SE^4(Xnr+TCQcawOD-TB>*l=tD?y2
zEjL{}JOnwk$xE&3N<mU5v&8BX4Ej*?9=}QAVPN_{Ks8h_7h?NqEIOrVz94bH<aigL
z=B6sHfZqED(7V^Hek?dXrnaUrRLXUf!j@m=r1zA1u}t#aiR>$dEaZA;Hf+l9VU;h7
z(zSjpYyC_c^J#;5TAQqVc0G*Fv$Zh;I_su6PI{qn#=wlp<7H)SK10n=Cz!h=u5)ZO
zYG^}WKALq)?}&u&4LSbAFcN&^(H{6s%xT<lVZB-q0%~_dZQ`PR4IAKw2r^%xkP(sd
g)AW~988n})=8lg6aM3qAW*$&+ZHQthdSWd827&2jhyVZp

literal 1532
zcmb_cJ8u&~5Z>Lpv(K-@2?0Ss2vK1Q8ahBI5<-ZAD8ivxMOs}v>u}~C$?h3&<c_rY
z2NZFczqBnC9W@m*cS#&fXb@}7?2LEz=DTlZF6wle4A;~9KcYjAv2WyDUOqY-DE1*L
zV89b5X%`7kg%q5<V&H*)#K6~L<bCm^54_KM!FP;jn?3FX><-AjyaIGKQ0!+^nn?~!
z3gFVy{wP4HfdKDV$h!7V&_4;mpYa)&jRn660o0C|Y(X7D+}pYX4QL**FI+C6-GX*$
zFGB~G@VpDl(8YZPRuJQ=YrM1Cyvac)G8m(2w|iW+_D!5dW}-gm$@eV;I6z`97TE&j
z1&ZyWn(`@AY${OWYxLPE-|Pt&(&Mry)h^tRto@W5=y}e!IvJW8-ZFJmr_3~P`}qK#
z>};8Qqz8rF*_ssZ^X%=*{&ut<@1z9I?$Fa7?N3~&RGh_yQXRZ!sW^<+_~GisdptT1
z7;ri~TVxaP67&)pQ#K;uz`qJ)LJ(vTgYyY;Pnb5wlsHeh3CSj$m7;!e{>bLp3R;%9
zVEk}tj)0B^<==FKi|mW+tLRYn5ualAV}2rLNE#vFRYK1N2V-p}vN4R4LL0R^altS)
zwm^*DAh8vH3xK-AI0Fn-=e)0Bo(h~eT%Utm4Er~rB|TJpr0N=O(o-=ka@0J}6~oO-
zVAlQw6T{!DwT@Q{Wa|VQY{q$Ido#vy3j55^B=vkl6uY|B*2a0}ya>S626>vsg`sjU
zLhIV-qgF+(AS$BW$m%;7bk<I7ewnYu!2bc%+#s|yY;2A7C2p<+xmE?Jp~=$=p!a?Q
zdUwv{Rl%D$;y5wX(@MFfQaDZHgzUCb2jeKIPGm<Zq#@CjTaqbjFY;uZX0rY|EA*Z=
z<w&?%zc6vOHy>fsBKXUwTx*cvq^BCk7YwzZxlZa9soSLHEn8YNNQUNu#@G@Kq42#f
z$DauO&=b5_O6ZqSy+GFOK@u1Gu?x@ZR$&dwPgogsRT39It6uy$eFw@ihrBI*0cQM3
A&Hw-a

diff --git a/models/item.py b/models/item.py
index f5fe323..4155aad 100644
--- a/models/item.py
+++ b/models/item.py
@@ -1,7 +1,9 @@
-from typing import Dict, List
+from typing import Dict, List, Union 
 
 from database import db
 
+ItemJSON = Dict[str, Union[int, str, float]]
+
 class ItemModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
 
   __tablename__ = "items"
@@ -19,7 +21,7 @@ def __init__(self, name: str, price: float, store_id: int):
     self.price = price
     self.store_id = store_id
 
-  def json(self) -> Dict:
+  def json(self) -> ItemJSON:
     return {
       "id": self.id,
       "store_id":self.store_id,
@@ -29,13 +31,13 @@ def json(self) -> Dict:
 
   # searches the database for items using name
   @classmethod
-  def find_item_by_name(cls, name: str):
+  def find_item_by_name(cls, name: str) -> 'ItemModel':
     # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
     # this function would return a ItemModel object
     return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
 
   @classmethod
-  def find_all(cls) -> List:
+  def find_all(cls) -> List["ItemModel"]:
     return cls.query.all()
 
   # method to insert or update an item into database
diff --git a/models/store.py b/models/store.py
index f50749e..4fa92af 100644
--- a/models/store.py
+++ b/models/store.py
@@ -1,6 +1,9 @@
+from typing import Dict, List, Union
 
-from typing import Dict, List
 from database import db
+from models.item import ItemJSON
+
+StoreJSON = Dict[str, Union[int, str, List[ItemJSON]]]
 
 class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
 
@@ -15,7 +18,7 @@ class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will
   def __init__(self, name: str):
     self.name = name
 
-  def json(self) -> Dict:
+  def json(self) -> StoreJSON:
     return {
       "id": self.id, 
       "name": self.name, 
@@ -24,13 +27,13 @@ def json(self) -> Dict:
 
   # searches the database for items using name
   @classmethod
-  def find_store_by_name(cls, name: str):
+  def find_store_by_name(cls, name: str) -> "StoreModel":
     # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
     # this function would return a StoreModel object
     return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
 
   @classmethod
-  def find_all(cls) -> List:
+  def find_all(cls) -> List["StoreModel"]:
     return cls.query.all()
 
   # method to insert or update an item into database
diff --git a/models/user.py b/models/user.py
index 1946af1..5439438 100644
--- a/models/user.py
+++ b/models/user.py
@@ -1,6 +1,9 @@
-from typing import Dict
+from typing import Dict, Union
+
 from database import db
 
+UserJSON = Dict[str, Union[int, str]]
+
 class UserModel(db.Model):
 
   __tablename__ = "users"   # will be used to tell sqlalchemy the table name for users
@@ -14,15 +17,16 @@ def __init__(self, username: str, password: str):
     self.username = username
     self.password = password
     
-  def json(self) -> Dict:
-    return {"id": self.id, "name": self.username}
+  # json() function is no longer required when marshmallow is used
+  # def json(self) -> UserJSON:
+  #   return {"id": self.id, "name": self.username}
 
   @classmethod
-  def find_by_username(cls, username: str):
+  def find_by_username(cls, username: str) -> "UserModel":
     return cls.query.filter_by(username=username).first()
 
   @classmethod
-  def find_by_id(cls, _id: int):
+  def find_by_id(cls, _id: int) -> "UserModel":
     return cls.query.filter_by(id=_id).first()
 
   def save_to_database(self) -> None:
diff --git a/requirements.txt b/requirements.txt
index e773535..242289e 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,4 +1,7 @@
 Flask
 Flask-RESTful
 Flask_-JWT-Extended
-Flask-SQLAlchemy
\ No newline at end of file
+Flask-SQLAlchemy
+Marshmallow
+Flask-Marshmallow
+Marshmallow-SQLAlchemy
\ No newline at end of file
diff --git a/resources/__pycache__/item.cpython-39.pyc b/resources/__pycache__/item.cpython-39.pyc
index 4b85e3022593835d2c61b9729e01f66a32d4b3d9..6fd759d9ef2c669b3efde90a6c1f5919c5ff7dc3 100644
GIT binary patch
literal 2900
zcma)8&2JmW6`z^?;EEz8N>*LVaNBL#)MkrP?x9GEI<8fVHPpzoK`LmxK(JkLhSJLW
zLC*|ri=j^P)kO{T=mQ1h;%onk=3m%r(Sy$IsYrsnH!E6l>_e8A$2V`@%+CDY@4eZm
zUat~({`u#NJO8N>@^9>%e{AU7f~GVGPB=|SN&`w!X9-KKz)J1FHhn8`Qa5nZN>E9?
zz%w>GnM<od6?7+<=WbBrm7vbOV1dsCi+2dG^7&_k&kO6w3L4O_@jCSDroY4&dZf8{
z0&gZwTG$(LUpHCdb%n}DvM&lxibumpD$%rx+Wr$ALVpxX!HdeS&>>ig#;Fp<Tx2@d
z2e8oGrWWbloQq_<a`p4WtA0PqvRwN+!rw`v?BRGZ1_vKagM5_n*7%Y!7~d$7BH{<W
zcp59M#=l(8d?95n{k-2F!K?izdvPNCI8#FEINSC09`s<n*0_f6_2IQb3*N_5oqsCO
zxdlyq0YZ>~auP6MP3>b6IKtU?ITaPogg2ez^q6w%IiPOrwy2)k?br5sQ9B}{E*7}+
zl5v+;p4mtAhz5%SMmXc%b1Le5?j<!5D90K&hO>+vBT?Fyz+T!G_#)bZW!`|uEEP7M
zsBnfd?u%^*f~^mRWmw8E*n1)w7M{|%6c7Ojo}ERhC|oJ@NM?NoN1Z(uDA;a8Q@;SA
z$&^muq=#(6<mCyQvSZ-ifc1cR+KK@I)SGta<X_-jR8pZ-v@7C&P@sz~Jv1&2;*5s~
zf4FlHns?j#D$k0A&F%Kxuyb!a{L{TpIvcQetDh*jh?8vee?{aa==}fwS}J%Pt*Oz@
zUc`kMuC@87AL%&H{3zpoFCXY9krZq9Wxg-^TCLqb(0h5-ZTGgLVZ0_!$*R_H)z<K!
zuz-?3fu$AhkXTh}(;6Fl2xSX~fS}F*X6?PAW;<_ygz4x)Ga&7OG6P9o;Z(D!g@6Gx
z4588XzB6@?$syBZLI*S^6ZQrD8$GnfwTU&Y91}|ZLb6K~{vkoB_DWD)@__Wnbpk$f
z0J&{ob~+`(Vpp8}9T1NH2jb*Q*g~^vu$C7<FD`V}@3zDBt!{gL<3ZT|bhEeJE8IaY
z(@4uX^l(ka%A#ui!$|I`qM@S4BGh@vBOUETN)(IjZued{-0bw)-R;fJ9k~K?U)k~^
z{GCP#edQ0akAW)1Drkj0%$06}rj|hvyGoZ?l{FZnHR^&sHU*%CUT=Z>nt>ZIQ<EbA
zZ^AfTCF(L{4YJO_q3M(vZdwydeh5HW2qt&59aG?^qaE;c4RDoC;l(P9cp7ICH#A;d
zN8N|4c^oIeSmn>^R{R1$l|KR}`C|}GS7NZw!Mjpck8mLK^bD+;A@fFitG(UckUzkg
z=aF*zNff8*omjc$f;V7}YJeb?%RJyCveKiTHJ&%TEWO@B3+ZU6*abzCeL%&~4XV}*
z9Zp6>wlom)JOQ(n64i+nI-s#tAY16pND2SmF;K8+btGO-asfnh&hSURhlZb_!2B_+
zJ9CmhM;mfQVhQ;!GpylA-vxVlR3Jsw^5`<8ApW1GAh>jz7YZ*l<suA=Y8a+DA0-0x
zS{ObWMF|#?FqC-wqTYo|M<{(CFCuBSSJWcTk=dgZE*(hcB#(44|HrNM&c~r4w)`nh
zwPF~Zhv+Dk3Md*}I>xNDlvo<&Wfa#?{2E0I#TnU+hKx7BAV%ss2oC~iQ)YhNSFU?b
z_ZW<<fP_;op}xGxsF~e|iEli3wp-8?;(c}<37bQ8c@D*w+s}x(QXK9;sNBL-ur0V1
zx1of2`4CHFl=OkouOG}VY`3AQTOdq^QC#vF!JIlK8?Y$k9F^C&HDR-S;|_XE7>?p?
z26tLnmb}gzFF@3A=RIf&X|PKs<g?l#TqIL+OkS`@cCUo6Nz0PL3f8**&eW*hNZ>I2
zJRRN?u+o2_k+F~IfQQ6V-MW$F{U}j4L7BN04%T@km%#h`ZjF=G+19SWv@*oMf32Ox
z`6IBUXuk<!d}%A+g*u{h|8Xpy_$genJ{HARlgU4z7gn35CGpFmybe8c9Y#q4R;;8&
zWdxjso4NEqqn2S6vM+*GmQf2zrv+D)U8C$9+hSjr-!n5TI#8_E@I^>L`5P1;pg=~K
zJU(0f>_ESR(Z51dSm!*TtVbo<I?d(6g^vmNfHIj-)CZ6y58(q(>A@(GNTM?RmdgSB
z`V&vJ$hau8sH~iL^k5#+S0t*1fhmi|Z*e--N$I0_AH}aw;0<Lq@UAo~yc=a9xQU!L
T^s3PYU12q5LoS)0)#!c;B@&0(

literal 2647
zcma)8&2Jnv6t_JeJ3E;)n>3WRd<_WE4oFK;K|-jiQndwDDp8dLRg8j0leIUQbUrq=
zH*Hp%Q+h3;5*GwWiNvM<3H%Fl<<u*1LMq}tPm*nD56sHX_Ve?{`}y~tH=UmL34HhV
z|44s;*6-MP{<ER807c~>IN>xWG1e@n1&di>#TLcBmD`0AJB1s&rf=u1!i&A49k&ZV
z_KnWTr-~pBDEWeLm$x1g-V)B96;DIo<8A1-P5%_9%Ovuj!j5DyVzu*mo~nCwONy<b
zP#QGel2Fx9_C)Q0a*#?TBC8HI@9PAOGAVf7S{FJ2P2D+cBpDZ_&h$=1>-H@ziZ3fJ
z@*eK;{O3Yv0g5U?2oh6HVkWG8`+&rba5h~|MT;|Tar==?iP1R11C4vAY43q&+<Qp&
zXzYtNjI<w7?(-?5nG!f2@M+Tv_$fZ~ki^rx13u5zHXf{Y1~Ti3mC^Z?jZB68OyoT5
zrDa*^a7~13d0O5Be{H=pXb@;Twl_pRs6C}CDZts$>o>QB+zB&SF)W4PDojH&7-qcN
zW8mJ=XF&tYbtvi`5Sr}MF+HHWY|P}DG23ScWEpOsvy5`9&)}@~V%;i)Qt7%F%`|(!
z@%q)U<lXFhN=RhMHY`=o_Op^FXpyY#BxPEN+TK)Ei5@7C_iMY+p~Vv-&%m6&Ke+MP
z>K$2aik?=hcXsqfRW99JUP%Ypsyw`UwTctEgPq!f3qFe{_dpQlQ=58h<lVwy7=r6|
z`Y>zbgv&^5ylUg}CNz#*mT#h)WBMbI`ezH=wb5P8HVp-KnI>b}rx_WuU+A}V*BS+5
zYu`B_l-wodSqe3fopJ|ex_#!7uK~DA1Z>;`poM|XJA_UEbPjqEj%LC%mm=jmp?Huf
zt)6}d2##j2m7$Qbl3~^B4T06&>@Uzi{SD3=wG6y+7TOYnxOPn-$l5n`lFD^ecT~D9
z5?v)c)#+NQgq#D@C$>C|)8=uSjYIMk>?8J#c-4#yDy83smcmKI^65PDS%)ziP?yfJ
zkqM(NTD^enF`aI}OilI(Qi;=ZM4iXrImVUl1J*z^Yi!9+0VNBO<PLW;NCHr|z|u3Q
zwHIqIQ%TB;tdt#Cb#(3;wnGS(?JNf#s_-cKv&R6FJdZ{J@*spr7h3R9r|DJY1>GPm
zUjw7amMy3zfY$TPgrqO4;ut$Ho51Gw@-!>dOM!En*_UBWg(oG<WgZP0YEsV{O&M}F
zRxdz@)HJkQf`%rW0MP-!r-6V+P;oLOva79=R4nHkh{smqK#QFN+9fW4+CosF_ArVg
zYf(<Y%5nxo)Hd9aZ=m8$6d1D&sg8~0Tc|@0$PmSUXkrb9+ML(8N`2;A9-RZWV0{>e
zV6qsUs=dS{fF!B?Bq=IB%muWAB-t9KIi`Umkq&H8PcJpe{to7LX^vM1Dd))QVF7s@
zVmhx<U0YeHB?hv@6d*Bq$@frPKruO~X(6kPzv!fT7la4*;!=jcXRdSHYT4BHJnGLv
zJ!59{!1%<61Ydxn5VgrWfyo21J-iMkzuVja#NFCtquUVKE0B)7YM`^KO!FSF^!URC
zv0R6u7C@M&p}62fq74adz>@-TMCC<pjWHFQ+yqeq7Gs8^_^|%O8hzv~p4b30K5}ar
zio(!eCu8zWunU=fpB#|KY|CD5Ad6^|CRok7mtM+n|4I(d^r~WTHHMY`ghECkvKpPl
zwA;OsSG_b>SD|raTAOUAp8g8f|MzH|oI5-koC;6fT<S;1t;x+|yse@BV-TaWx2tu?
z4!R1rGjTsG;8hGU)pa8#KS3*`D?C#8YBVpEXI`o_&p~?{v~_C;<b$WQv7eC1@Cf;K
z7fO>H86-r@rhy$$_K$6`XHDWcLSr#<<VD;lLh(L|327$_Pki|hOumAm@Wzm(5;f6G
z-BMe5rp09p0Qg%Z@m3}Brk*wm_y?qPf0#?0*aXvDGk|}O!~-o#E_k!MNqXpiJO#lh
na@B>EizWr&lVbLKSrFCUl_q+xB7;=`!ebrUfd?XBo!kEc2QWz}

diff --git a/resources/__pycache__/store.cpython-39.pyc b/resources/__pycache__/store.cpython-39.pyc
index ba56a097635e5c0b032ff94a1a441a6e3abb55b4..f830863bbb075acc04f336d96d44a68e0863220c 100644
GIT binary patch
delta 575
zcmZ9Jy-piJ5XW!7Y=b$32=PaxNG>d-E5a2#04NHiNg}|hoWfb(F5wWqvv$^soQ5Ja
zBvK@6n-qBgiWKR23}}{)o)@6XtRs;qE6q<cf9-ti&RyLvEz3AwjPUHfZVa1zw)}0t
zG1^9h=LjA3iHiDEGtCwGK@?T&jDIG5@t|-e=1S#3si^8)sj6BpN*286+0y8QcwWfS
z?E1y&>S11}0R(k0oDNXco*zS5TrkhF6EFf>dojOo5t%wh_xtHct6Ziq86HWc^*G&8
zlT6yYEIP7KonCopKT4z1JyRa*%tE?1wMS)fu+w`h$9ZZrloOL_NTC@TZ;Yp&ebBZN
zo*EEQ_m$j|iYsU%sbXwu0ipRHETQN5xC9$KSV3UUPddY#E%t=eT%UCbb*HR_{&&`0
z_4VvT0*o{cqC5j@+$DSVGNjiiB`X3gro@CV&qBF>55r&^4O)o5dr-K8vj{i9-8%n5
zs_qw0NaAkz*6spc{BK?pqqZKZP(;K&#q(Xf%E4~n<KHC0tf6im2Q&hj?wxr0sEuwH
Y4Z>()R?~LpVw1Gpd(m`PqD4Bt0p)##9{>OV

delta 497
zcmZ8dJxc>Y5WTtEy&UF4gE1#TurLTG8VkFCsD+(~7^`q_T(TRzV6w8i3b7NcL<HHt
zV3Qx=5AX-rTqX8`m4cPK7f^9v-poGcy<sOUyyZ)Au{dSvc&WX|PtJYmu4(JnwoXyk
zK&>_qt8Eh?_O;b^h(nOBh+yLCib<|z1zw6<l5wiaPEA!IXqS7*kVJ{3gQzo#hVg)=
zs4v)X?4(H0(_V@)4hy3iTRg8feXWvac)(eocBKdpM)HIW4|iKf@mUgbD%d&iQW2_0
z@B!2_yl!JHN@qlTK_kf`63e&~3(8$h^PB<WI)Q>2MQ2P%!-*LU7N}4Aejzid5PC`_
zje497evNYK!Kv3^3J`eU*_VavkB!Ofe&DKCr>^GF+NRm)*&g<$Inr&{xc`lxgH|;A
z|Dfs?-GHln9Kf>L!CT;|E9`HW+Y2MK?8{=dcrOvMaZKfYfVeT@a|WsgiU#spH(T~~
VyQDMIdcb}4fj7WcEABchegn^;cANkJ

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 682ed374f6dbf78825c3467aadb840fd62133873..0dddd94e4fe09536052a2243e59bb73a4f4e2f21 100644
GIT binary patch
literal 3278
zcmb_eTW=f372cWMC70xqA|=_8TsLKt-q;J}6fMxAL7~)jiy*FGSW1H~3M^Kfp|tW|
zl$oU!5ma8}R~Idi$2`bDU;Hcj+V&^xYoGKN0<_3?W=V-^Z1klR=4j5D%g#CHJC~^4
zZd&-={oBU=I~~jV7ct8}2h28x{wIjA1WT-x1&q<0Cp@(S+sy66N!`FTb0?{#^`LI%
zZsMhlppiC%X4(o`sUP@hJ7}A=TGB~Zf)z8bC*8Cc^vv8#R@1d$jajmHZUyVVwM0WS
zpIM?Q?Q=W01->PG@V?=1gKvut_>SS<0KX!-;Jb$30N)d<;8zX5Db{wa!TKfiu?DQH
zEBWz6>H<^mvDEoQjU?tPzmJkwL`9ru50uIkM81y3GSr0%N9pmvE!Rd$MuiNc(MW0?
z7WosImFsh%l4B+H;aut;ofIK`C{|LG-2+*KB#DL0inur}>vIXd()dtI^}Afi1Wc2d
z-O-^;BU<{^!}sog@bLZJy%9Zr`DcUK#?Tue(h8Wc0xoUA1b=3ov%nEHly*v=E_^Hx
zVqHizV%WU+k)sI;_c8RRAk)>tx?lyruwPg&*ctoC%7%_rIH%jpI^)cm-k$LzSFkbv
z$f{X?03gozr+jz*|DJWvDry(?8D6l7^XiYn7Ea7)|1MU>R&34KU)i77nLV>FycZT+
z?}{3B)M>}S+qwKR-dB1Pyf}+eS=LjSIXaNj@4uJzN!mY&i^G0#7!`)4P5mf=Q^aXs
zegYNsFffNC4sDR;{YVHY`g&qqHl8HO>G1L&P<GHLTXbcpjj>B7$s?gSR!YzKM(3F#
z6P4cl6<W23?T+J2g!`xA;+a8LM^7dE9s)hlexxPLZjTaOHp~Y|TDp=jRXQYjX{o!o
z>5E5OsT6Uvr6>D`k&yCu>w%bz3<CR6Ci=VixHyTF+<K()BRMMc)}zznFwY)8*xiec
z<1N6=fLCwPt;6Hf(mBp`@g3Z)S3xY!*(&R>zTM%z-C-V|_CCbU1saC5d*`KFdSOVW
z48yV+hG{M)3C;a5{CE;2^Oe>piL_279w5}4xZLQlM7~ZkBoymy3{95vY|f12E8xA#
zG54_T8obgG>~p|J*v}k5*p>EN;t1DBYN7_9)JuodKz!6maRk+f{I>W}WYD;ep}z-0
zsGcz(n$NhtLlFYZ*#?!s`i#F|!Z8SRcT^AizgVH``&nM}$N3}^!^_Wr%geuGY2Z{K
zXf8ky3$+G$>4-^s{L)qwjq2M(zD9)nToE!)X#-imz(ji>mfd6y^ZC@H&keEkdNqdF
z{(3cL{DPZsf+A4OHOkZ~WfZ|deHUcfHfkZy$U=&tBGU|PqmLS39;{bO;aKJA6_(Wx
z==^`_QLA?T8cW(#6JDv}v1!XFQ?2g|>Z(u2ze(gRB5#9~cAORJhs6Gf$o1uBW`Oi9
zEc_h9Sjq#CyB@$q(h<guANhJ4<9}sBlV>012XS^I4c2h<Dh*zM`TwRtN_OhA!kgJg
z4WveU(>mwio8VglxPH#hoWeI;?KwMhi?*nrquS1#nJc`{xoD6#MN_okS>JfJy`xs}
zPSph|y<>#sNv_1+OI~_c^~E*CXu#BuNu$n$0G;Fq2grqSHsGayqlUF_6fc7e6A9Dx
z_p_%|7W*i2rgTM#9>#w`I1D-l_-dVALgA-w5uwOdw~0`)RBsS*iBO~~vUSN3Gj*D{
z#|l6g)T*G_qz!k7n8^7F&3;Pc8Xg82lzSdwXqs3^G4mAXtRuzwjFJxjk7M(HJMOeY
zU^FhTa-I4Hjx1exjkhf<>|j)h3wTo``3lxZy=~e?A74&f=V+9w%1eoBUVBY3$LI4&
zaRYK>E<){nx~UIRSag2VI%5U9;FPOS8<7U#@<nDU?V}>DoU*aIRLvG%#W$`(n&7P3
zAf=7+H{g|lDV&yczcOY9xhBt0LTa+9$$r(V=M|#%swh^J!(LwreumWq!`w^(>@Y>L
z*PHY$tS+0B4Eh`qBOGdIj9Fb||61wqQRDTv>bLf&49wws!^mV{a+fhOxr>ZU21XRp
z&HM}oo>3`SnD{s99c)tuc_uk>)gS@c28ohVd+CoRN}-1{)jw!t@}z3`US-&)I50PC
zjq-eN`Q39sQZ-mQdkx5Uu`pR&;4#iTrbxCkxKp}g)Z!;qv(h$mw3@m=ccVyaG~JQX
zhiQ}~`H6|hpm!qGlc}5>47G#?=s-<WmaEliYE9)Qh0M?^8Ffv7RvtDcAVlF>YEt!(
zl8FiLz^|I8xyZ++vaz2;qbCV^F@wM=Nl;s0lDCN}g9D??t28gYcdHiUm&h`fri|bt
VuIcZtXa4tUcK3GoR`<<r<4a;i(z*Zu

literal 3037
zcmai0O>Y}T7@nD3+iPdzI%)b{z?Aag78xWE2!v2eTTn%bsw7-i70bpmb~f3y-I;aM
zSjj297J<Z(Ln3kMKY<(Py>jXw;7|eLd1sv_X%n&5jOU%t_v3k=nP_^t#_(NU`YT%X
z8T*rjgI^iKH5Bs)D#;{ISjq#Qia>CZMdGAx;M%s6l+togPAfqr^#U)g2Gz6{)a;m>
zOr?I{+jc3LPU}IPGbMIT?6RPt8mlw1tY&3Jdb0W$yV;)F!Je;}oRa<{CVj=Xo!}(o
zX<3I{xAGk16S4uhVdYbhXXGs8Su3B0d{WLqp0n~9d1{fhPCtcJtR-@9L7BlwcU10a
zb$=LXqgp)oP1IGP$#mFBhpke6vZGa$sW9qvlrdp8SX2FcZqlh$S1YqJ>GfCFvk+U2
zVy$G}=&3BEo>;1W7H1oIWzvIFs^1!=zZpoCknqKw>o>l>b9-?q_eSXNN2yvGpI=&u
zO|u)TL^eB7zdy*D%c`l;VYbn7ayQ!;7K#_AxhpCe=H4(eW__S#hip9f2?*Cv%p5Ak
z0xnq~B$wh53moadFK+IWQVXgVn@s5r$HcwQLBmD4fnsi=%GeIyWm`NGJI*GT{2bfm
z`jQmViMe#UVv%K{%VM_4f8{^$EwL$f++7AFlw=t*Dm0_z&1=Aq<&_kkje2T)<$AwK
z4rs2&*-A58i83paKbld3ILM8rdI<GQJN^;+0drWXu<|Ua-i)MFvS~&(RNYaMY_y;L
zjuQ|@KctOA8)co>?0*>Pp3#&Gd7~TmWw^XyXVG~<!$c1h0vpOGi<To`15P(8>E<r=
z<Sy;^gz58G{_N__Pw(B;gH_eZ%)PrC*~*~5aBFcX8pij44+}DLj~29t8@W3in5>Cq
zhOB4Y6LsM`b^MQK$c()Rv}xWv;^KuNsT78JEez9v93|BD!|?tnN{SJE5j$C34pbMY
zZwA#XD25Q=IaYoN9TeYdH0d&`J#;9iz{fTZT(lkOK4NH>WC^h==Pv2mp<VYr+J(vu
z6mtm`p=6Wq+W4FEv>RgYQ0##RvC9Z`^LiFDpPiuHngsIhVAPlGr#~aUEvJZ1Z7({p
z%-vNp=s$6Cr<0hVLOw-;>2uiQ1<P{>>GnRU;-O+rjl0|zV~-AMW9WF*uVDKBsSYRu
z=rM;0rNRXLI+kfNdpvE8L2|21$@atw{RW1DxuQ4h>OuM(TKY{|N=Pay3S3?;W`2UU
zv3xBG3p_ravNjas^R2R``07`wdW}|2brR4(ssKZ&-=^+&sM_D(wk$fD7-*wdA9+IX
znkTrX-VVy4k0N^w#hgWT6h<a2VyW%UpcnTKQAi1^o>NE{!ci1LM4^Ms-4v@O(26+6
zwn;8St`Gnpi!CSftW<i;x7@5M%iEl@O=r`Um0yJP2wbu%YXI7mB^kdU8Qs8<OHaW1
z&*`{ixx2;nyBHeR2};dm(CdLh;y&&N{}AO*AL9C_zhR9<?s)EY|3Q?*AZf5ZF@2PP
zo_-?u)-<uLK1CIUP@krXykOPQ<da+gzI5Z}rJ;`dS*xVqq6y^X0@f5C{T@~O5wyXh
zoWF%)Bf=cdsk?LF5ubaG;NoA`5&yWQah<?o<1rzW(hGReE!z870-<cM8BKZ<L^Smr
z4-ZmuA0FG3C%9yYL?!^KO%xi8vO@?VDj|^B!<uMhj8>ncYliO#A`)cXfhz`?mpiLj
zT*Tq*;sM^@3nb2HYa#(8VHJOR3RUjlqG$<yhB`i^>IlbvkA6dOVaU50A6tTg8)-*N
z%uinOV+E6s_u~f`{SL(xessB}p5y&U`MmE(^5SEV=Y)ja2?_g4^d4C#o*_$kOH?K>
zJ>*&P>hs*AeaW-rRl2&duh@cDH;J6>)eXOXsjp(1w$QWg6Pj4mA{MSB&*gq+q%{C<
z@64duSL?+)=qPXYuwdfNGO_T?LA?uq>W}Dv{YcoB#rek=AjT*>$33p8XTEhdpYDR`
z*6`*s8LoRx2-0M1Fte`o+E|TxZKI$jUSBrt^4VemJ<HU?O!e_zur}EY)HZ<DPQpqs
zg}YWEnTZ*Si>SJsM4hz+FAxi)V0r<sJsf_Q9*^2)J7_~ndRdH8_$GHS)!w<5RBh_m
xxLXsBvNrcVE3Wv@!63{KH#Lyb7b`yZ9S?UHQk#B%m&*s*USp<ls&S#={Rgt{pE&>k

diff --git a/resources/item.py b/resources/item.py
index bec2003..682871c 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -1,99 +1,111 @@
 from typing import Dict
-from flask import Flask, request
 from flask_restful import Resource, reqparse
 from flask_jwt_extended import jwt_required, get_jwt, get_jwt_identity
 
 from models.item import ItemModel
 
-class Item(Resource):
-
-  parser = reqparse.RequestParser()
-  parser.add_argument("price",
-    type=float,
-    required=True,
-    help="This field cannot be blank"
-  )
-  parser.add_argument("store_id",
-    type=int,
-    required=True,
-    help="Every item needs a store id."
-  )
-
-  # TO GET ITEM WITH NAME
-  @jwt_required()
-  def get(self, name: str) -> Dict:
-    item = ItemModel.find_item_by_name(name)
-    if item:
-      return item.json(), 200
-    
-    return {"message": "item not found."}, 404
-
-  # TO POST AN ITEM
-  @jwt_required(fresh=True)
-  def post(self, name: str):
-    # if there already exists an item with "name", show a messege, and donot add the item
-    if ItemModel.find_item_by_name(name):
-      return {"messege": f"item {name} already exists"} ,400
-
-    data = Item.parser.parse_args()
-    # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
-    item = ItemModel(name, **data)
-
-    try:
-      item.save_to_database()
-    except:
-      return {"messege": "An error occured."}, 500
-    
-    return item.json(), 201  # 201 is for CREATED status
-
-  # TO DELETE AN ITEM
-  @jwt_required()
-  def delete(self, name: str):
-    claims = get_jwt()
-
-    if not claims["is_admin"]:
-      return {"message": "Admin privilages required"}, 401
-
-    item = ItemModel.find_item_by_name(name)
-    if item:
-      item.delete_from_database()
-      return {"messege": "Item deleted"}
-
-    # if doesn't exist, skip deleting
-    return {"messege": "Item don't exist"}, 400
-
-  # TO ADD OR UPDATE AN ITEM
-  def put(self, name: str):
-    data = Item.parser.parse_args()
-    # data = request.get_json()
-    item = ItemModel.find_item_by_name(name)
-
-    # if item is not available, add it
-    if item is None:
-      item = ItemModel(name, **data)
-    # if item exists, update it
-    else:
-      item.price = data['price']
-      item.store_id = data['store_id']
-    
-    # whether item is changed or inserted, it has to be saved to db
-    item.save_to_database()
-    return item.json()
+BLANK_ERROR = "'{}' cannot be blank"
+ITEM_NOT_FOUND = "item not found."
+NAME_ALREADY_EXISTS = "item '{}' already exists"
+ERROR_INSERTING = "An error occured while inserting the item."
+ITEM_DELETED = "Item deleted"
 
 
-class ItemList(Resource):
+class Item(Resource):
 
-  @jwt_required(optional=True)
-  def get(self):
-    user_id = get_jwt_identity()
-    items = [item.json() for item in ItemModel.find_all()]
+    parser = reqparse.RequestParser()
+    parser.add_argument(
+        "price",
+        type=float,
+        required=True,
+        help=BLANK_ERROR.format("price"),
+    )
+    parser.add_argument(
+        "store_id",
+        type=int,
+        required=True,
+        help=BLANK_ERROR.format("store_id"),
+    )
+
+    # TO GET ITEM WITH NAME
+    @classmethod
+    @jwt_required()
+    def get(cls, name: str) -> Dict:
+        item = ItemModel.find_item_by_name(name)
+        if item:
+            return item.json(), 200
+
+        return {"message": ITEM_NOT_FOUND}, 404
+
+    # TO POST AN ITEM
+    @classmethod
+    @jwt_required(fresh=True)
+    def post(cls, name: str):
+        # if there already exists an item with "name", show a messege, and donot add the item
+        if ItemModel.find_item_by_name(name):
+            return {"messege": NAME_ALREADY_EXISTS.format(name)}, 400
+
+        data = Item.parser.parse_args()
+        # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
+        item = ItemModel(name, **data)
+
+        try:
+            item.save_to_database()
+        except:
+            return {"messege": ERROR_INSERTING}, 500
+
+        return item.json(), 201  # 201 is for CREATED status
+
+    # TO DELETE AN ITEM
+    @classmethod
+    @jwt_required()
+    def delete(cls, name: str):
+        claims = get_jwt()
+
+        if not claims["is_admin"]:
+            return {"message": "Admin privilages required"}, 401
+
+        item = ItemModel.find_item_by_name(name)
+        if item:
+            item.delete_from_database()
+            return {"messege": ITEM_DELETED}
+
+        # if doesn't exist, skip deleting
+        return {"messege": ITEM_NOT_FOUND}, 400
+
+    # TO ADD OR UPDATE AN ITEM
+    @classmethod
+    def put(cls, name: str):
+        data = Item.parser.parse_args()
+        # data = request.get_json()
+        item = ItemModel.find_item_by_name(name)
+
+        # if item is not available, add it
+        if item is None:
+            item = ItemModel(name, **data)
+        # if item exists, update it
+        else:
+            item.price = data["price"]
+            item.store_id = data["store_id"]
+
+        # whether item is changed or inserted, it has to be saved to db
+        item.save_to_database()
+        return item.json()
 
-    # if user id is given, then display full details
-    if user_id:
-      return {"items": items}, 200
 
-    # else display only item name
-    return {
-      "items": [item["name"] for item in items],
-      "message": "Login to view more data."
-    }, 200
\ No newline at end of file
+class ItemList(Resource):
+    @classmethod
+    @jwt_required(optional=True)
+    def get(cls):
+        user_id = get_jwt_identity()
+        items = [item.json() for item in ItemModel.find_all()]
+
+        # if user id is given, then display full details
+        if user_id:
+            return {"items": items}, 200
+
+        # else display only item name
+        return {
+            "items": [item["name"] for item in items],
+            "message": "Login to view more data.",
+        }, 200
diff --git a/resources/store.py b/resources/store.py
index e016bfa..4fbc37e 100644
--- a/resources/store.py
+++ b/resources/store.py
@@ -3,12 +3,14 @@
 
 class Store(Resource):
 
-  def get(self, name: str):
+  @classmethod
+  def get(cls, name: str):
     store = StoreModel.find_store_by_name(name)
     if store:
       return store.json()
 
-  def post(self, name: str):
+  @classmethod
+  def post(cls, name: str):
     if StoreModel.find_store_by_name(name):
       return {"message": "Store alrady exists."}, 400
 
@@ -21,9 +23,8 @@ def post(self, name: str):
         
     return store.json(), 201
 
-
-
-  def delete(self, name: str):
+  @classmethod
+  def delete(cls, name: str):
     store = StoreModel.find_store_by_name(name)
     if store:
       store.delete_from_database()
@@ -33,6 +34,8 @@ def delete(self, name: str):
 
 
 class StoreList(Resource):
-  def get(self):
+  
+  @classmethod
+  def get(cls):
     # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
     return {"stores": [store.json() for store in StoreModel.find_all()]}
\ No newline at end of file
diff --git a/resources/user.py b/resources/user.py
index b074b24..9e810ec 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -1,4 +1,6 @@
-from flask_restful import Resource, reqparse
+from flask import request
+from flask_restful import Resource
+from marshmallow import ValidationError
 from werkzeug.security import safe_str_cmp
 from flask_jwt_extended import (
   create_access_token, 
@@ -7,37 +9,46 @@
   get_jwt_identity,
   get_jwt
 )
+
 from models.user import UserModel
+from schemas.user import UserSchema
 from blacklist import BLACKLIST
 
 # extracted parser variable for global use, and made it private
-_user_parser = reqparse.RequestParser()
-_user_parser.add_argument(
-  "username",
-  type=str,
-  required=True,
-  help="This field cannot be empty"
-)
-_user_parser.add_argument(
-  "password",
-  type=str,
-  required=True,
-  help="This field cannot be empty"
-)
+# _user_parser = reqparse.RequestParser()
+# _user_parser.add_argument(
+#   "username",
+#   type=str,
+#   required=True,
+#   help="This field cannot be empty"
+# )
+# _user_parser.add_argument(
+#   "password",
+#   type=str,
+#   required=True,
+#   help="This field cannot be empty"
+# )
+
+user_schema = UserSchema()
 
 # New user registraction class
 class UserRegister(Resource):
 
   # calls to post a new user (new user registration)
-  def post(self):
-    data = _user_parser.parse_args()
+  @classmethod
+  def post(cls):
+    try:
+      user_data = user_schema.load(request.get_json())
+    except ValidationError as error:
+      return error.messages, 400
+    
     # First check if that user is present or not
-    if UserModel.find_by_username(data["username"]):
+    if UserModel.find_by_username(user_data["username"]):
       # if exists, then don't add
       return {"message": "An user with that username already exists."}, 400
     
     # user = UserModel(data["username"], data["password"])
-    user = UserModel(**data)  # since parser only takes in username and password, only those two will be added.
+    user = UserModel(**user_data)  # since parser only takes in username and password, only those two will be added.
     user.save_to_database()
 
     return {"messege": "User added successfully."}, 201
@@ -52,7 +63,7 @@ def get(cls, user_id: int):
     if not user:
       return {"message": "User not found."}, 404
   
-    return user.json(), 200
+    return user_schema.dump(user), 200
   
   @classmethod
   def delete(cls, user_id: int):
@@ -69,14 +80,17 @@ class UserLogin(Resource):
   @classmethod
   def post(cls):
     # get data from parser
-    data = _user_parser.parse_args()
+    try:
+      user_data = user_schema.load(request.get_json())
+    except ValidationError as error:
+      return error.messages, 400
 
     # find user in database
-    user = UserModel.find_by_username(data["username"])
+    user = UserModel.find_by_username(user_data["username"])
 
     # check password
     # this here is what authenticate() function used to do
-    if user and safe_str_cmp(user.password, data["password"]):
+    if user and safe_str_cmp(user.password, user_data["password"]):
 
       # create access and refresh tokens
       access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
@@ -93,15 +107,17 @@ def post(cls):
 
 class UserLogout(Resource):
   # Loggig out requirees jwt as if user is not logged in they cannot log out
+  @classmethod
   @jwt_required()
-  def post(self):
+  def post(cls):
     jti = get_jwt()["jti"]   # jti is JWT ID, unique identifier for a JWT
     BLACKLIST.add(jti)
     return {"message": "Successfully logged out."}, 200
 
 class TokenRefresh(Resource):
+  @classmethod
   @jwt_required(refresh=True)
-  def post(self):
+  def post(cls):
     current_user = get_jwt_identity()
     new_token = create_access_token(identity=current_user, fresh=False)   # fresh=Flase means that user have logged in days ago.
 
diff --git a/schemas/user.py b/schemas/user.py
new file mode 100644
index 0000000..820fe50
--- /dev/null
+++ b/schemas/user.py
@@ -0,0 +1,14 @@
+from marshmallow import Schema, fields
+
+class UserSchema(Schema):
+  # If the below Meta class is excluded, while fetching user information, we also fetch 
+  # the user password. So, password is included in the load_only tuple so that password field
+  # is only loaded and not displayed.
+  class Meta:
+    load_only = ("password", )  # makes 'password' field load_only
+    dump_only = ("id", )  # makes 'id' field dump_only.
+    
+  id = fields.Int()
+  username = fields.Str(required=True)
+  password = fields.Str(required=True)
+  
\ No newline at end of file

From a4eaa65cd931835b754ab6ed3fb912be76dc2f09 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Fri, 25 Feb 2022 21:32:18 +0530
Subject: [PATCH 25/42] added flask-marshmallow to user resource

---
 app.py             |   4 +-
 database.py        |   2 +-
 models/item.py     |  87 +++++++++++++------------
 models/store.py    |  75 ++++++++++-----------
 models/user.py     |  50 +++++++-------
 resources/store.py |  57 ++++++++--------
 resources/user.py  | 159 +++++++++++++++++++++++----------------------
 schemas/user.py    |  23 +++----
 8 files changed, 231 insertions(+), 226 deletions(-)

diff --git a/app.py b/app.py
index 07fea44..009bd7a 100644
--- a/app.py
+++ b/app.py
@@ -34,7 +34,7 @@ def create_tables():
 
 
 # JWT() creates a new endpoint: /auth
-# we send an username and password to /auth
+# we send username and password to /auth
 # JWT() gets the username and password, and sends it to authenticate function
 # the authenticate function maps the username and checks the password
 # if all goes well, the authenticate function returns user
@@ -113,5 +113,5 @@ def revoked_token_callback(self, callback):
 
 if __name__ == "__main__":
     db.init_app(app)
-    ma.init_app(app)  # tells masrshmallow that it should be communicating with this flask app
+    ma.init_app(app)  # tells marshmallow that it should be communicating with this flask app
     app.run(port=5000, debug=True)
diff --git a/database.py b/database.py
index fa42112..d43f174 100644
--- a/database.py
+++ b/database.py
@@ -1,3 +1,3 @@
 from flask_sqlalchemy import SQLAlchemy
 
-db = SQLAlchemy()
\ No newline at end of file
+db = SQLAlchemy()
diff --git a/models/item.py b/models/item.py
index 4155aad..603f2c8 100644
--- a/models/item.py
+++ b/models/item.py
@@ -1,50 +1,51 @@
-from typing import Dict, List, Union 
+from typing import Dict, List, Union
 
 from database import db
 
 ItemJSON = Dict[str, Union[int, str, float]]
 
+
 class ItemModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
 
-  __tablename__ = "items"
-
-  # Columns
-  id = db.Column(db.Integer, primary_key=True)
-  name = db.Column(db.String(80), unique=True)
-  price = db.Column(db.Float(precision=2))  # precision: numbers after decimal point
-
-  store_id = db.Column(db.Integer, db.ForeignKey("stores.id"))
-  store = db.relationship("StoreModel")
-
-  def __init__(self, name: str, price: float, store_id: int):
-    self.name = name
-    self.price = price
-    self.store_id = store_id
-
-  def json(self) -> ItemJSON:
-    return {
-      "id": self.id,
-      "store_id":self.store_id,
-      "name": self.name, 
-      "price": self.price
-      }
-
-  # searches the database for items using name
-  @classmethod
-  def find_item_by_name(cls, name: str) -> 'ItemModel':
-    # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
-    # this function would return a ItemModel object
-    return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
-
-  @classmethod
-  def find_all(cls) -> List["ItemModel"]:
-    return cls.query.all()
-
-  # method to insert or update an item into database
-  def save_to_database(self) -> None:
-    db.session.add(self)  # session here is a collection of objects that wil be written to database
-    db.session.commit()
-
-  def delete_from_database(self) -> None:
-    db.session.delete(self)
-    db.session.commit()
+    __tablename__ = "items"
+
+    # Columns
+    id = db.Column(db.Integer, primary_key=True)
+    name = db.Column(db.String(80), unique=True)
+    price = db.Column(db.Float(precision=2))  # precision: numbers after decimal point
+
+    store_id = db.Column(db.Integer, db.ForeignKey("stores.id"))
+    store = db.relationship("StoreModel")
+
+    def __init__(self, name: str, price: float, store_id: int):
+        self.name = name
+        self.price = price
+        self.store_id = store_id
+
+    def json(self) -> ItemJSON:
+        return {
+            "id": self.id,
+            "store_id":self.store_id,
+            "name": self.name,
+            "price": self.price
+        }
+
+    # searches the database for items using name
+    @classmethod
+    def find_item_by_name(cls, name: str) -> 'ItemModel':
+        # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
+        # this function would return a ItemModel object
+        return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
+
+    @classmethod
+    def find_all(cls) -> List["ItemModel"]:
+        return cls.query.all()
+
+    # method to insert or update an item into database
+    def save_to_database(self) -> None:
+        db.session.add(self)  # session here is a collection of objects that wil be written to database
+        db.session.commit()
+
+    def delete_from_database(self) -> None:
+        db.session.delete(self)
+        db.session.commit()
diff --git a/models/store.py b/models/store.py
index 4fa92af..5064b0a 100644
--- a/models/store.py
+++ b/models/store.py
@@ -5,42 +5,43 @@
 
 StoreJSON = Dict[str, Union[int, str, List[ItemJSON]]]
 
+
 class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
 
-  __tablename__ = "stores"
-
-  # Columns
-  id = db.Column(db.Integer, primary_key=True)
-  name = db.Column(db.String(80), unique=True)
-
-  items = db.relationship("ItemModel", lazy="dynamic")  # this will allow us to check which item is in store whose id is equal to it's id.
-                                      # lazy="dynamic" tells sqlalchemy to not create seperate objects for each item that is created
-  def __init__(self, name: str):
-    self.name = name
-
-  def json(self) -> StoreJSON:
-    return {
-      "id": self.id, 
-      "name": self.name, 
-      "items": [item.json() for item in self.items.all()]
-    }
-
-  # searches the database for items using name
-  @classmethod
-  def find_store_by_name(cls, name: str) -> "StoreModel":
-    # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
-    # this function would return a StoreModel object
-    return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
-
-  @classmethod
-  def find_all(cls) -> List["StoreModel"]:
-    return cls.query.all()
-
-  # method to insert or update an item into database
-  def save_to_database(self) -> None:
-    db.session.add(self)  # session here is a collection of objects that wil be written to database
-    db.session.commit()
-
-  def delete_from_database(self) -> None:
-    db.session.delete(self)
-    db.session.commit()
+    __tablename__ = "stores"
+
+    # Columns
+    id = db.Column(db.Integer, primary_key=True)
+    name = db.Column(db.String(80), unique=True)
+
+    items = db.relationship("ItemModel", lazy="dynamic")  # this will allow us to check which item is in store whose id is equal to it's id.
+    # lazy="dynamic" tells sqlalchemy to not create seperate objects for each item that is created
+    def __init__(self, name: str):
+        self.name = name
+
+    def json(self) -> StoreJSON:
+        return {
+            "id": self.id,
+            "name": self.name,
+            "items": [item.json() for item in self.items.all()]
+        }
+
+    # searches the database for items using name
+    @classmethod
+    def find_store_by_name(cls, name: str) -> "StoreModel":
+        # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
+        # this function would return a StoreModel object
+        return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
+
+    @classmethod
+    def find_all(cls) -> List["StoreModel"]:
+        return cls.query.all()
+
+    # method to insert or update an item into database
+    def save_to_database(self) -> None:
+        db.session.add(self)  # session here is a collection of objects that wil be written to database
+        db.session.commit()
+
+    def delete_from_database(self) -> None:
+        db.session.delete(self)
+        db.session.commit()
diff --git a/models/user.py b/models/user.py
index 5439438..100f098 100644
--- a/models/user.py
+++ b/models/user.py
@@ -1,38 +1,40 @@
+from enum import unique
 from typing import Dict, Union
 
 from database import db
 
 UserJSON = Dict[str, Union[int, str]]
 
+
 class UserModel(db.Model):
 
-  __tablename__ = "users"   # will be used to tell sqlalchemy the table name for users
+    __tablename__ = "users"   # will be used to tell sqlalchemy the table name for users
+
+    # table columns for users table
+    id = db.Column(db.Integer, primary_key=True)
+    username = db.Column(db.String(80), nullable=False, unique=True)
+    password = db.Column(db.String(80), nullable=False)
 
-  # table columns for users table
-  id = db.Column(db.Integer, primary_key=True)
-  username = db.Column(db.String(80))
-  password = db.Column(db.String(80))
+    # def __init__(self, username: str, password: str):
+    #     self.username = username
+    #     self.password = password
 
-  def __init__(self, username: str, password: str):
-    self.username = username
-    self.password = password
-    
-  # json() function is no longer required when marshmallow is used
-  # def json(self) -> UserJSON:
-  #   return {"id": self.id, "name": self.username}
+    # json() function is no longer required when marshmallow is used
+    # def json(self) -> UserJSON:
+    #   return {"id": self.id, "name": self.username}
 
-  @classmethod
-  def find_by_username(cls, username: str) -> "UserModel":
-    return cls.query.filter_by(username=username).first()
+    @classmethod
+    def find_by_username(cls, username: str) -> "UserModel":
+        return cls.query.filter_by(username=username).first()
 
-  @classmethod
-  def find_by_id(cls, _id: int) -> "UserModel":
-    return cls.query.filter_by(id=_id).first()
+    @classmethod
+    def find_by_id(cls, _id: int) -> "UserModel":
+        return cls.query.filter_by(id=_id).first()
 
-  def save_to_database(self) -> None:
-    db.session.add(self)
-    db.session.commit()
+    def save_to_database(self) -> None:
+        db.session.add(self)
+        db.session.commit()
 
-  def delete_from_database(self) -> None:
-    db.session.delete(self)
-    db.session.commit()
\ No newline at end of file
+    def delete_from_database(self) -> None:
+        db.session.delete(self)
+        db.session.commit()
\ No newline at end of file
diff --git a/resources/store.py b/resources/store.py
index 4fbc37e..24ce513 100644
--- a/resources/store.py
+++ b/resources/store.py
@@ -1,41 +1,42 @@
 from flask_restful import Resource
 from models.store import StoreModel
 
+
 class Store(Resource):
 
-  @classmethod
-  def get(cls, name: str):
-    store = StoreModel.find_store_by_name(name)
-    if store:
-      return store.json()
+    @classmethod
+    def get(cls, name: str):
+        store = StoreModel.find_store_by_name(name)
+        if store:
+            return store.json()
+
+    @classmethod
+    def post(cls, name: str):
+        if StoreModel.find_store_by_name(name):
+            return {"message": "Store alrady exists."}, 400
 
-  @classmethod
-  def post(cls, name: str):
-    if StoreModel.find_store_by_name(name):
-      return {"message": "Store alrady exists."}, 400
+        store = StoreModel(name)
 
-    store = StoreModel(name)
+        try:
+            store.save_to_database()
+        except:
+            return {"message": "An error occured while creating the store."}, 500
 
-    try:
-      store.save_to_database()
-    except:
-      return {"message": "An error occured while creating the store."}, 500
-        
-    return store.json(), 201
+        return store.json(), 201
 
-  @classmethod
-  def delete(cls, name: str):
-    store = StoreModel.find_store_by_name(name)
-    if store:
-      store.delete_from_database()
-      return {"message": "store deleted."}
+    @classmethod
+    def delete(cls, name: str):
+        store = StoreModel.find_store_by_name(name)
+        if store:
+            store.delete_from_database()
+            return {"message": "store deleted."}
 
-    return {"message": "store don't exist"}
+        return {"message": "store don't exist"}
 
 
 class StoreList(Resource):
-  
-  @classmethod
-  def get(cls):
-    # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
-    return {"stores": [store.json() for store in StoreModel.find_all()]}
\ No newline at end of file
+
+    @classmethod
+    def get(cls):
+        # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
+        return {"stores": [store.json() for store in StoreModel.find_all()]}
\ No newline at end of file
diff --git a/resources/user.py b/resources/user.py
index 9e810ec..95ce023 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -3,11 +3,11 @@
 from marshmallow import ValidationError
 from werkzeug.security import safe_str_cmp
 from flask_jwt_extended import (
-  create_access_token, 
-  create_refresh_token, 
-  jwt_required, 
-  get_jwt_identity,
-  get_jwt
+    create_access_token,
+    create_refresh_token,
+    jwt_required,
+    get_jwt_identity,
+    get_jwt
 )
 
 from models.user import UserModel
@@ -31,94 +31,97 @@
 
 user_schema = UserSchema()
 
-# New user registraction class
+
+# New user registration class
 class UserRegister(Resource):
 
-  # calls to post a new user (new user registration)
-  @classmethod
-  def post(cls):
-    try:
-      user_data = user_schema.load(request.get_json())
-    except ValidationError as error:
-      return error.messages, 400
-    
-    # First check if that user is present or not
-    if UserModel.find_by_username(user_data["username"]):
-      # if exists, then don't add
-      return {"message": "An user with that username already exists."}, 400
-    
-    # user = UserModel(data["username"], data["password"])
-    user = UserModel(**user_data)  # since parser only takes in username and password, only those two will be added.
-    user.save_to_database()
-
-    return {"messege": "User added successfully."}, 201
+    # calls to post a new user (new user registration)
+    @classmethod
+    def post(cls):
+        try:
+            user = user_schema.load(request.get_json())
+        except ValidationError as error:
+            return error.messages, 400
+
+        # First check if that user is present or not
+        if UserModel.find_by_username(user["username"]):
+            # if exists, then don't add
+            return {"message": "An user with that username already exists."}, 400
+
+        # user = UserModel(data["username"], data["password"])
+        # user = UserModel(**user_data)  # since parser only takes in username and password, only those two will be added.
+        # flask_marshmallow already creates a user model, so we need not do it manually
+        user.save_to_database()
+
+        return {"messege": "User added successfully."}, 201
 
 
 class User(Resource):
 
-  @classmethod
-  def get(cls, user_id: int):
+    @classmethod
+    def get(cls, user_id: int):
+
+        user = UserModel.find_by_id(user_id)
+        if not user:
+            return {"message": "User not found."}, 404
+
+        return user_schema.dump(user), 200
 
-    user = UserModel.find_by_id(user_id)
-    if not user:
-      return {"message": "User not found."}, 404
-  
-    return user_schema.dump(user), 200
-  
-  @classmethod
-  def delete(cls, user_id: int):
-    user = UserModel.find_by_id(user_id)
-    if not user:
-      return {"message": "User not found."}, 404
+    @classmethod
+    def delete(cls, user_id: int):
+        user = UserModel.find_by_id(user_id)
+        if not user:
+            return {"message": "User not found."}, 404
 
-    user.delete_from_database()
-    return {"message": "User deleted."}, 200
+        user.delete_from_database()
+        return {"message": "User deleted."}, 200
 
 
 class UserLogin(Resource):
 
-  @classmethod
-  def post(cls):
-    # get data from parser
-    try:
-      user_data = user_schema.load(request.get_json())
-    except ValidationError as error:
-      return error.messages, 400
-
-    # find user in database
-    user = UserModel.find_by_username(user_data["username"])
-
-    # check password
-    # this here is what authenticate() function used to do
-    if user and safe_str_cmp(user.password, user_data["password"]):
-
-      # create access and refresh tokens
-      access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
-      refresh_token = create_refresh_token(identity=user.id)
-      print("user logged in")
-      
-      return {
-        "access_token": access_token,
-        "refresh_token": refresh_token
-      }, 200
-    
-    return {"message": "Invalid credentials."}, 401 # Unauthorized
+    @classmethod
+    def post(cls):
+        # get data from parser
+        try:
+            user_data = user_schema.load(request.get_json())
+        except ValidationError as error:
+            return error.messages, 400
+
+        # find user in database
+        user = UserModel.find_by_username(user_data.username)
+
+        # check password
+        # this here is what authenticate() function used to do
+        if user and safe_str_cmp(user.password, user_data.password):
+
+            # create access and refresh tokens
+            access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
+            refresh_token = create_refresh_token(identity=user.id)
+            print("user logged in")
+
+            return {
+                       "access_token": access_token,
+                       "refresh_token": refresh_token
+                   }, 200
+
+        return {"message": "Invalid credentials."}, 401 # Unauthorized
 
 
 class UserLogout(Resource):
-  # Loggig out requirees jwt as if user is not logged in they cannot log out
-  @classmethod
-  @jwt_required()
-  def post(cls):
-    jti = get_jwt()["jti"]   # jti is JWT ID, unique identifier for a JWT
-    BLACKLIST.add(jti)
-    return {"message": "Successfully logged out."}, 200
+    # Loggig out requirees jwt as if user is not logged in they cannot log out
+    @classmethod
+    @jwt_required()
+    def post(cls):
+        jti = get_jwt()["jti"]   # jti is JWT ID, unique identifier for a JWT
+        BLACKLIST.add(jti)
+        return {"message": "Successfully logged out."}, 200
+
 
 class TokenRefresh(Resource):
-  @classmethod
-  @jwt_required(refresh=True)
-  def post(cls):
-    current_user = get_jwt_identity()
-    new_token = create_access_token(identity=current_user, fresh=False)   # fresh=Flase means that user have logged in days ago.
+    @classmethod
+    @jwt_required(refresh=True)
+    def post(cls):
+        current_user = get_jwt_identity()
+        new_token = create_access_token(identity=current_user, fresh=False)   # fresh=Flase means that user have logged in days ago.
 
-    return {"access_token": new_token}, 200
\ No newline at end of file
+        return {"access_token": new_token}, 200
\ No newline at end of file
diff --git a/schemas/user.py b/schemas/user.py
index 820fe50..224e387 100644
--- a/schemas/user.py
+++ b/schemas/user.py
@@ -1,14 +1,11 @@
-from marshmallow import Schema, fields
+from ma import ma
+from models.user import UserModel
 
-class UserSchema(Schema):
-  # If the below Meta class is excluded, while fetching user information, we also fetch 
-  # the user password. So, password is included in the load_only tuple so that password field
-  # is only loaded and not displayed.
-  class Meta:
-    load_only = ("password", )  # makes 'password' field load_only
-    dump_only = ("id", )  # makes 'id' field dump_only.
-    
-  id = fields.Int()
-  username = fields.Str(required=True)
-  password = fields.Str(required=True)
-  
\ No newline at end of file
+class UserSchema(ma.ModelSchema):
+    # If the below Meta class is excluded, while fetching user information, we also fetch
+    # the user password. So, password is included in the load_only tuple so that password field
+    # is only loaded and not displayed.
+    class Meta:
+        model = UserModel
+        load_only = ("password",)  # makes 'password' field load_only
+        dump_only = ("id",)  # makes 'id' field dump_only.

From 1005ec10b4dd12a05439b721f1ac03b21efcb4cf Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Fri, 25 Feb 2022 21:36:11 +0530
Subject: [PATCH 26/42] removed unnecessary directories

---
 templates/index.html | 28 ----------------------------
 1 file changed, 28 deletions(-)
 delete mode 100644 templates/index.html

diff --git a/templates/index.html b/templates/index.html
deleted file mode 100644
index fb11bf2..0000000
--- a/templates/index.html
+++ /dev/null
@@ -1,28 +0,0 @@
-<!-- saved from url=(0266)https://mp4-a.udemycdn.com/2016-11-10_08-55-57-3b4ea98e124ae6c99c5f29d926bb3aa8/original.html?ZLsCi1A1vDSnCOe9C_UvXsir4KZ7LLNA7sM4pp-Y82isEsRxQaOsf7o51aiZbMej98ZoA3fyDq28lZBrRnTIsHLWyBNaYroKY3GoF3y04PlnNXC8ZfECnqbRwerXtrdcingfXkuCl6pQ9rNEokg3tDlMY5CjA3IZ2poXx6-NvgAp -->
-<html>
-	
-	<head>
-		<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
-			<script type="text/javascript">
-				function httpGetAsync(theUrl, callback) {
-						var xmlHttp = new XMLHttpRequest();
-						xmlHttp.onreadystatechange = function() {
-								if (xmlHttp.readyState == 4 && xmlHttp.status == 200)
-										callback(xmlHttp.responseText);
-						}
-						xmlHttp.open("GET", theUrl, true); // true for asynchronous
-						xmlHttp.send(null);
-				}
-
-				httpGetAsync('http://127.0.0.1:5000/store', function(response) {
-					alert(response);
-				})
-			</script>
-	</head>
-
-	<body>
-		<div id="myElement">
-			Hello, world!
-		</div>
-	</body>
-</html>
\ No newline at end of file

From 8ac40063248d0cc22e49eff23c7a91c36837faf4 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sat, 26 Feb 2022 11:45:42 +0530
Subject: [PATCH 27/42] added marshmallow to item and store

---
 app.py             | 94 +++++++++++++++++++++++++++-------------------
 models/item.py     | 29 ++++----------
 models/store.py    | 20 ++--------
 resources/item.py  | 55 +++++++++++++--------------
 resources/store.py | 20 +++++++---
 resources/user.py  | 33 ++++------------
 schemas/item.py    | 17 +++++++++
 schemas/store.py   | 13 +++++++
 8 files changed, 146 insertions(+), 135 deletions(-)
 create mode 100644 schemas/item.py
 create mode 100644 schemas/store.py

diff --git a/app.py b/app.py
index 009bd7a..effbe0e 100644
--- a/app.py
+++ b/app.py
@@ -1,11 +1,18 @@
 from flask import Flask, jsonify
 from flask_restful import Api
 from flask_jwt_extended import JWTManager
+from marshmallow import ValidationError
 
 from ma import ma
-from resources.user import UserRegister, User, UserLogin, UserLogout, TokenRefresh
-# from resources.item import Item, ItemList
-# from resources.store import Store, StoreList
+from resources.user import (
+    UserRegister,
+    User,
+    UserLogin,
+    UserLogout,
+    TokenRefresh,
+)
+from resources.item import Item, ItemList
+from resources.store import Store, StoreList
 from blacklist import BLACKLIST
 from database import db
 
@@ -14,11 +21,12 @@
 app.config["SQLALCHEMY_DATABASE_URI"] = "sqlite:///database/data.db"
 
 app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = False  # turns of flask_sqlalchemy modification tracker
-app.config[
-    "PROPAGATE_EXCEPTIONS"] = True  # if flask_jwt raises an error, the flask app will check the error if this is set to true
+app.config["PROPAGATE_EXCEPTIONS"] = True  # if flask_jwt raises an error, the flask app will check the error if this is set to true
 app.config["JWT_BLACKLIST_ENABLED"] = True
-app.config["JWT_BLACKLIST_TOKEN_CHECKS"] = ["access",
-                                            "refresh"]  # both access and refresh tokens will be denied for the user ids
+app.config["JWT_BLACKLIST_TOKEN_CHECKS"] = [
+    "access",
+    "refresh",
+]  # both access and refresh tokens will be denied for the user ids
 
 app.secret_key = "komraishumtirkomchuri"
 # app.config["JWT_SECRET_KEY"] = "YOUR KEY HERE"
@@ -26,6 +34,11 @@
 api = Api(app)
 
 
+@app.errorhandler(ValidationError)
+def handle_marshmallow_validation(err):
+    return jsonify(err.messages), 400
+
+
 @app.before_first_request
 def create_tables():
     db.create_all()
@@ -61,55 +74,60 @@ def add_claims_to_jwt(identity):
 # JWT Configurations
 @jwt.expired_token_loader
 def expired_token_callback():
-    return jsonify({
-        "description": "The token has expired.",
-        "error": "token_expired"
-    }), 401
+    return (
+        jsonify({"description": "The token has expired.", "error": "token_expired"}),
+        401,
+    )
 
 
 @jwt.invalid_token_loader
 def invalid_token_callback(error):
-    return jsonify({
-        "description": "Signature verification failed.",
-        "error": "invalid_token"
-    }), 401
+    return (
+        jsonify({"description": "Signature verification failed.", "error": "invalid_token"}),
+        401,
+    )
 
 
 @jwt.unauthorized_loader
 def missing_token_callback(error):  # when no jwt is sent
-    return jsonify({
-        "description": "Request doesn't contain a access token.",
-        "error": "authorization_required"
-    }), 401
+    return (
+        jsonify(
+            {
+                "description": "Request doesn't contain a access token.",
+                "error": "authorization_required",
+            }
+        ),
+        401,
+    )
 
 
 @jwt.needs_fresh_token_loader
 def token_not_fresh_callback(self, callback):
     # print("Log:", callback)
-    return jsonify({
-        "description": "The token is not fresh.",
-        "error": "fresh_token_required"
-    }), 401
+    return (
+        jsonify({"description": "The token is not fresh.", "error": "fresh_token_required"}),
+        401,
+    )
 
 
 @jwt.revoked_token_loader
 def revoked_token_callback(self, callback):
     # print("Log:", callback)
-    return jsonify({
-        "description": "The token has been revoked.",
-        "error": "token_revoked"
-    }), 401
-
-
-# api.add_resource(Item, '/item/<string:name>')
-# api.add_resource(Store, '/store/<string:name>')
-# api.add_resource(ItemList, '/items')
-# api.add_resource(StoreList, '/stores')
-api.add_resource(UserRegister, '/register')
-api.add_resource(User, '/user/<int:user_id>')
-api.add_resource(UserLogin, '/login')
-api.add_resource(UserLogout, '/logout')
-api.add_resource(TokenRefresh, '/refresh')
+    return (
+        jsonify({"description": "The token has been revoked.", "error": "token_revoked"}),
+        401,
+    )
+
+
+api.add_resource(Item, "/item/<string:name>")
+api.add_resource(Store, "/store/<string:name>")
+api.add_resource(ItemList, "/items")
+api.add_resource(StoreList, "/stores")
+api.add_resource(UserRegister, "/register")
+api.add_resource(User, "/user/<int:user_id>")
+api.add_resource(UserLogin, "/login")
+api.add_resource(UserLogout, "/logout")
+api.add_resource(TokenRefresh, "/refresh")
 
 if __name__ == "__main__":
     db.init_app(app)
diff --git a/models/item.py b/models/item.py
index 603f2c8..6b87894 100644
--- a/models/item.py
+++ b/models/item.py
@@ -1,41 +1,26 @@
-from typing import Dict, List, Union
+from typing import List
 
 from database import db
 
-ItemJSON = Dict[str, Union[int, str, float]]
 
-
-class ItemModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
+class ItemModel(db.Model):  # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
 
     __tablename__ = "items"
 
     # Columns
     id = db.Column(db.Integer, primary_key=True)
-    name = db.Column(db.String(80), unique=True)
-    price = db.Column(db.Float(precision=2))  # precision: numbers after decimal point
+    name = db.Column(db.String(80), nullable=False, unique=True)
+    price = db.Column(db.Float(precision=2), nullable=False)  # precision: numbers after decimal point
 
-    store_id = db.Column(db.Integer, db.ForeignKey("stores.id"))
+    store_id = db.Column(db.Integer, db.ForeignKey("stores.id"), nullable=False)
     store = db.relationship("StoreModel")
 
-    def __init__(self, name: str, price: float, store_id: int):
-        self.name = name
-        self.price = price
-        self.store_id = store_id
-
-    def json(self) -> ItemJSON:
-        return {
-            "id": self.id,
-            "store_id":self.store_id,
-            "name": self.name,
-            "price": self.price
-        }
-
     # searches the database for items using name
     @classmethod
-    def find_item_by_name(cls, name: str) -> 'ItemModel':
+    def find_item_by_name(cls, name: str) -> "ItemModel":
         # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
         # this function would return a ItemModel object
-        return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
+        return cls.query.filter_by(name=name).first()  # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
 
     @classmethod
     def find_all(cls) -> List["ItemModel"]:
diff --git a/models/store.py b/models/store.py
index 5064b0a..deae614 100644
--- a/models/store.py
+++ b/models/store.py
@@ -1,37 +1,25 @@
-from typing import Dict, List, Union
+from typing import List
 
 from database import db
-from models.item import ItemJSON
 
-StoreJSON = Dict[str, Union[int, str, List[ItemJSON]]]
 
-
-class StoreModel(db.Model):    # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
+class StoreModel(db.Model):  # tells SQLAlchemy that it is something that will be saved to database and will be retrieved from database
 
     __tablename__ = "stores"
 
     # Columns
     id = db.Column(db.Integer, primary_key=True)
-    name = db.Column(db.String(80), unique=True)
+    name = db.Column(db.String(80), nullable=False, unique=True)
 
     items = db.relationship("ItemModel", lazy="dynamic")  # this will allow us to check which item is in store whose id is equal to it's id.
     # lazy="dynamic" tells sqlalchemy to not create seperate objects for each item that is created
-    def __init__(self, name: str):
-        self.name = name
-
-    def json(self) -> StoreJSON:
-        return {
-            "id": self.id,
-            "name": self.name,
-            "items": [item.json() for item in self.items.all()]
-        }
 
     # searches the database for items using name
     @classmethod
     def find_store_by_name(cls, name: str) -> "StoreModel":
         # return cls.query.filter_by(name=name) # SELECT name FROM __tablename__ WHERE name=name
         # this function would return a StoreModel object
-        return cls.query.filter_by(name=name).first() # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
+        return cls.query.filter_by(name=name).first()  # SELECT name FROM __tablename__ WHERE name=name LIMIT 1
 
     @classmethod
     def find_all(cls) -> List["StoreModel"]:
diff --git a/resources/item.py b/resources/item.py
index 682871c..9d972a4 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -1,39 +1,34 @@
 from typing import Dict
-from flask_restful import Resource, reqparse
-from flask_jwt_extended import jwt_required, get_jwt, get_jwt_identity
+from flask import request
+from flask_restful import Resource
+from flask_jwt_extended import (
+    jwt_required,
+    get_jwt,
+    get_jwt_identity,
+)
+from marshmallow import ValidationError
 
 from models.item import ItemModel
+from schemas.item import ItemSchema
 
 BLANK_ERROR = "'{}' cannot be blank"
 ITEM_NOT_FOUND = "item not found."
 NAME_ALREADY_EXISTS = "item '{}' already exists"
 ERROR_INSERTING = "An error occured while inserting the item."
 ITEM_DELETED = "Item deleted"
+item_schema = ItemSchema()
+item_list_schema = ItemSchema(many=True)
 
 
 class Item(Resource):
 
-    parser = reqparse.RequestParser()
-    parser.add_argument(
-        "price",
-        type=float,
-        required=True,
-        help=BLANK_ERROR.format("price"),
-    )
-    parser.add_argument(
-        "store_id",
-        type=int,
-        required=True,
-        help=BLANK_ERROR.format("store_id"),
-    )
-
     # TO GET ITEM WITH NAME
     @classmethod
     @jwt_required()
     def get(cls, name: str) -> Dict:
         item = ItemModel.find_item_by_name(name)
         if item:
-            return item.json(), 200
+            return item_schema.dump(), 200
 
         return {"message": ITEM_NOT_FOUND}, 404
 
@@ -45,16 +40,18 @@ def post(cls, name: str):
         if ItemModel.find_item_by_name(name):
             return {"messege": NAME_ALREADY_EXISTS.format(name)}, 400
 
-        data = Item.parser.parse_args()
-        # data = request.get_json()   # get_json(force=True) means, we don't need a content type header
-        item = ItemModel(name, **data)
+        item_json = request.get_json()
+        item_json["name"] = name  # this part is necessary to populate the payload with item name
+
+        item = item_schema.load(item_json)
 
+        # TODO: put these in above try except
         try:
             item.save_to_database()
         except:
             return {"messege": ERROR_INSERTING}, 500
 
-        return item.json(), 201  # 201 is for CREATED status
+        return item_schema.dump(item), 201  # 201 is for CREATED status
 
     # TO DELETE AN ITEM
     @classmethod
@@ -76,21 +73,23 @@ def delete(cls, name: str):
     # TO ADD OR UPDATE AN ITEM
     @classmethod
     def put(cls, name: str):
-        data = Item.parser.parse_args()
-        # data = request.get_json()
+        item_json = request.get_json()
+
         item = ItemModel.find_item_by_name(name)
 
         # if item is not available, add it
         if item is None:
-            item = ItemModel(name, **data)
+            item_json["name"] = name
+            item = item_schema.load(item_json)
+
         # if item exists, update it
         else:
-            item.price = data["price"]
-            item.store_id = data["store_id"]
+            item.price = item_json["price"]
+            item.store_id = item_json["store_id"]
 
         # whether item is changed or inserted, it has to be saved to db
         item.save_to_database()
-        return item.json()
+        return item_schema.dump(item), 200
 
 
 class ItemList(Resource):
@@ -98,7 +97,7 @@ class ItemList(Resource):
     @jwt_required(optional=True)
     def get(cls):
         user_id = get_jwt_identity()
-        items = [item.json() for item in ItemModel.find_all()]
+        items = [item_list_schema.dump(ItemModel.find_all())]
 
         # if user id is given, then display full details
         if user_id:
diff --git a/resources/store.py b/resources/store.py
index 24ce513..15b7a15 100644
--- a/resources/store.py
+++ b/resources/store.py
@@ -1,28 +1,37 @@
+from flask import request
 from flask_restful import Resource
+
+from schemas.store import StoreSchema
 from models.store import StoreModel
 
+store_schema = StoreSchema()
+store_list_schema = StoreSchema(many=True)
 
-class Store(Resource):
 
+class Store(Resource):
     @classmethod
     def get(cls, name: str):
         store = StoreModel.find_store_by_name(name)
         if store:
-            return store.json()
+            return store_schema.dump(store), 200
+
+        return {"message": "Store not found."}, 404
 
     @classmethod
     def post(cls, name: str):
         if StoreModel.find_store_by_name(name):
             return {"message": "Store alrady exists."}, 400
 
-        store = StoreModel(name)
+        store = StoreModel(name=name)  # since __init__() method was removed from StoreModel, the name needs to be passed manually as such
+        # as StoreModel is a model subclass, model class acceps keyword arguements and maps them to columns
+        # so here, passing name as a keyword argument will map to name key in store model
 
         try:
             store.save_to_database()
         except:
             return {"message": "An error occured while creating the store."}, 500
 
-        return store.json(), 201
+        return store_schema.dump(store), 201
 
     @classmethod
     def delete(cls, name: str):
@@ -35,8 +44,7 @@ def delete(cls, name: str):
 
 
 class StoreList(Resource):
-
     @classmethod
     def get(cls):
         # return {"item": list(map(lambda x: x.json(), ItemModel.query.all()))}
-        return {"stores": [store.json() for store in StoreModel.find_all()]}
\ No newline at end of file
+        return {"stores": [store_list_schema.dump(StoreModel.find_all())]}, 200
diff --git a/resources/user.py b/resources/user.py
index 95ce023..4134435 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -2,13 +2,7 @@
 from flask_restful import Resource
 from marshmallow import ValidationError
 from werkzeug.security import safe_str_cmp
-from flask_jwt_extended import (
-    create_access_token,
-    create_refresh_token,
-    jwt_required,
-    get_jwt_identity,
-    get_jwt
-)
+from flask_jwt_extended import create_access_token, create_refresh_token, jwt_required, get_jwt_identity, get_jwt
 
 from models.user import UserModel
 from schemas.user import UserSchema
@@ -38,10 +32,7 @@ class UserRegister(Resource):
     # calls to post a new user (new user registration)
     @classmethod
     def post(cls):
-        try:
-            user = user_schema.load(request.get_json())
-        except ValidationError as error:
-            return error.messages, 400
+        user = user_schema.load(request.get_json())
 
         # First check if that user is present or not
         if UserModel.find_by_username(user["username"]):
@@ -57,7 +48,6 @@ def post(cls):
 
 
 class User(Resource):
-
     @classmethod
     def get(cls, user_id: int):
 
@@ -78,14 +68,10 @@ def delete(cls, user_id: int):
 
 
 class UserLogin(Resource):
-
     @classmethod
     def post(cls):
         # get data from parser
-        try:
-            user_data = user_schema.load(request.get_json())
-        except ValidationError as error:
-            return error.messages, 400
+        user_data = user_schema.load(request.get_json())
 
         # find user in database
         user = UserModel.find_by_username(user_data.username)
@@ -99,12 +85,9 @@ def post(cls):
             refresh_token = create_refresh_token(identity=user.id)
             print("user logged in")
 
-            return {
-                       "access_token": access_token,
-                       "refresh_token": refresh_token
-                   }, 200
+            return {"access_token": access_token, "refresh_token": refresh_token}, 200
 
-        return {"message": "Invalid credentials."}, 401 # Unauthorized
+        return {"message": "Invalid credentials."}, 401  # Unauthorized
 
 
 class UserLogout(Resource):
@@ -112,7 +95,7 @@ class UserLogout(Resource):
     @classmethod
     @jwt_required()
     def post(cls):
-        jti = get_jwt()["jti"]   # jti is JWT ID, unique identifier for a JWT
+        jti = get_jwt()["jti"]  # jti is JWT ID, unique identifier for a JWT
         BLACKLIST.add(jti)
         return {"message": "Successfully logged out."}, 200
 
@@ -122,6 +105,6 @@ class TokenRefresh(Resource):
     @jwt_required(refresh=True)
     def post(cls):
         current_user = get_jwt_identity()
-        new_token = create_access_token(identity=current_user, fresh=False)   # fresh=Flase means that user have logged in days ago.
+        new_token = create_access_token(identity=current_user, fresh=False)  # fresh=Flase means that user have logged in days ago.
 
-        return {"access_token": new_token}, 200
\ No newline at end of file
+        return {"access_token": new_token}, 200
diff --git a/schemas/item.py b/schemas/item.py
new file mode 100644
index 0000000..0f80388
--- /dev/null
+++ b/schemas/item.py
@@ -0,0 +1,17 @@
+from xml.etree.ElementInclude import include
+from ma import ma
+from models.item import ItemModel
+from models.store import StoreModel
+
+
+class ItemSchema(ma.ModelSchema):
+    # If the below Meta class is excluded, while fetching user information, we also fetch
+    # the user password. So, password is included in the load_only tuple so that password field
+    # is only loaded and not displayed.
+    class Meta:
+        model = ItemModel
+        load_only = (
+            "store",
+        )  # makes 'store' field load_only. store_id will be displayed
+        dump_only = ("id",)  # makes 'id' field dump_only.
+        include_fk = True
diff --git a/schemas/store.py b/schemas/store.py
new file mode 100644
index 0000000..575aaca
--- /dev/null
+++ b/schemas/store.py
@@ -0,0 +1,13 @@
+from ma import ma
+from models.store import StoreModel
+from models.item import ItemModel
+from schemas.item import ItemSchema
+
+
+class StoreSchema(ma.ModelSchema):
+    items = ma.Nested(ItemSchema, many=True)
+
+    class Meta:
+        model = StoreModel
+        dump_only = ("id",)  # makes 'id' field dump_only.
+        include_fk = True

From c430faa6591dc0892795462ae4adc34d64c7e04a Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sat, 26 Feb 2022 14:03:40 +0530
Subject: [PATCH 28/42] changed ModelSchema to SQLAlchemyAutoSchema

---
 __pycache__/database.cpython-39.pyc        | Bin 191 -> 228 bytes
 database/data.db                           | Bin 16384 -> 16384 bytes
 models/__pycache__/item.cpython-39.pyc     | Bin 1922 -> 1503 bytes
 models/__pycache__/store.cpython-39.pyc    | Bin 2003 -> 1410 bytes
 models/__pycache__/user.cpython-39.pyc     | Bin 1588 -> 1492 bytes
 resources/__pycache__/item.cpython-39.pyc  | Bin 2900 -> 2805 bytes
 resources/__pycache__/store.cpython-39.pyc | Bin 1626 -> 1715 bytes
 resources/__pycache__/user.cpython-39.pyc  | Bin 3278 -> 3080 bytes
 resources/item.py                          |   3 +--
 resources/user.py                          |  10 ++++++++--
 schemas/item.py                            |   7 +++----
 schemas/store.py                           |   3 ++-
 schemas/user.py                            |   5 ++++-
 13 files changed, 18 insertions(+), 10 deletions(-)

diff --git a/__pycache__/database.cpython-39.pyc b/__pycache__/database.cpython-39.pyc
index ff40e8eff1b473f057917ac8e8f60f851f525992..eeefcfc8a0d100e2769cd027a0cc5eb100411bf7 100644
GIT binary patch
delta 104
zcmdnb_=J%+k(ZZ?0SFE}lSs0g$m`E|YhtXd7b{St2t@qy($7sz$xPHQE=|fvOi4{G
z(05HKO-?My%+FIu%u7)S&QB{TPb^B+4=BpdN=+^))(@yG$;i(Oat#hiEXdTKI9~w(
DW$hv?

delta 67
zcmaFDxSx?Xk(ZZ?0SL;TzfZK8$m`D-H8ECJl?5nL1R{Q^rdY)U6y;~7CYKb)1XPw}
S<mUys28SdTWX4Q9q5uGMvlN{G

diff --git a/database/data.db b/database/data.db
index b252df8f75f917bd63695760bdbe60f5cb4fd1c1..a7101859cb15485c9e8767480edc9c0296e25e6d 100644
GIT binary patch
delta 209
zcmZo@U~Fh$oFL68J5k1&QFdd(5`Hdb{%Z{UpZTBgU)wAwaDv~Ahna;zR5U3+Dap{t
z*o2pfg+W}jI5)E-1H|QKWML2nNrL4V7#NuNpEK}3=l`-<P~jT?!~oXG&-Hl~xR{w4
zq;o5aOY)0SdHLTmu<_?H@VD{b<Uhv0fqxc%9?+sFejPD3Rt9-?&g8`0<ou$P)FKCi
pzXgl0bJ+?pvNDLWGbZKdXFF*Bdg#7Rq?&2+Ec;+#pmiXO3;>IVG-dz*

delta 148
zcmZo@U~Fh$oFL68K2gS*QG8><5`GRQ{wEClpZT9`7F4*#uf@Q?%f!MUE?S(MS(0IB
zWNgCC$ig5jnv|ae;_&i+VPNEc&cOei|2bIw!~oXG&-Hob7#J9MfEWyTfg~&cEC&9!
r{5ScJ@o(UtwOLT0gMacY`(R-~Mpgz<c7~+<{A>r!Uk}~aiBtms>G>ub

diff --git a/models/__pycache__/item.cpython-39.pyc b/models/__pycache__/item.cpython-39.pyc
index 6050267c09de74188b7724e220e4a8a0218aa262..d73f2ccc83ad0b94468d05c68a56f84566f83105 100644
GIT binary patch
literal 1503
zcmb_b&2Aev5GJ`lUdfVU%d!(EXd3jUi}eCUQ6PwmAdO*EIqhY!+M(=K_eUYA7BYN`
zuR>oS2kGd0A0W@cYfpZKoHE0Wf8gX;0_4sNzuEa_IFoj}ZH8<4>0ta%z}SDJ++RK_
zzv9-1cmM-lu#(4|lPn5Rda=jZZwx%}FB$mKoBAKTIDlZp2H`dOumQLJ@3}Vk6)?`o
zbbn#cCcwWaNEUNou>c->(w_#nLlEFCMZD4Is|frxhXAeN(u-SPQEk|OXi4@KVmEJm
zrN8Px+u>V??xMa0n`<6FlG}0zQ|NpY(1oo_{{xSEXxjyLz~IqG4%@KftbOP?eHZ$d
ze!TZp+k<`7_MwMqKDMpbMwV}DkcAC$6!kkyc5|lkGF6M@Pr0~0!Q_qx!ba7+DAI8u
zZ8)#;_j7qI@CMPXnUYzq^ST;v6`}3CrA@7*KFlF*k4SU@@E?AamgujfnX4)z|C>d!
zhx;XN-NWO8P1%%RaNtY65^IKR#W4ox;N8Hp0TNIP+nVHskt!K4Y%s|cK9#UuR%i#i
zVv7Fs`R%Zjkf%dEAD^Wl<!ty0=2>cx@r$&A7o&P&{!Wz~o~U{%Goyzm3v*Uif4myK
zOK178r1Iz?mFIA_usf5yf`l{-n@~o(MA~KJpFg`T=;1dwq~Aqo#__mWB$KO4oEn-E
zUvWzKiXRVz+CrQ4(xO1`9h6;8%|UT(<ig<n0cs5kao&5t0<Vw1342@br|4<0+ADFv
z);J(e_STF>WyI7TUJralaJ!+Url&?m05;6(vdqmD&WV=A<RP_fo&F^gQzwv`bewAW
zoG8*<GT!0mPwz-R1pXgf)e|Bd;@e4V5z0|Lql0?lUj6zFAepGTye0Y*V(y4Oza#oR
zFpg1_xJF14+fEYfmw6#k?j*_kd0J45pw>+itU@6hwJB%#vM%OjWj9_|MxIJ#MUGV+
z8I@P3u7_=KRMe@l0ghxQZTkqPDL<{=$c2sElqKlUQL=FDtk3e94V>L>W<{!XDY28m
zdfF(}r^Kn()MGk+pyNk6?keIWYAZ#r6ynxY#Yp(xHs9y_;t6kig7*T!`~H^iP{)JN
lhGsD%%Jg>|-8^@bW8kLWLBAKtMn5+N`-Miq6}=-m-WR6&Z~*`S

literal 1922
zcmb_cOK%%D5GJ_~JuKO>EI(uiX<D=>1Qb?*K2AkZAWe$2i5pbOWiN~M4rQ;pyHdzi
z3K_n|R|EY4K3GTpmHq@?d-Ao%qKD3K{ZL~c%LQjS!y)<2$KgcHW}RVs``7yZ?>=LH
zlCs#)#=gU@pQ8W<JY^XVcqRgoIf28;CQ>)^0*^Dvr7s;>L0KI-T{aY57Sw)V;DCF=
zz?I&p{>}-Oz#Fihe~CM?o@3nalejSM^F$ZMdz~layvL1z{g~z#+YOdK&?;HLfdvA1
z;7E7mVfR6Rb1H&Lsh?NDopZE#Xsb#0oP6rwL*<mud9ZY4@$uh)>YUF-(8TdF)Npo1
zw&bd8L;cKwC1{+u!J6zq^NhnXtf00oH)IQAZ=DHPh4zX2jt84)+XB{Q)^80u*4l-2
zt8c(2uG_xSwxEmJ4y+>++otxcklBkd$kccV4)rUfU}>U~EK;-ZS2??Ui6NuSpXSM%
zsk{`WTAL^tCmJa`s_9~^q~1*+s1Impx4S@k^C*+X!_8u8s@5w^Aa)m+r7`XJ7`xs;
zam<fd$c_a{e(azWzy|Ds@2Muv_FUs?nGV%5Dr$v93&jOfYxw*7ML&~}M14KoKa4=i
zN&g8<<ETKCkD?qN4aURbw@AtUOEn(JxX}HVv*K`^|MFz;Dw-tyjCjy};$e3(Gu1Fm
z@}vku+FVl(Fz(}b)V?8Y_u7RRQnHw;Jm%zh)oAQtzm1QL*fASnlp~CB<N!Z&@gl_D
zg=<6tHk^g%HgW9*S8e>+5KGZP)wm-)&bM%+?K=`Kx8FZU%eUyrr6<b$h~1dDzHT&j
zuv=_&0^%WL9QY|e7jxttarL-ej<3bT>sK>V8zyNXRk%Mh-Y`+R=n3P*sV+|;sun=5
z4wD>0A{6~Y%7+ipL0cH^(atT>JAQX)yh#%Zm!O_=f~Zze#Ta++XPhWa5%5DCzfV`y
zo`Cb8;$#UxEMDaG^xmC=Z#de<l?5_%jyE^wyc|1oMy2Q)h^y$jO+`yhj{^|_7(X6o
zSyHI(J-AvrdMm?X970q?`;nHP5kC7yc!M8p-%|9x<NpCveMD$|OnZrU`Z3|V4`iow
z2#0E%-2nakKR_Se0=>_<_kf-gB|sROdKltUo2E2wgyEZMlwQp=!w^|WWvP~2`j5xy
zG|NrpSzgEksT3u>@dt%U@&lW7#(SEMqrw&hQ-6vjC^^V~k~907Ohd`k)&PB&OpIsi
zka2XOFn?*8agw}H>$GW=g7|Up^PZx+HcN3DX`M-|5uiRmi=tdml)~y05|m2|iDr|Z
z9;c#WQNgYspr{JhY4Hwkiw>`gwzpgpyzL3zahF}|xz}qLznD!Z9!m4_7|H=ty-o|u
nh5CYKzasG^iLc4Uv-Q?)bRQN|{iY=QTPjAjjCDjqY>0mWADOxn

diff --git a/models/__pycache__/store.cpython-39.pyc b/models/__pycache__/store.cpython-39.pyc
index 2b6321c99d4d826603df8ce1c9705391fe2cbd5a..878dd17598371bef84a141386179d786132bc60e 100644
GIT binary patch
delta 671
zcmYjPO=}cE5S{Mnnf;vI&3>81s0m2OfaIY506|a$jfb2Z56jF}Z!)20CUo~60)k-n
zAi^G`ues<&@-IAl&8=_ZLHrk1Z$whiZ~DEisyAKqRrf>deHukg4`cLwl6?(4@0TMt
zgCTi>OYI|o2Sj)UNeFR!Drn&+KJlJ=-~(HFz_@?H&iy2S;LwZ1KUm|%#Il#U()gv2
z&7AZ<BHW?twZo^+R}W?ZPzYCk(%|f*2{ougV?~n|Z}SKpn->&X&|b20l5|k(f;aIX
zx**Vj?pp0ZZ_PKLzhueAKQ@3NvOe_iuSVt_iKAyRwe@l#M4Ab1zLEPq6j+%S+=i0t
zg)Gfa{}GFcjLewrlE_5#?XW-3OPDHMNj}ZarY^m2fW<Y;>)<`iitP<9$w5qI7pe7A
zA@Hbgey}aFX@0Xe@fh`(N#7mU6jv&*O3VYW;jAi(Twmh66c=+d4|d2M^D)To-Kdch
zR~P~pTyuFFiQF=caF6Vmhv7aMm^6GmTQ?7%R$@_<w)Udb{D@0SbM!dWGB1y$8@z2x
zE>eyD>Nr2OL9ThBY-=V`r3$W(E3m%OQjVMnb+GB+u7hp!rFQGJbgv`CrG^M~%KRP~
x(+;DgA5b!69k$Lmh(jCdvr}j6`q(<8I?YnWug4I)s_;INVb9&VYuTo4|1V%fof-fD

literal 2003
zcmbVNOK%%D5GJ|Y)mye@*@@GpF_1Qh(8B7Wy%|P;Bq&m}u2ChIMT^B+r0iAqA(N{X
z65Nx0&7pT6WS|%SiT)5?d&)Vt0tGt5wPN{kDuLn742R^*H#6L@(Wnv_Ywy?g|MCd=
z8->MD0^u2u{s|^Q1dT~TeVQ<zC64b<)UlW+uJ2mjiM^!cmne}`mZc*rFf&=&AOi=8
zZ4kfu4G~<pr$o5Y9o9}9zb?EU>6G5V4W#23{vzt<hJP37+_-PjC`&ukFtHDF`Bg5H
zZ+k!N_R)56a1fpW=|5qT#HWJzOi<sEeCPssf(hp>^Gk(1D+_*3LFa<50=la3L`jrE
zs>!;joKaB~wNvglWK+~ZYKSICOL7@jiC8*gVp*)5@)PQ>fUYIT2C;T6v1+xeqHX0h
zu@3v%m(o3PAEY(WhIltjwU=i~exC^$8&4yzUqg_!k&2Q~O@d$K<lP>G13GV<Mn_|5
zDhNQaqa-G2m_&V8<#9NjT)-C;vd>`4d?1hX97toPkLfW9AZa~vL3h;>XgbVrE#rY&
z2H}FJRrvg~+fAg1!mb|gABIB8QTL@7_rn~Lu^FafvzHC>-$Et3dny~sey+QFll(AC
ze|*_{9gd=If<fu74QgvNG36kL(kKst7M!lFhjhAn75~<J9b;88AFH%a!E`>5cY$mi
zo4_2CArcjk#8c$h%sD47$O#qBnFH|h-D?Nnl~^M^Al-)P05<(x|D7Jw8966^up{0p
zVn;lO8j6k?w)Lgq5g=|sDJI-&s@pMCXFp3uI~yRs2O`tQ3*q1aTibEg4`aOp%-kBv
zn?=GxZCpHAcewf(c3YKt2%K@kIKH3?k-BlOx(B*7AYF!uFitsb{X1Q{adC$gr>%p{
zt!i*UX;H-U5yc@uAn02<W9NWQhh0{MV_YaWH8GVz6z5U}`xE01BBgTx#_7kpxC5(Y
z0hrbxN=0DP4jTfjM~tb+IG;XT@btFjwS-~DuU9VkI-}^LT7fkPauYu46XdCSjQkB}
z%JvFC6Bi2?*tMdYuU{_}y!iu44?xHPqZvCU=ad#aR2n{Zb5FR!(ljM4wT1?P1PWn1
zsE#Dc)gxHC>DaOkf0aR=1tQGD{ZPxNV5G4;39ZxVM++$3w7iAU|L{~jfs2d>9V#KQ
zc=w%NwhMz`pt9tHr(b~em8XvuJiW`hvyPpQRS*QG8U*kxjAP{ML2xt<<I9ys5C9Ib
zEW`p$?|BxFlhl-6rMWzi%65tIdbx_ygQ9`zO2+m{(udLLvUhZ@6n2QISl94hVY|lE
z`f;drBH@)1>QjsvkyD@H)WPX<oUSU!a@gz&e}UL<`aUv@JIl1qnyl$G%Z#>MM%%o}
zt<`R)VZ3}YLJzTaiz_g%raVt|5nZi#Ah+z}0{>m2zCtS}N^|u!a;|;k?WuP;Wy;$H
RmOEIj_Bm*?I<2z@>_7ch${+v$

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 2c7d39a2afca9b91c378d827ea492ea881057fcc..c7f78dbc0cda6f72986d89916d78f74f3eee425a 100644
GIT binary patch
delta 838
zcmZ8eOK;Oa5cWRoII*2NX(?@^Qh_QU2+ENIkP8wBB+4V=;)~_5laR7@!rBH!9C~Q3
zMT&evDiRzkBu@MYE}Y=Bf*;U709SSm;kD9!JM-<%%(pY|-Or8}d0x#>3%;-PKFz%K
z!F}a0gCTCjC_qTtnB$lPB&Go^eZtMy3M^y*feKKtq0+~zhTcK-hQTN^rv@{@+Ntf4
zz+qO`XjhJOl{S)Ao(!MlFnfLxy_mf{$#+bkuWd%(AZ9YmtbGzxf&Rl*_Hj@H2VAAa
zKESNXYE!z00#9*u#W{*|nOAZPtj-n=5c64MN(29w*JO*zYZM*Sx+I;k7{-y9gpXlz
zbXTdm-p0~Sa?Yb32Z2kSqN)$Y=P8IJilMlNJ9XWvLn2M}0Wp!qE4*r#lpz|$N7QZl
z{b9nw-XxqytrcJJ7IF%QTs`lW8HKM7v818#8=A_JwR!N6ohUN0slr~8%aud4-KN4U
zzLM5iNmJnc{{#IrdJ17S3R#pzy(ooK#RiSGj;o|PQde2g1uO;}G7xK;X=(UNLGg~R
zqSM6(dI2?yZ*+54dSR&2anQdH!!nPwu8nveC$e%g$zT9N94ixdGcimCLia-2<0ws^
zjRcd<L$1sivPUB(Nty|<s2`AFl8I$qeqF<chCf0|OZ8*d5SF^pV@P$kY)pxdmeEoT
zqbAY2PRkeDZC6rA^0=Iww6e)qYau!<RUqwoTYk2ptuM|g2<!)Hwzs->wxxM{q<T}P
en@c$}S5?l&z7mgE&Y^=;U}`IHk&j)xM1BCuBgNqW

literal 1588
zcmb_c&5j#I5bo~z@%VQguYnLyw1)_34#Y2jBBT%ype!q#T>8=)PqmX-=EvzCCvxOl
z_L>{V9M(ra2rtoBPI(1RRE^`^#pHx&tIJi@H9cQ_RW(V!-(k4E{^R!SXP>b@$+)=!
zG`_`czefQKc+Ltgc_F0WWQ*J@eCczhxem0@p$_Kab4FXXeqi8%f5E`l{(1DqlWhp5
zEDqn}T`U&P|1L{w7d$Pqs*Jf4FiYv==DK?S@95P`a$r&bmmc02;0{56_g2W3_Ak-C
zjKJUU4VUc$yQ90h3&A@9A+#=h+0%Wr8ARx5L+8SO!{q>dN9gOKuLu3cH-rHkz2h*1
zTlmzi57r2d(Hg-3vl+YgQ>)G63Un@mC93vG%w>0BvLZ1n^_yP3KSS_a;UYRMlR~>_
zky!hxGLU*VvL#*Meu&!+QLOozDYh0UG4Uze@>A17f9yHm>U?e@G)x=CmYE*@{q=ZK
zXvmU@UCy2-p!H(%2$pG5Bf}?22`AHPUcX9=o}8KLT&K02oUQ8TRr%|q>62uUO$tiG
zP6+7z#mYrWWo1??MQAKG2xC0tuSZuI-`@wsq5<PVqwA$9Q_5q%NT=MIyhf<3**QDs
zYYzM^zZ4tHEEcCRZ*JInE_kujW+mJ6EU&duvy}_xnXxstjF;wimo=r^<ZSw=x#2u3
z0YlZE<J;)94GQu4&Nbe{FuGG^V2&{SKY?}vpC)>cfn)qLpO82}*V(@|gD>%Tk8AvI
zTp17%4H}M-`$hT{g?G@Xk-$rAj1A{I-P<sl$SE^4(Xnr+TCQcawOD-TB>*l=tD?y2
zEjL{}JOnwk$xE&3N<mU5v&8BX4Ej*?9=}QAVPN_{Ks8h_7h?NqEIOrVz94bH<aigL
z=B6sHfZqED(7V^Hek?dXrnaUrRLXUf!j@m=r1zA1u}t#aiR>$dEaZA;Hf+l9VU;h7
z(zSjpYyC_c^J#;5TAQqVc0G*Fv$Zh;I_su6PI{qn#=wlp<7H)SK10n=Cz!h=u5)ZO
zYG^}WKALq)?}&u&4LSbAFcN&^(H{6s%xT<lVZB-q0%~_dZQ`PR4IAKw2r^%xkP(sd
g)AW~988n})=8lg6aM3qAW*$&+ZHQthdSWd827&2jhyVZp

diff --git a/resources/__pycache__/item.cpython-39.pyc b/resources/__pycache__/item.cpython-39.pyc
index 6fd759d9ef2c669b3efde90a6c1f5919c5ff7dc3..624e8a71099d1e029765ed86ebf942253e6088f2 100644
GIT binary patch
literal 2805
zcmZ`*&2Jk;6rb5IukCfdfd(qHP@pv*P7y*XQdJR%DG{k##X-PIu-fd5lWq6Iof)@{
zaZl;B5|udg&_i<UKfxL9oc7A8XE-5&cyBgtQYdT9+c$6CeE9c%@6AT7R)fIv)33|h
z4?RMD!_LXag3ia#<U<gQFq)E#29%<1q(){2rq<2W%Iv__x|KRvEvRK~;AZupu5EVO
z$eKY@>rU!rt)K;ZEtp|$Fw5$}9BTygtQjou);<Xqd5d|hb)N=HmkFC;v-b#_<@UZA
zya4?<HV^%I-G7lS^hta137n3!X=$w`v4VF^@S7tpQFS-DEJh;cZL{>Q-&P?GC4#fE
zw!>8jmU8Y$2@}S1m8d<KR$o^<yHYToLZ^Y9e!R=GXuNdx`@3iTILh-v`P<yzPNV$B
zcs2nKA5DW|l(WwGls0JJC>1<ndp^IDNF~Q_ujW1%q7Z%&$0In1e|tAcxu4{c3zg(M
zzS@Nztk)TPxUmn1;EJ;?IEj@-`Cg3w_T*zj=VNFx1;I%`83_z-a%-P(n>&m?GMK^4
zd)7YPr$G%zn8ob-l-taCL|KiwM`P}EmbTYf<H%kId*$0?9@>HiYXR~zrG-aq8>N*;
z8802d)kx&A0SB2rCMeiGg(lB|P~?D4=pnspObl^a83*RXIHZgYj6SeRSqWt(>TRp{
z<Y(|NYZ;d^+TqEM6vAu^7mf3SBxfPw6mIW@diSR8Ngb%tVxw$W&a7{BuY|p;Tj6I{
zzwE663CuW^0=P~}3*8?R@gj8oyta~YmP9LZw7nZK&W9^qHi{#a6uBSe%<mTibvqJ#
z<(eq2^H|B1YkO+9$Tz$Ft!S96h$EWG6<oD5+$&9>)iNwC@wminP>aqOV|N{gVF<%%
z4`ABvW2(>d3}~2m4m1tgbx@|DiPMZ~$N)e9%0Qr$bzmP7fRj!j%omAr4r&PLU32VB
z%meq3Q1TVYPf>V7+EG=9nbyE?$Ty@<&ZB>0VnPUP4ZG8;5a&Dm$q#_IK3(z$Xit8D
zleC*U0AddGa<R91r5mnpY<5@Iz6rZuulKk5r86i*7Ab*IFI}BovdG0ecCECCSUD%7
zTRc=n$RZVON0OJb-ObIbo8fw|-`(6=?_CxP;QiPVOYqVM2<kez*Kws6(1>BH#7m%+
z*07N33}_Ok5UW8K441k_!!)Qz9q5g9Qg_hrKUm{YHP&mOD6)@e8jLOz`7)+Xg%==A
z4*+FEc4CSPfUSwxG8;(?<h7Lzo{mPb)+^mah7rq>T+G6%<K<P<{h>&1B`MHZ`qNsJ
zJV2OV0Vi=9MB5P<`x7uPRW%?Sh$1`2%+usv>uz+nx@%$)XPyA8bmBBhGWlGzoNB=f
zFh^n_iRl1Zo`Ea{)XZ^H^R)8%f3&`anaE6J-;|Yz4I?8WI+~9Z_z3*0_?RyNs>U*z
zn4yDQ)mm-JQShs49s)NZ{q0_rr#2uK^U{^75FCoMn1Nl}4NWiMgMJK@=9qX5ZSSCX
z7scx+kWS(a6#wFlIUK2VuuJqH1`-AUpdJtiwWEXur(U~Rx}mN#VOTc8Fe}(7<)C|E
zcykn`Sc9O~1lXm_I8+BFur!yZR6<}$6sJ(UiQ;V(@1Zz8kJgaPq6q?f5`_y4w&;>;
zz_At<QD2xfsP>6r_?hSFg^hpu<W<0+R@{fe%B*`tUjsI?0b{4s1!)7WCM-y9F~o`&
zr7;ll>4V9E3+n{A1d2`&ipikN1M83+(jBbkRJ_HY1Wn6Qwb{g2gAEzp9uWFzYS@^}
zQb+Qctq>*Lst-*k@(!7hZ@s&4VKA~x9vC;RJ`pd&sKyO09;0*qxeRYyOyN((MK-*2
z1KfXyM#es}8viU-;LgRgh@(_q0%httKDANoK$5D$zm@RYeg>5Du}F2=hWHS-#Z-nn
zs0OccPM0K{99FkZMKgUrx%z&J(zI>rB39N$aKR&e^)km%*8xXjgwQG$nhu>aE#RO>
zjlV6^_^bL7m>#?b1)>AaVg<!{6z`)zvQ-p2UR`T?iw|J*J7^MXi%XGB0&TtaOQoas
zhVbd3NeZ_T5coz_y<1v`k0z-Gqf}sM%7w~?A5;8};yL3L&#R(^zywXm4W7yl;-j-O
z@G5|gOm*$_$;N8$i%=JSUA@GsU>0XkoI`;ZhWH2t=7T=$^RlIMFIK5|2}vulf_hN$
TJ-Xz8G%QG%>gPa4&wc(60+o2`

literal 2900
zcma)8&2JmW6`z^?;EEz8N>*LVaNBL#)MkrP?x9GEI<8fVHPpzoK`LmxK(JkLhSJLW
zLC*|ri=j^P)kO{T=mQ1h;%onk=3m%r(Sy$IsYrsnH!E6l>_e8A$2V`@%+CDY@4eZm
zUat~({`u#NJO8N>@^9>%e{AU7f~GVGPB=|SN&`w!X9-KKz)J1FHhn8`Qa5nZN>E9?
zz%w>GnM<od6?7+<=WbBrm7vbOV1dsCi+2dG^7&_k&kO6w3L4O_@jCSDroY4&dZf8{
z0&gZwTG$(LUpHCdb%n}DvM&lxibumpD$%rx+Wr$ALVpxX!HdeS&>>ig#;Fp<Tx2@d
z2e8oGrWWbloQq_<a`p4WtA0PqvRwN+!rw`v?BRGZ1_vKagM5_n*7%Y!7~d$7BH{<W
zcp59M#=l(8d?95n{k-2F!K?izdvPNCI8#FEINSC09`s<n*0_f6_2IQb3*N_5oqsCO
zxdlyq0YZ>~auP6MP3>b6IKtU?ITaPogg2ez^q6w%IiPOrwy2)k?br5sQ9B}{E*7}+
zl5v+;p4mtAhz5%SMmXc%b1Le5?j<!5D90K&hO>+vBT?Fyz+T!G_#)bZW!`|uEEP7M
zsBnfd?u%^*f~^mRWmw8E*n1)w7M{|%6c7Ojo}ERhC|oJ@NM?NoN1Z(uDA;a8Q@;SA
z$&^muq=#(6<mCyQvSZ-ifc1cR+KK@I)SGta<X_-jR8pZ-v@7C&P@sz~Jv1&2;*5s~
zf4FlHns?j#D$k0A&F%Kxuyb!a{L{TpIvcQetDh*jh?8vee?{aa==}fwS}J%Pt*Oz@
zUc`kMuC@87AL%&H{3zpoFCXY9krZq9Wxg-^TCLqb(0h5-ZTGgLVZ0_!$*R_H)z<K!
zuz-?3fu$AhkXTh}(;6Fl2xSX~fS}F*X6?PAW;<_ygz4x)Ga&7OG6P9o;Z(D!g@6Gx
z4588XzB6@?$syBZLI*S^6ZQrD8$GnfwTU&Y91}|ZLb6K~{vkoB_DWD)@__Wnbpk$f
z0J&{ob~+`(Vpp8}9T1NH2jb*Q*g~^vu$C7<FD`V}@3zDBt!{gL<3ZT|bhEeJE8IaY
z(@4uX^l(ka%A#ui!$|I`qM@S4BGh@vBOUETN)(IjZued{-0bw)-R;fJ9k~K?U)k~^
z{GCP#edQ0akAW)1Drkj0%$06}rj|hvyGoZ?l{FZnHR^&sHU*%CUT=Z>nt>ZIQ<EbA
zZ^AfTCF(L{4YJO_q3M(vZdwydeh5HW2qt&59aG?^qaE;c4RDoC;l(P9cp7ICH#A;d
zN8N|4c^oIeSmn>^R{R1$l|KR}`C|}GS7NZw!Mjpck8mLK^bD+;A@fFitG(UckUzkg
z=aF*zNff8*omjc$f;V7}YJeb?%RJyCveKiTHJ&%TEWO@B3+ZU6*abzCeL%&~4XV}*
z9Zp6>wlom)JOQ(n64i+nI-s#tAY16pND2SmF;K8+btGO-asfnh&hSURhlZb_!2B_+
zJ9CmhM;mfQVhQ;!GpylA-vxVlR3Jsw^5`<8ApW1GAh>jz7YZ*l<suA=Y8a+DA0-0x
zS{ObWMF|#?FqC-wqTYo|M<{(CFCuBSSJWcTk=dgZE*(hcB#(44|HrNM&c~r4w)`nh
zwPF~Zhv+Dk3Md*}I>xNDlvo<&Wfa#?{2E0I#TnU+hKx7BAV%ss2oC~iQ)YhNSFU?b
z_ZW<<fP_;op}xGxsF~e|iEli3wp-8?;(c}<37bQ8c@D*w+s}x(QXK9;sNBL-ur0V1
zx1of2`4CHFl=OkouOG}VY`3AQTOdq^QC#vF!JIlK8?Y$k9F^C&HDR-S;|_XE7>?p?
z26tLnmb}gzFF@3A=RIf&X|PKs<g?l#TqIL+OkS`@cCUo6Nz0PL3f8**&eW*hNZ>I2
zJRRN?u+o2_k+F~IfQQ6V-MW$F{U}j4L7BN04%T@km%#h`ZjF=G+19SWv@*oMf32Ox
z`6IBUXuk<!d}%A+g*u{h|8Xpy_$genJ{HARlgU4z7gn35CGpFmybe8c9Y#q4R;;8&
zWdxjso4NEqqn2S6vM+*GmQf2zrv+D)U8C$9+hSjr-!n5TI#8_E@I^>L`5P1;pg=~K
zJU(0f>_ESR(Z51dSm!*TtVbo<I?d(6g^vmNfHIj-)CZ6y58(q(>A@(GNTM?RmdgSB
z`V&vJ$hau8sH~iL^k5#+S0t*1fhmi|Z*e--N$I0_AH}aw;0<Lq@UAo~yc=a9xQU!L
T^s3PYU12q5LoS)0)#!c;B@&0(

diff --git a/resources/__pycache__/store.cpython-39.pyc b/resources/__pycache__/store.cpython-39.pyc
index f830863bbb075acc04f336d96d44a68e0863220c..d63844ac65feb400631eec3afe69441a45b869ee 100644
GIT binary patch
literal 1715
zcmZvcOONA35P<t(J5J)vhG7J|uz(Q=2#16pfY1V3ae-*rjD+yT^0+$_gCE)MHcO&#
znmHk@#DOD+$#MP!2Tt%8eC0HEPMoM}&t!sjTk3LEyI=KHRVRZ%k3jqVk9#LSdxZRr
z#(s0acmQ1s5P}GrlY&N+qRw(w@Q7QT=T6~9uGO8~D>_k!66v0i$d|5gh4+j`-7kpf
z2>+Z2U-B~^^}z0m9@sr=_eFn3M!^-FL`JmfDEXw8+JNdmmb$7{DnakhOr_*3UC1H<
zvuDk(Dk1Y@Fr6YPS1InW-*#Sn2BVThRFH^CE*(LCqk;*3?wrxc-HkZHwIkkc#1kDm
z0{4eIb{p3odkF`YNg-3VcNzyB`{&U02Otc&pc}fSKd}u{_YJ$?8@8o_&e;qg3Z7Bn
zpgwY^SAW9%rc+3*lT*1K+Ec=^GU2?cOEJ!VrNG8fE>1g~XQhZW;)qXHF<ztzT2os*
zjU(z}dC41|=2~@ejcfm35_JgHzh6%ZDY9gu>yt$yq+CuOiaJe9R+V8=if~rV&C^85
z$s<*LCsU&*k5*<;m5(3Jj+13JQP*M76T9trxoY^SGy&|beGr88s6!9fx;w*Lj^W>P
zs37ZFRL7v)pi-|0hzo$>2*!{NAbJJ>*TIHeuq~nF8&ck-@P&+{!iAaMoO$G1G9w=m
z!!I0*xMQ*UQ`LvP*GKjeVUnvvtU~!?ri~tFzW`B%mtBAOX&FkTDiu~~S}Q5Sr;99?
zVX7n`DNjSQkYVd+_7AMO`U_T#TpJ99J~u<1{2*gf#Ue4uNus41z_2<%aR&ubZ^g@?
zHO{iq<_I)B1c9^y)^ivQs7DXky3Oq|PI?a8F2mk~g*Vu2hP`=%s6_}l1{gC6`Q==L
zIIvEHP%_d;F<!rPZCB;{rsXo?dtM#26XUt6id)ZK<d4_Rd>1{k?~0ATPkjiSg+Fd5
zOh<m>$2Mc*xaq}lQHeU2pa*gMq)u|oWw82bo@iZ2$T`t)ZInV->Qxl?P~7sg8bVba
z5EyTbA@M1r!w&R2jM_gb4F0bn$Oq8%T@bf#1HwBe@G3ZhBf6$d;V&U+Qi%Pop^nvP
zs~xux6r+Jvz9n0FN+C6wO+!9yJPTSYWCL5a+~XYfjN6KBQ^i)dZ>u}W^AS~;9eci7
zH<82yy0&i*Uk@x`ydRd?6!P*lT=hDN`zYQ(Vfnp?+FS5<3|-?}iPRL1Oh-ZE&LIfj
zD?FwdSUrZiH}g7I$SxYRSJz|foWk`@00EWx%@F$2R>Iq;VSw!JdoJz5*Z3c|$?yr1
R)mS<KR0VdA_W1Cf{{T7len9{L

delta 890
zcmZuvPiqrF6rY)$-K^;*rv6E3+JXVAEJEnbO9+BeFD8mPltv|NGLsP9Wb4dUP*QqG
zuO7nSy*c*a$uHpN*l!>RiXOfA-qh4f2i}kOX5Qc5yf1|;C`N@sp1|2{mV0Y_UfiVh
z`Mr(Z$3!@SpAf+%ojDy2wktfaJ!`un*CwI=4I@LE`Ol?J4pm=*o^Pj#lFdZOxIbTA
zpZ|PHL-T-E_bcF=l2baR3wp$+OqHkXlr2b`2#}DrLPt5^lU*B(CZek`O}F>HJBh|J
z<F9oxIdd|nA8X~Jmunr)h*~j!=!>f!+-U^D@|06EWZU$a`N+2D%zS2*yL?22J76B!
zhhjSfN;?afX276yu9fA+QtN0a&3Cq80_T2{+g=oA%t|_XC%b9V6;T@XA}v)8u9c6l
zasdIl@`FUDsOb^__7X6knNQA3S~S0$(8CFpXR5rid0D&%w8>Of%pUJF3h29va2?@)
zDXU=>#Q{(>T0Ud6<bo6!RowjGd&l_p5Z}uHf(j;_6Z;Db@`%jnh{E{1m3fv--KXHS
zJPZ^JZ-eL?07Eh*uYx1^z*DjybM}_E&zlOVB_w1StL-RUr)94(sMuMSug4>u_LK2J
zBLw?52>DR8tMUXMYD1aU>T%MKV%-4c!k3+|gl|_Oieo5s1wxnk|D{*R)E)EH-8#lb
z)lCGPSgj#g9xr2W9bRvPXq*$-Q+U$~y{s^ZBmJhUq)rEiu|h67!5EiX*DP1(>w$4L
cX4%j-*cZQ(`E>|6jAa9Pwc8oMK9p|#1+I{_E&u=k

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 0dddd94e4fe09536052a2243e59bb73a4f4e2f21..d9c38d2fb01af3d7224075221d116788b51fa2a6 100644
GIT binary patch
delta 1172
zcmZ`&&rcIU6yBNHZMQ!uP-qb;)gn;QN;DYJn;u9A_M%+Wq$$i6me3!*T|yvjNaUag
zNlYeQj4|zzc=E3C>dAQCgYn=$;8kPdd)tJHLYwzx-h1<A-hAKN&m+&$v2rXH*6{c8
z%g9RYUF<h2a`bexJ7~^L1XpV_m$yYn>#!Dc^|sMu8-WgkNy#L)nG_X%PiwMvu%j_e
z>e9eifMWSzQN87JhW&zRn)=4`%v52KOGofjFHx~;vb3^O+Hx$Ym8+I#szouH;GS6B
zbUdBHhZ>~SQ}M8Wikk5o<#7?^QA7O_i<vVRh4gV4AvcaNp;q<xtWRZ)tF!&+d%E1J
zHVy?0(~fflDS}=-m3m^$a_7|(W24+h+4BTBgx%OOHk6gtrsZ0)023I?3!taK1%wC5
zZmLv)dbK3WZh57Q1=RSzR|L8{Z>zh3T=6Vz7$e9Kj3ao$uDLKxZl0jmp}+E9n8m~m
zG{;0R8D|NTGsvpPdQyF2)9Pm+wP#@JNXd0{PE)eQn;agw!6x4@QCoALybyX}Quu(k
zgd6caall%-8<qM#V_H)*QR~;dtF;VD6Lk;yx`&JR5BZR1+S01Iw!7mQ6|kK3JcG;X
zNAOyJ$b&w0(H!540f_?x1T=auNZ`|&q}31sy~HycWyjgBgM<LN+?Eieh0y@yD{uJ1
zdLfz{pZ~7BSEzoLphu(6APvu5Z5b&{;7SuXSNed6vnVrpobSd-?xp&gT`M%|j$4G$
z<7f1wn8CynnnPTZ6flD_jH!jtHjdxNP=-yYuc1`NpS$bFPdVzuQiI{#!U@9wBru#h
z>2sJ}MRSM~lXIpsnDeiH72eNWqFSE;e_T0)C_r0rbcfZg$XN0OR%&W9k}J@3{l!`D
zz4Mr;qIIvt_nHjm)rZI=^VIjq^MbD@eSwfAAbNn>1S<URMD->*719$){HGG(KNF7K
An*aa+

delta 1373
zcmb_bOKTHR6uys{$xL3RwXbN6vC(Q!(^joibRj5+qERWLR-sJ2V@Yk3dS+^|BrVd7
z3l;IYbdiDxx)Zm8KR|FTvk<rb0mVhdbEd^mA3F!`H|Kdd_nhzC@A;5Txv5l~;n(}F
zXJY7eYLzb;sFCRe9)A&Gp*>(t9*Cw~VJp1BFSBaNV1aS>IA;yP*+N%cOqq(`6qlLB
zt}=zzMKQYmA7q0pu$r+tS0an~a9v4dR5-<tqUR>7usVOvAMu8)%ckA8!Z=f=vM?k@
zAw|3V<uPY0wC8*es_u-ZuZUs&L=?HB--<$-3J&cV&-dL)&)1(s_wZQ8ckg)PL2X>Q
zfji;)UeO5UjcGr0=#t19njSz6LW3+X8T9Htc`e&duWm<RLhyE;=6RVGNtx#Qkvx;j
zp&fcR!ZuRV2nGFBzU6KDjd5UbGwPwC=4NJJO6Z}8T?AVRTKSY3%1JLcsyof8y=~;B
z0$?}7Lh2G0mRH`i7kH`!d(c*tkRX3izcRP<?j`ZJ+pM+tllrq+DCa3)2SFb}0U?x?
zY5@C4-A~X;kEG}^JJE3jk8dN`*oTZQIPBCHt<fb5O~2UDMCJdogE#<B1G_G#9Au2l
zvSopK9QA}UlzIB0Xc$2<Qmu!)VFoD`TjreAjk>AqXF@r|85LIv<WDl<PpS-?uu#Y#
zg!ZiK`|~wWIv?xi2lPnnphca9Hhnv`eJKqzIp`n|1f2xLFz6zPy5CKbNiax2EeS<M
zL5u`*7O=xbYi;UT3fMvrjs6fx!vw9qM=d8}U0`g2`6My<i+e@~axckkw1^*u6sv~0
zkS1cBtxZ;{rP-PvlwteE8(WhcKt~ymPcNWJ!T?UOL%(+%eb1gpvVOO7hu4`!V}%q#
zC|#wBV(kS)guhi=)#seTsXTc%G7N|{@Xt*dLGLskpV~$x85~B|i+XT=h;pMYMMVj4
z$Uvb;ecGcid1DU1s|Mq=wqs7!o5wZ3<yHSy;~o7XUML-<D_Z?-b>|p5=J2eQ!UeZE
s9Mj+8{d`R45)Vod6=<`8HUg-bK;;7^{&A!JnAq*eOjo8elgl_i0nw%dhyVZp

diff --git a/resources/item.py b/resources/item.py
index 9d972a4..82306b3 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -6,7 +6,6 @@
     get_jwt,
     get_jwt_identity,
 )
-from marshmallow import ValidationError
 
 from models.item import ItemModel
 from schemas.item import ItemSchema
@@ -28,7 +27,7 @@ class Item(Resource):
     def get(cls, name: str) -> Dict:
         item = ItemModel.find_item_by_name(name)
         if item:
-            return item_schema.dump(), 200
+            return item_schema.dump(item), 200
 
         return {"message": ITEM_NOT_FOUND}, 404
 
diff --git a/resources/user.py b/resources/user.py
index 4134435..75ff8fe 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -2,7 +2,13 @@
 from flask_restful import Resource
 from marshmallow import ValidationError
 from werkzeug.security import safe_str_cmp
-from flask_jwt_extended import create_access_token, create_refresh_token, jwt_required, get_jwt_identity, get_jwt
+from flask_jwt_extended import (
+    create_access_token,
+    create_refresh_token,
+    jwt_required,
+    get_jwt_identity,
+    get_jwt,
+)
 
 from models.user import UserModel
 from schemas.user import UserSchema
@@ -35,7 +41,7 @@ def post(cls):
         user = user_schema.load(request.get_json())
 
         # First check if that user is present or not
-        if UserModel.find_by_username(user["username"]):
+        if UserModel.find_by_username(user.username):
             # if exists, then don't add
             return {"message": "An user with that username already exists."}, 400
 
diff --git a/schemas/item.py b/schemas/item.py
index 0f80388..8df7cc0 100644
--- a/schemas/item.py
+++ b/schemas/item.py
@@ -4,14 +4,13 @@
 from models.store import StoreModel
 
 
-class ItemSchema(ma.ModelSchema):
+class ItemSchema(ma.SQLAlchemyAutoSchema):
     # If the below Meta class is excluded, while fetching user information, we also fetch
     # the user password. So, password is included in the load_only tuple so that password field
     # is only loaded and not displayed.
     class Meta:
         model = ItemModel
-        load_only = (
-            "store",
-        )  # makes 'store' field load_only. store_id will be displayed
+        load_instance = True
+        load_only = ("store",)  # makes 'store' field load_only. store_id will be displayed
         dump_only = ("id",)  # makes 'id' field dump_only.
         include_fk = True
diff --git a/schemas/store.py b/schemas/store.py
index 575aaca..a6a7444 100644
--- a/schemas/store.py
+++ b/schemas/store.py
@@ -4,10 +4,11 @@
 from schemas.item import ItemSchema
 
 
-class StoreSchema(ma.ModelSchema):
+class StoreSchema(ma.SQLAlchemyAutoSchema):
     items = ma.Nested(ItemSchema, many=True)
 
     class Meta:
         model = StoreModel
+        load_instance = True
         dump_only = ("id",)  # makes 'id' field dump_only.
         include_fk = True
diff --git a/schemas/user.py b/schemas/user.py
index 224e387..0ff2e2f 100644
--- a/schemas/user.py
+++ b/schemas/user.py
@@ -1,11 +1,14 @@
 from ma import ma
 from models.user import UserModel
 
-class UserSchema(ma.ModelSchema):
+
+# use SQLAlchemyAutoSchema. ModelSchema is deprecated
+class UserSchema(ma.SQLAlchemyAutoSchema):
     # If the below Meta class is excluded, while fetching user information, we also fetch
     # the user password. So, password is included in the load_only tuple so that password field
     # is only loaded and not displayed.
     class Meta:
         model = UserModel
+        load_instance = True
         load_only = ("password",)  # makes 'password' field load_only
         dump_only = ("id",)  # makes 'id' field dump_only.

From e9c4b971ed3edbd5b43f2bda68c1bc6193c3bf8f Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sat, 26 Feb 2022 14:15:11 +0530
Subject: [PATCH 29/42] modified gitignore

---
 .gitignore | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.gitignore b/.gitignore
index 120273b..643b9c8 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,4 +1,5 @@
 test/test.py
 test/test.db
 __pycache__
-.vscode
\ No newline at end of file
+.vscode
+.idea
\ No newline at end of file

From d6bc3b0652667ad1b3f27bbe7716ab229ed9f06b Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Mon, 28 Feb 2022 11:51:20 +0530
Subject: [PATCH 30/42] Added user confirmation

---
 README.md                                 |   7 +++++-
 app.py                                    |   2 ++
 database/data.db                          | Bin 16384 -> 28672 bytes
 models/__pycache__/item.cpython-39.pyc    | Bin 1503 -> 1503 bytes
 models/__pycache__/user.cpython-39.pyc    | Bin 1492 -> 1579 bytes
 models/user.py                            |   6 +++--
 resources/__pycache__/user.cpython-39.pyc | Bin 3080 -> 3546 bytes
 resources/user.py                         |  29 +++++++++++++++++-----
 schemas/user.py                           |   5 +++-
 9 files changed, 39 insertions(+), 10 deletions(-)

diff --git a/README.md b/README.md
index 3661f3e..7eca575 100644
--- a/README.md
+++ b/README.md
@@ -1,4 +1,5 @@
 # REST API application made with flask.
+
 Contains <> branches
 
 Final and stable application is in the master branch
@@ -19,4 +20,8 @@ Run the following command to start the application:
 
 ```
 python app.py
-```
\ No newline at end of file
+```
+
+## IMPORTANT
+
+Make sure to delete the `data.db` file from `database` directory before fresh run.
diff --git a/app.py b/app.py
index effbe0e..dde98a9 100644
--- a/app.py
+++ b/app.py
@@ -5,6 +5,7 @@
 
 from ma import ma
 from resources.user import (
+    UserConfirm,
     UserRegister,
     User,
     UserLogin,
@@ -124,6 +125,7 @@ def revoked_token_callback(self, callback):
 api.add_resource(ItemList, "/items")
 api.add_resource(StoreList, "/stores")
 api.add_resource(UserRegister, "/register")
+api.add_resource(UserConfirm, "/activate/<int:user_id>")
 api.add_resource(User, "/user/<int:user_id>")
 api.add_resource(UserLogin, "/login")
 api.add_resource(UserLogout, "/logout")
diff --git a/database/data.db b/database/data.db
index a7101859cb15485c9e8767480edc9c0296e25e6d..b242f12f2fd696cc828fbe233923cb387e1a0434 100644
GIT binary patch
delta 623
zcmZo@U~G86I6<0~je&uIeWHTBBpZXCe=RTn4+b_~D+YcJ{<D06e7AY6_|!Hw9^#Q|
z%w%O37Z+!2HY`a@%1O;ENzE+=6Ks={_-ySI{QN@{{6c+vbQHKa3yLz6Qx)8N{2hT}
zNaDpM`9-PmnJEgMej%>zu0e3g$%*_T0wA5Cex8A$t_m7?iMgqhuksnYYqGJ4+ln(X
zWag!$RumWJ0IiHqEG@|g^W(t|h&KdN?2YWq?BbG=jE$LK7lJJ-hL9|imHF*BQLOVq
zw@#BwQ=5fN++GrwWe}s{4IwmZqZ1=IK$?;#H}VJC!wm-qKw@!md45rfLYQNavxj4l
zhJ}G9ih{)ClFYKilGGFhCx3q*S4Tfk2!tU!skAt?2owrHXK6Cw3j>hC;&?+a#SDx~
z4j^XW1!5-tM-2R*_#bT+RJg{k#mB_TATG*LoSRvaVQ6G*!o$eQAS}w6l%E9Rae>vp
rXW;+I{~oM<VgRo=C$l&sSUnRPvoJ^{$W#Uai2MW<HjpMHE?!vx?>(x?

delta 491
zcmZp8z}V2hI6<0KmVtqRWuk(;uq=a~e=RSN$IR!!z+cYK!RN7AP~aM`RHH33ySTVG
zV^d^FVp2|OW=U#pF_>VP9Kvg>tfRoiSx}UjoT}jF<L?*(;ue?W7p2B$rYLy&g}A!A
z22DQCD>3;8uby-+6T7&iBx9o~*d(yBVhG7RIhW5)0i-z~$kW#`C{n@OHBvz%Gewh2
zvyqJv?10AX$wK^rlXLhbRIn=qyPp3V1OI3KC;Zodu0O$V#>33QAS#-apOj>1WNgCA
z#KIshTAZ6%k^$m!GqNxUgCxOnK)*BbKWE^7&i`ezpu%l_U2Z032HD(7unUd2n3)-*
zp&VZRw+w9jc?|q*{5ScJ@o(Ut#h(YXE{eZijE$8+o}Du}F*iBCC?&PX!QgMf;_F<t
zLX4~oqU?-G`T5xn+P@yUuM??e5@BU!kYr~Bs!c6QM2ND0MGI2%k~4E0)S+qxnOPZx
h*%^VN4ysTgAtqJ^adw8}jKs_$m~LU9A3zux001PpeiHxy

diff --git a/models/__pycache__/item.cpython-39.pyc b/models/__pycache__/item.cpython-39.pyc
index d73f2ccc83ad0b94468d05c68a56f84566f83105..a1c4f639674f11a6cafe9821303d4d18e89425f4 100644
GIT binary patch
delta 20
acmcc5eV>~<k(ZZ?0SL7GWHxeNVFds)2n3D*

delta 20
acmcc5eV>~<k(ZZ?0SI~zNN(i5!U_O5S_NPL

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index c7f78dbc0cda6f72986d89916d78f74f3eee425a..4a9919aaf1d13ba33deeef7373a1280162da0573 100644
GIT binary patch
delta 758
zcmZ8fzi-n(6!!Vf_Qk*ACQczJ2nrP<A`J@+NPq+js8YjF7_bD9lXn3}b{x)5QKk-!
z#DEwguN4v_V&xBj|AEO1Gyes5E)-Nt_xawt_kHj4JO8l0*ly@JrXrrJgU+a@t=$fK
zxxUd3kOB(em?T=DC3>J&F^P?Y1{5hwV>PBTlhr0_TahcU9x0%KzEVJEbZQ^rzyV`l
z>C#_P{WB^JV3TkW=j(TO(8u-n-RESgF*3CTi+)f8n>oxCJ!{7*m|(5Q5en)e=ZTyx
zat^pvZUgGz9V6I)#)<@uKT#8W5jCMMI<|_Z=(a;d*Dm6gcyYB@qdjC7KhZU6OE(H{
z7LE$2Q*gD9oZ^#uujfjF${UifDWQ1^zSx!KB$~l+v>ZloxiImzpxwj|kWswBSGLa7
zdRchDhIu-KFb_vz#<q*EIDFg|I$gpIDSSa{>cC=_Gv1MzixSQV`6mU#2~U$#vFpVP
zvV;8MJ-H>?e<Q8KbCuYB&ZF5YF2As(^DxWarW{J+VVcG)oRzh3oJR*?&Y-l$u{cgx
z{yK#cXF2CBNy5=A=jWx3OA@vu{4-ST<R~~5Ab*-n&WWnz5PN77`N%U>)WCANq$(P8
z-O^@B7{&d08b{+L$AVE3Hd`cI-cYIM%egeIiGb@eL;ud~WKKKspf4bx&oah$_n!<(
lZ7&sbsXA2tdjGks?uy<`Qdq?7J`%)CTD6glJk?fx{2S#*s8;|0

delta 650
zcmZutJ#W-N5cTY?eLmag_%4@_3tu8ak(@vpKBP#1gi@d&k%DxlIQf`OICQq7wGR|g
zP~;jKq|>$`J>myY@e`<^K(3(V7tpeEd<wDBJkLD8eX}!ff{%WfwpyNLj{LSX_#md?
z8Mr@P?`>rw5n!Q(d}L=%;(#T&Y)Bzp+1O(}iy~>>u~48rvCx*zWABJ3K03Qr-1th4
z)00hjIsJ5Z+n0eca*r7{(VK`PNLtdDq2YYP1=yN#a~R^>F<^x4iAbWKRR`xy)yB}+
zcJ(v3<}za)gKFw`a1T7~vsIS{cx|b+-ed^N`h;zOuivwqmjco<6`7Cf610Cq$7Hp)
zH_Wj=IP4GcoW9O4nrjdEZLsw#zH;FoZB(XDWWOr<m{#c^E#->-%+rli#wQlaCgUaY
zbWo0DCDk%9rwRTt(uL^3s(v9ZLr1?ASD(|p+Sw{b<1DWm+j%ATrBVwscDGW)d|%OY
zwR@13<<ml8?LQouG?Ue%0&8AYO3jmi5A#YbnoOM~I8X4W@hqc}m1Cf3qNIJeJ52Bh
z7NP4g=x~Zq%p^N;Pz#xlGe!HZo$By_-oj0x1TpTfHT)PorXOqii@k7#I{dG7?cT@=
T9FOEJFpAPO5J1EN*5%&;c>anT

diff --git a/models/user.py b/models/user.py
index 100f098..427428b 100644
--- a/models/user.py
+++ b/models/user.py
@@ -1,3 +1,4 @@
+from email.policy import default
 from enum import unique
 from typing import Dict, Union
 
@@ -8,12 +9,13 @@
 
 class UserModel(db.Model):
 
-    __tablename__ = "users"   # will be used to tell sqlalchemy the table name for users
+    __tablename__ = "users"  # will be used to tell sqlalchemy the table name for users
 
     # table columns for users table
     id = db.Column(db.Integer, primary_key=True)
     username = db.Column(db.String(80), nullable=False, unique=True)
     password = db.Column(db.String(80), nullable=False)
+    activated = db.Column(db.Boolean, default=False)
 
     # def __init__(self, username: str, password: str):
     #     self.username = username
@@ -37,4 +39,4 @@ def save_to_database(self) -> None:
 
     def delete_from_database(self) -> None:
         db.session.delete(self)
-        db.session.commit()
\ No newline at end of file
+        db.session.commit()
diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index d9c38d2fb01af3d7224075221d116788b51fa2a6..5d2448aa048e65be33ff1891a9f07579c1b5a55a 100644
GIT binary patch
delta 1370
zcmZux%Wl&^6!py5iJc~)f>IzY;8I@ZkqU$W@!GHe2?#>Kf-EQ|GffSxU9KlQLaGXt
z1q)b!5i1sDg9JM^@C}G9Z2Sv|A3#FlUMCP9v2>5G?>u~c&KW;ipN^INQmJ6zb^r4C
z^)JIu%i}D4y8GkkDMPN2BM%KZqQtVOSLE7@hBx}|yTw`hOiZv1$rkZ`?HDeE4Sz!=
z`6d?Fo8+qbyt0mlCJEO6JE>^h-M*EI+Ys8N%drAisyU^VtipDzc>;!Ld`I%ustkLS
z_TN-VK3h|@ja1x3u$jO`NJS88*hP=K3HnR2tU|R3gu@uIjbJm*hHcJZBDs*ewiIGX
z8!Jrn74gb=#TJ=1SF8@Zk;9yKI9%8H4!>bz#a_lI%pIuf0^Wxtll%!^6uOu_i6?B)
z?1+vj&6iwSGyI|<b21;W>~054I#lxtwM%b!Y6nt<I@y&knN!$9awhMdCK_NBLi_lY
zsO8T3x0M@4+HFMPOaSvrx}cgttijho6z*{s=9C{Rw=t_4H{E+t3tTnt2Xoa#=g%*t
zj^EJ1Z667S9PXL&Ktdi9&jQjZby}#wwDh&#Rcjv>VLw5i#Ed^u{TxQT8o>}{Q8ZWc
z951t?D07>)%OvL6s2POSg(%iF7{_Tl|JbE3#a<jaixHa$Bn9k68Ag&%j*~pFUmWZi
zfgB1YgjD!adOT|wNW(vN{oUJaa?Y7NHNYG|g2O=5(!e2v8H||du{mcZgG0S`9-pt$
zl#G+CDGm-5Xev52Be2+L0icM}L}c9w)tzY_-BjVA9&aVD3zO9&v_+rYJ}*acU;(4s
z3i4tzIQom3gJgMS)R{EuTnS}L_7bfp#Y1zM)h%hFsjPH}R5;mn3T(j@$&^)DI)DlJ
zyTf{Z-YHp!PouNR@64cW(3xiDR!inE&u1>RYnQrKTt)l3zrEBwto8i7YBte)UGX!Q
z&P1(HX2;tzdq>$=!tbRPV3gqBLrpb0y7w{SB7(sS!elx8`XX;<FYbL%wW)N?%fTR#
z_u#tjAK-sx#|$`u!)=Vd<)~8g#*!a}569@=0OZQd4L~|%D+Z~Q+Q;T2*_u-)7*31F
OldnS+{8bf(3qJuqjt!as

delta 898
zcmZuv&ubG=5Z?FRZg#Ut)}S#>wrNe9`eTW<BDPi#uU=|IiXKGJ)VIczbQ5N`AR)m+
zK|I()c?uppq<@2;s27jw$@AjTf51OLaAqq6Ll)*^=9}4hGv9mh?2D4q%;jtizt=y?
zTY+=nRM_`}`nQxkv8j25cQ!LPyQlJEftA!H@&2TXrBM1G%Ic5kF;4~hE4N6g1%jE$
zqKfhK%p#FBgnsT$=tEWd9Y6BrGAtqI3CK|XwEASY`LpDXPb#Zl#!90?<Q%~~!6}4T
zw1WuFQRoqje@VPDaaDwMw9rDZ7-xBlGpMR&>fzQCq#|v^B0ds_+94aVNFNykww*$s
z4>;V9%mLrFkg@hCN@HY8Ciy-eiYSvrVxJB5C@b|n#<YPL=+b!0W$H2C)TF6AbE$9v
zkLf$Rv~;K2YWcF-4%BV4nx@U+7=rp}-g*Wp^kUwYV3K3>0JrlDAYJ1${r*5Uqvnyi
zD@ejcg7MPHzI01B(ZW1}CLEE~j|+!onZ+I6cS!n;ZmS(E_qt)!fLSa$YOy%csE(Np
zv`|MN;h>J971Z5KS^c!0ul>6=dO?swh(%LMk0;~88nF`%X)<5EN!M;nxk{kxfvHc7
z5~~Q0&_dG4;+*LWR+Djx_RIP6RFWu?48<W$1eM~uDylE`Tw%&Af%<LNF0WJRIGcEh
zkXJFWgLZTz?r$+5uHm`rYxcvHD*8YoCBr4DX?<er+D=#QcKquMYeQFk&beYHZ~p}o
C-kt{l

diff --git a/resources/user.py b/resources/user.py
index 75ff8fe..b579334 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -85,13 +85,16 @@ def post(cls):
         # check password
         # this here is what authenticate() function used to do
         if user and safe_str_cmp(user.password, user_data.password):
+            # Check if user is activated
+            if user.activated:
+                # create access and refresh tokens
+                access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
+                refresh_token = create_refresh_token(identity=user.id)
+                # print("user logged in")
 
-            # create access and refresh tokens
-            access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
-            refresh_token = create_refresh_token(identity=user.id)
-            print("user logged in")
-
-            return {"access_token": access_token, "refresh_token": refresh_token}, 200
+                return {"access_token": access_token, "refresh_token": refresh_token}, 200
+            # If user is not activated
+            return {"message": "You have not confirmed registration, please check your email."}
 
         return {"message": "Invalid credentials."}, 401  # Unauthorized
 
@@ -114,3 +117,17 @@ def post(cls):
         new_token = create_access_token(identity=current_user, fresh=False)  # fresh=Flase means that user have logged in days ago.
 
         return {"access_token": new_token}, 200
+
+
+class UserConfirm(Resource):
+    @classmethod
+    def get(cls, user_id: int):
+        user = UserModel.find_by_id(user_id)
+
+        # If user is found, activate their profile
+        if user:
+            user.activated = True
+            user.save_to_database()
+            return {"message": "User activated."}, 200
+
+        return {"meggase": "User not found"}, 404
diff --git a/schemas/user.py b/schemas/user.py
index 0ff2e2f..c8d0a65 100644
--- a/schemas/user.py
+++ b/schemas/user.py
@@ -11,4 +11,7 @@ class Meta:
         model = UserModel
         load_instance = True
         load_only = ("password",)  # makes 'password' field load_only
-        dump_only = ("id",)  # makes 'id' field dump_only.
+        dump_only = (
+            "id",
+            "activated",
+        )  # makes 'id' field dump_only.

From c29a1c02126fc51b367e4b7bfb639c43c9547c89 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Tue, 1 Mar 2022 12:44:09 +0530
Subject: [PATCH 31/42] Added email confirmation

---
 database/data.db                          | Bin 28672 -> 32768 bytes
 models/__pycache__/user.cpython-39.pyc    | Bin 1579 -> 2579 bytes
 models/user.py                            |  47 ++++++++++++++----
 resources/__pycache__/user.cpython-39.pyc | Bin 3546 -> 3968 bytes
 resources/user.py                         |  55 ++++++++++++----------
 static/confirmation_page.css              |   5 ++
 templates/confirmation_page.html          |  31 ++++++++++++
 7 files changed, 103 insertions(+), 35 deletions(-)
 create mode 100644 static/confirmation_page.css
 create mode 100644 templates/confirmation_page.html

diff --git a/database/data.db b/database/data.db
index b242f12f2fd696cc828fbe233923cb387e1a0434..d7bd4092aeb73f6aa24454c82f771dd218fb87d4 100644
GIT binary patch
delta 469
zcmZp8z}V2hG(nz`W1@nG5IfI(2EMiYXZaWLe&cK4xzBrgV`D0hRAVL^ySTVGW3ypN
zVp2|OW=U#pF_>VV9Kw5<k$v)cei==$K)fNC;%H=NVHcN_WNgd?>nJYCFG?+jkgSt)
z`SKZAC*S4M;$~|sVuYCNJXwf8jz2XwF*8RY%rVH>!!bz1baEnpmY9wL7iXxSXJDwS
zf(BS#lS@;R8EB;vyHROzYEd!E<g@&iY*QHckMd91EGW>yU$4)^#vt!1%2`~Rl#!T{
znpyy7q~w<ZJ&>GO;E)coN-sG-*U-q=#FCMXLEBf91FkMNF)t-CC%3XVH789EO%zot
z7Xt$W6aRe%{`>rIflLtCETM3QUze9zo)NB-Nr+h+;T(wR5S_aj`0w!V2D*DazpDbX
UD?$qvr!pxs`*IR;)FJ~10L@R65&!@I

delta 232
zcmZo@U}|{4I6<C~eWHSg02{9r13w4<S-wEN+q_nMYMTWG4)I7eX0o!2i;FWh8<r#{
z<)mhoq~;cb3AV{Uc`h@uO+L>rGx;Sik1Ts5J2Shuq$FcwCRk;0Nq$jkF@$89EX0@3
z%EBgYFFE-luf*hee0<!jjZTbUlbez!Z|94fY|J0c#HBg;EWah&BL@CY{Es#ZI$Yz|
z;$vcE5Etbr&dn^zFf=kY;bCND5EkW3%1;9ExEL51nE2l_@c-n04^;n{UyzeooDr;;
NiH%tpq->Fc0|2%7KW_j4

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 4a9919aaf1d13ba33deeef7373a1280162da0573..0528c2e1138aa932249ecb4c0dca1744236255f8 100644
GIT binary patch
literal 2579
zcmbVOOH&(15Z;;Hl~ykhSOz~xqErrvoEV8WxLhtf7`sS}pb(@gd)XT8jKt!7$g?AC
zRL;rHkzZiD${hU<@&oc4a+qsQ{DintNqSZiP}sS6RMVR7>D_*P-4ZDjvKp)#zfCoN
z&uH48iaEbbVD7?>4}egOB3}!TjRI_Aq<HM>fnghgX`2bJ`>7yprvuBj65jALLDtS9
zjUkp}nB`fng|BLA+XZUcBQ#}?(zIQqmOb`RqZyigsnIOU?vKCF?MpP*&?@;8u&q_F
zH12z@kmhdaMIo@(Hj6t^7&B>fqF8_=&DoPKi-k;gx$m?hUO^JmW^XPgA#Fy_W*6p{
zT1~cGTO#f}S!@xqJjZC0F3hypB3qf84v6QsyWw=i+r8NqTX0tv=Gh9JS+0@V;>z4I
zac7p;(hO<VX6I`+*({r*%gnu5t1T?eEwxB*q#+{C;xc$9?rp92rs8gMk5I-sH0m~e
z=913cwlXs9MuDrsI=@bn{Rc>yW+STEm?B$e#=Z$VMKRTnu$}JnZ!KyZBWi*)b)?&w
zQ)&8~G<z!T>ss)9t}olq!?PLS3v7gqLNT+iG0oBZOXCHyiy#{VSpj4tbTpBT5A=#4
z8>8ci>=G-{ORo_v(aSFl`!bzKxJh~ixQPLGm0kmGl1@M|uglDC%=kt`nQxn2IL13r
zrCf)50pW+vV|IA51>rwX1rEEuPathF)eSwU?8z+LR1nW6UouTui*$Wec}u-1Bmt;$
zCb~RyG3X4JI_t1kVaMY@o@@KsK6;KQIzn&pu?CLeI=r|Dckgs*f-Qb1GcC^-j62Ok
zX|_C`KumZ2xUZ)1Nzi`3Q4JXNNcFVR)iv66i2#h20d?g@)Dlk#XVonp?K4-z)vZIZ
z7lqqvjUCeQs)5QxTvh&0cMfH-<%JY1I>UgzP(CNY;NG>}Vd|zYszDBP$D@1<)ITY9
ziQ#FLn+oO=@WrnwqC)JGD{zw8p;?c91^m#j(uaO|6g)DS!uqHC#6MH!&pVX}E;v;f
zI+a-a`kY^rANrN(K&6vBA<!Kzm0}Baf{~x#AOIoI0O(hkRRU8Cn9)`HO=`a&VNgSu
zuQY1D(P>JgT3DokOA8CA^~M0*OdF|b_8h&^-auQuHfa7x2b>k^C;!5-bE?2@6augU
zXn?e0p@6;XdqQ;LTh%In<8&T{OjHl%s=W+=EsjZ>#Zrg+9xmU0kM8tJtDE%)>)RXU
z?X`#Njh*d#JL{YE-Z!hh=RPirJy!O;5Drm!V6V(c+lvKHP<pFeF{IJrQ6RC1WEz01
za4HSKo~hO{NLTDhgAze1S)PK-K)1no<xwPf8d!c^5jDKz$i}_(M-O-F&izd|)#d1r
zhhgaaxc0NmKG@#eaCX*r9<2?|Yf2?4w6Ya5za<Uj?nUTL#ta%`5J2L%lhpD%up29I
zYWft$IEyjD|6p?jr4UBe-^O3PFV9f$Kkul!=aHb!r_(}pfkMJtsQ)oS{j+|osb9B-
z_72r623N3wyg_B4>7g)`$`s7^z!UEfpN7keu@qx+z#I`dDydBpv%8=a8$dLaN9Wu8
zqT;7I%4gu+16R44qA~?zhrx842Zk>wa-pqCeFaA$<J8gnpm^r!=VzJym~!Qcv>ZoG
zWyg_O$AMAT_0>7=I8VC7AKVli2eRO^KHJY`YBln^K`7Jfp<r#s6O74JLvSx_C-XOf
zjI=r=j-N)H%Jlb9<TDb=3~_~bKm?;Q=lXCRFqpSg>Hv6tRfVp5q2N<0<j)mRdFM4n
z78O}m<SZA-N#Tpb|0AsgJ62Cw*wBk;0zM^F1k8==gKdnIMvO$aUMb0xIP55o)pX$s
zRJJwvj}rIoCT(N3z|Y4?ZzUZitsyXyY;cuzzLq?#GX6tjv(9fQ*|&<Q4&XO|NHh6a
fO^kmm0%_gum*9?qc=AJ7MDW3RT!L^6we|l1{)2|d

delta 871
zcmZuvO>5LZ7|whoncdB%`;k^#R;*aWfGsE$Jd`R}Pz$by+Di_u*`3*vl8-t`ggxz{
zy?E%M<l><Sf*0}R5Af=bn1A5E@SRjE6a(|j`!&z|%$upaZ;l(b+f4($+rz>5o_XdD
z=5N5`21l`xpa3Cl;}|C-Ahk_mnwWu^Sb<ghG`15KFk}c*G=wFZqA|tGhF(GInZZqN
zofzB_?9e$TL7UrqhR=TKmS2&wxtNA!T=+;?Wg5LJg};au-H9fJGWXLcOCf{#cyiWV
zMxUyWXnRgSBjB`8anKa>(1g_jpMmd)ws1jh;~euQZ=KL%6f8ij12G3;ZSK~wE??lC
zbHuy6cS3{SAFt0n@cMiK^ew8!elFz8jEguhOEB}-Af$C9qv{l|bR`A(K9ViiBnGH{
z;$7raU2=yx`euggSC0utgX#;}plw~D@WcBGM_jt#`B?T~lS>-<m*9b=n$sxdqw#DM
z@zrXJuCgI?swuwPkE$oOwPWitI~REl15za9Tv?MWNumNqN^=oUuX1+s@Vyun*@%Zl
zI1Y2MR(-I;=gUCkQ>ppniYB$-!lDpzpd&XlToLD86pW@aOD@UoRu9-Z@~XFNbFJ29
zJ<Z}WNtOK~EyRJ4@>)&4SI8(mkWTf3ZO#{Uh(u{2uj@WHHQdthuVZcLnMekppJ}cK
z#xNxvw1hm=X=2nPdbzZ&8TzhrL=r~v#!(hWlbIxNKv9vFN&VB5Rm_gGh{%M5v~-sJ
w9m>TZ)^%b7AYl3t?C!l9DzknHb&LP$Q*0~Aco~ar1m|+C)IkpFU<Z5TH{dkJ8vp<R

diff --git a/models/user.py b/models/user.py
index 427428b..d098c8d 100644
--- a/models/user.py
+++ b/models/user.py
@@ -1,10 +1,20 @@
-from email.policy import default
-from enum import unique
 from typing import Dict, Union
+from requests import Response, post
+from flask import request, url_for
 
 from database import db
 
 UserJSON = Dict[str, Union[int, str]]
+# MAILGUN_DOMAIN = "YOUR_DOMAIN"
+MAILGUN_DOMAIN = "sandbox2547fbe807ac4a6faa83edbd51fe6e93.mailgun.org"
+
+# MAILGUN_API_KEY = "API_KEY_HERE"
+MAILGUN_API_KEY = "fe5c954e9d180a06938ac17e71ab0240-e2e3d8ec-005737fa"
+
+FROM_TITLE = "Stores RestAPI"
+
+# FROM_EMAIL = "Your Mailgun Email"
+FROM_EMAIL = "subhadeepdoublecap@gmail.com"
 
 
 class UserModel(db.Model):
@@ -14,17 +24,10 @@ class UserModel(db.Model):
     # table columns for users table
     id = db.Column(db.Integer, primary_key=True)
     username = db.Column(db.String(80), nullable=False, unique=True)
+    email = db.Column(db.String(50), nullable=False, unique=True)
     password = db.Column(db.String(80), nullable=False)
     activated = db.Column(db.Boolean, default=False)
 
-    # def __init__(self, username: str, password: str):
-    #     self.username = username
-    #     self.password = password
-
-    # json() function is no longer required when marshmallow is used
-    # def json(self) -> UserJSON:
-    #   return {"id": self.id, "name": self.username}
-
     @classmethod
     def find_by_username(cls, username: str) -> "UserModel":
         return cls.query.filter_by(username=username).first()
@@ -33,6 +36,30 @@ def find_by_username(cls, username: str) -> "UserModel":
     def find_by_id(cls, _id: int) -> "UserModel":
         return cls.query.filter_by(id=_id).first()
 
+    @classmethod
+    def find_by_email(cls, email: str) -> "UserModel":
+        return cls.query.filter_by(email=email).first()
+
+    # This method will interact with Mailgun API and return the response sent
+    def send_confirmation_email(self) -> Response:
+        # http://127.0.0.1:5000 - is the 'url_root'
+        # url_for("userconfirm") - this must mathch the name of user confirmation endpoint
+        link = request.url_root[:-1] + url_for("userconfirm", user_id=self.id)
+
+        return post(
+            f"https://api.mailgun.net/v3/{MAILGUN_DOMAIN}/messages",
+            auth=(
+                "api",
+                MAILGUN_API_KEY,
+            ),
+            data={
+                "from": f"{FROM_TITLE} <{FROM_EMAIL}>",
+                "to": [self.email],
+                "subject": "CONFIRM REGISTRATION",
+                "text": f"Click the link to confirm ragistration: {link}",
+            },
+        )
+
     def save_to_database(self) -> None:
         db.session.add(self)
         db.session.commit()
diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 5d2448aa048e65be33ff1891a9f07579c1b5a55a..f9663ce42a6e78ec529e911952b7b6e086195bcc 100644
GIT binary patch
literal 3968
zcmai1OLN=E5e5bz2vVR#$?|iZ4f5IzH(qL!%B!}rj=jz%<-}3BENvx=Lr@TAC_%!5
z9t<Um#mz;&x+<y4aS!rQ|0Kyzz#*5Me9h5^O}-wG66r?;tQk!Ayf8gqf8C5aowkAJ
zKW8_0{<&rt|0ZGnu_4?+DgT9v8{ABdfZi-MGZwJS3arcyY?E|W+Q^*1(QP|zW^Ul>
zb|Y<N?Vz141xuM1cv&atWXr*_?sL+WtQ&N7yP2+LYr&dsyXmEDJy<slv36nvmw#jM
z7H>Z_cw0CpR&WLK689i`TD}Uo!<Qj1Yxx@F72bv1)$(=7t9%XenwD=szQorduWR`o
zZf+U9%P(+7W3y*foh&*Kp%mq?$V*YJNRe|PLnX3d8YxjVrFc9NrRtfL`$&|<NX7zf
zuZ#vFER_u7Y}jj5mtrX}JdEO4lx3)j1CdwjQ>7FGY_K=gdizHT8$KQ-Qt+y~D^y6D
zgo|7y>bPo7HQ1%~c`4-Y3ocR!Z4$QPJ&{G!_34AV_kQ=_{?>L(N11;t2zOA*Yp8?~
znA`}Mu(-+DQ{%)8Y;M5>cIDB6kHl_LDj{PNgJ%yz!$G-+QvMm0GEPm!POaz0bMs46
z*{6+(x$itT<$JVhVsdN1whZW-(7VvzhTfj($L~(e)7EptH1KZIn>V<F-sXV)!PtUK
zKecq~={}RYiRl<$pywli4d2?@teP3@8tsbl2X}LSgb(+R61C^6y+~;>k22v$DQ<xu
z`{D`CRQ8j<;85fDU!MRICh4oA1HFa77Js}O$HgdDetm!3FGu=X2ctASzU4=`UoW7)
zAc|FT7^$Sl{WQrB{Jp63cZA6O68Gt=!aoLP>IwZ9|9~yWx9;aKcpjw~A`fvAA!Q+N
z`2&2E;54P)SD&lbsg~%tVX1GvveP2sl6<vtHBibTmmZ1TL6Y-u=QyO{WRA+6wSvy9
zPk(sTs9)VOIut-<$Ric)M5PF>;-h&O7x^HOnLbol4{a$K#bPIl531HsCb<g5leot!
zD^APGrhU!~`3-!=%ZD48;7PPmj&}AUF2r!-Gd_xI14TLaw~B!}ilo?hD2sg&t8(Mv
zvDz#0N1ttNN5f<To}!(s+@Mwa!{f>x7NsIAm+zu7*s|p@k4l4?uIV!Szl^c39m`>^
zIbQu7vu2>~)6C7YM&*VfStJarb{J*_AEngx!tn7ZN~b+baT=9nCh##_eiIw%^UPJW
zyIeta8KtBva4lwP&1*h*PNpAW*o6-Yo10(3W4QIyh9@?JHPzU>p*0S7fcIu)(=pD>
zs!2uwH^k(Uvxgj<igwTMqe1RDG2xnQ!pa*9E(xcdu;*|_a?oC5Q+6@_<q9qD=Y{eI
z06Oo#_!~Us#oy7@vuiZ9XNXC-M6@s}n~$>LnI+$WAm69zCRKFjbw%c>EMW4dXp}B0
z!)lwh>9Mg(+x5})_G9!h{O!k>uv0eW24a<lK8#ZzMv?_&57oG%j|I9EO7On?0J@%~
z&m(_;cCcP|g#%e+=b)D#()?G>;nX94iLO$IO;#TT2wT#Jsrxs3P5CXF{%xwhL)CXt
zRTex%(vjo_RTqovmIl)I(D4%#Z7J7eX4eInNE@RpJapH0Q2rmG>u~X)*iG^UHg8}m
z;ZegyqM?laDVq~ip0RmGCkV-bYEIa`OI&^e3GJ5rlWOC=#4T=PhNV0$HJ+JY+7oMH
zbLT5Ye7<FHm$woGS-ji0t0jF`-sYJpuVQb6uI4b3Dv8qVGgi6hVXvWMWY3gj6fldo
z5K21>F;w5IM)LTRFNzU3_fTjwPnioWDs^0wns;vb!&HFYd{Ah7Fi*(i_51l@lqQ@g
zR|nuIMcnu+yrI|8xR;mkIht?fI<<&uB@uwULKQ{H${m6@jta@E)-)OjE}PWD;63CC
zy@vLisx=~aCc3S?=V!FW&#AhAh(-tT&u>vm@;$>^vpjo^Ic(YVtYzl1@iKu>Uv<rK
z(#Np5MJ{mmLv-9nsR;`>lcaeKW9NiL+s_l$2{OStaUjB)rVct6!S=;SEkKP}iqNW|
z=A)qunt$B@#LQDh9EIQy`U5a#j8s|sDyc8?+SXj4_0wW^7dMGL&Ruy4OUh+bl@)Q`
zV>KJyChZ#xD4;LthKPvT=2){{{ngXR;JnFuWsBB(YXtZNy<|SUvdb7KPR?{tUp(g~
zC32WIsrEYLOx&h?Oq;a<a&{_joASm-b-K7st}=!Ff|1F<=l)FBMMfqAPt2)5!@v{D
z%4R11wfr%LNsTs5icAuzX^es(iP9@C9!Vs>N~aG&D;Gy~zWOG^=9n-wtV8_1I{)2M
zK;EGZE-pp4G_>!cBbzNi#OIolbY#<o=iGj;LUJ*Na+?BMrD^$Iow>;Ou+T!Rp|ywy
zH84L#V?Nf%kGVNvA()Rc+!;W@akgr38$9Rm#xus9iFJa^nKvmv#h$Ir?Xia)6|DB*
z_VG}RTS`1p8+$5C$5$4Ts39`fKI!F;u=fRh>DYxBqFIGPl>C?~N_HgqlBB!VOoO<*
z7<sGa9&%kF%Q+)!`%>6>f>Kg^Hdx!TO^5O%SekzJ*S3xKOS@J3!_;IHoi}@L_6N#g
z>S*?+`}`Gpk5DcMhBUpK@;Y8sV}PvcVD2z<6IDlR>2H@pQZ4Cbg4H7-55{7&+b;#M
zh`&NLyROw^=|2*zOMlO5a@E9I`>F;raRdH#(!Zs$Pduxw8hCZ$JXLjQ_ts8|L^j2L
z1kEKi&r@Qj!>{H??a>;Rl1?*c<8vTa?l0<0@;0JHZEe?FH$D7rx>S42vAceEy?dkE
H?zaC23_*v8

literal 3546
zcmai1OLODK5yk)@36h{hJ$Ajj-o$Voj_Ej5l1fz)CvmO4wNAORR&A}ct}-qt2s0!h
z0R(pdt}L2+(q3JaRORS{bksjden2j`=CpsoCx6|bB+8b`P|a|<2bf3q*I&27PN!wy
z`RdvIz5jI$<NqWqKQ@F1XnBcF8d4-iDtsYmY$j%E`4*3@#7=8|jmLIUPaA%N$F;;s
zn|?EG`K`3=w^P@5(~jTaxq7mauKKGyZY14w&0piOldPv3{)RBr+Ogqp{@svG*?MKj
zma>j5{}$x7bRoMe--g_gE09-MegpEV>_YCcd<XKHT!*~Q@?FRqauf0<%lG819iw;q
zHSTBhMA^{l`BdcvhR#!!XHy+1j8{JolURmDoQ)r8ooT4tJRGPXFLV&4lU}Xdh_ng|
z6@*cw@;oTA12rx;7fP)LTIHjK*4;lW0@^6nN|xQBDgx5PQjLqaI4T<p4R&ch%a#5t
zlPZDGB4H;QsWhaij~{>Z@E?yq-Pw)k@XL<{;Q?BH2c0r}Ar0SDmK4%_WgH9NmKH8;
zmo6>%R1M?2P&yKL`TQ|4Am=|s%RfL@7$>4IPpnhpRJ;_0eNvl?{raiU@6f8Tkk-K5
zG3Mf=acaPgwyZ%{Cta_xT{cqKBpj;QdmoLxDK_;E<6`6$qp)Cc9Hz<(6If6ldFo4?
zC-2Aq#DRSNQsK)xbXG5vQb{kLvXKYVBsuE8{x6Q#bILZY8{}-B(oV8aYPv<~ur>2+
ztlK1Z2k}@2dq)AiPWzV5#i*NyFBF^<z}4Yin5&*yT2YdhHobCY=(||q+b3J8l5x0|
zPxnTlRBE#INKPXLhZl~ex04Nu!%(ZOCpz0#QIT&wIVwik`01ma-Eb0b0SSz&e2Z4?
zPmW4^lI6v(uy)SjXs%eU>DC-`w)PBfoI9vbZ*8B|N+$^D;6YHff*{T0G@-E@1ka~o
zvY2T{NtoxU!p2g+iKY4MOWi%vt)Tk_?MuFPEK{)N2Y9-mf#2e_OFSuCif`b3X}z+6
zs+zJE8hD>Iby+9>mo{DF4ADgw2F@dL%=trLrN&Tu7XyOYTmWX~+|2JS!;1hoH&2DM
z8CbP#y^8n0U8Uu{aaMSPY&w?x*Z&4`UjGMEJ-c#x>)h$F)N9a}ww$JuGfTe#LI0dO
z3YG7fr?dc_KSQ58=nShRY~h+Shqmiu>gH?o@%qizn42diM+q*1D5>#f>eXd5xkLXF
z-K@jcLg=eP$-aIEx}L@N(S#L$vziJ9I!iAQt9$f4;k4?=&1JoM^J9z`2&=B*h*_I2
zQ_XMp8u};n<xi=5i#iWoX~pA0zenP)sk>a9M+~I5G4Urfwv;1G(RBbO(ne@k9`f}A
zv>ziUroPA7FdkoFrW!saJThFy7~I561RuRuH0I{M1Fmw8Az|Fqe$m2jn}GGT`O+#}
zmaMPEOM7n3ZE1gFRz8t+*@(rCfnNuHYO<eN+q-9G>0FR?jhVeC^cKznzHqN3fX)@>
zXCE?VXMg)5n|dSA4dXV-#)DXcRy@sYteH*T_a=z~3whwQ=)gMyYk1)PIO)$eKOMiI
zl;k17aM}nHFy_C2`(B3;uGeuKCP2MGBjP^2N!=~#$cm*i0Yw~UT9(Z)D&iMNUsBg;
z#zdSnFzD4dLdxcp0+(2^ij&{b8o#IR5)6z3Vw%s;a@yXoKxFp1SvOaNYps|dv=xFI
zJGEjneIKtaEpmyd-(cb~T18DjlqSs&&~!mfgxO_kI!3ipr8}agMZ)6@itV#$aRpSw
zM}$iTm4`uL(D!!@q&jh85*s0@f#?8(bM7gv{UWZMd1q%SA$dtQ9Kw^><05E@)^!J6
zX(5C4%!+p?V3zKFVZageIr)JorzK|0Z`G+6IiP-BoN8jJo4Njvm>r<;%8qG*%rxn4
zHtEkWyKGX97-V{BQx(Bxt%2X`rMpYj&eN*M*+p%FGK$0Eijm2{7m-WuA|sQ5=VB3y
zFz}peiE|TwqKQZ~qmAj$)J;;5Z9s)Y-lZE&wMOB@`P^@g)nQd-U1!+m_+Vk!Ix+d$
z^0^m){D3yNMD-;g|AL9h`2s|7j?kpL*?!-L<kf5`ZP>0>G66rV;$M@+Z_X-z!0d8X
z(eFwzHv{k-)n!)!Dr>S1OE#FZobBBTs8y!C2=)q}RAUW?;F&5qFB2)Jp+ySil%wec
z`Zjgfq!~^TUtuzL(HUmTvPB(Mf}wfe#U&|oZuhQ7@cXnhXPWCg@F8YrXqS{gn(f}3
zWo>|J=b)<hIy^>wofjw&HKDF-r=iYAX_zG0p(YIaYlli7%+z$)&lM1avb*BM_3CS?
z$JLjG8l&7~xG^185ylXth{iuORGH^}Vn=3J->vG;g^KJ@HusV+I!I8{G6PiXOobPx
uM`ksSLk5$k8(jy#()nvu>3s-}H*%s)S5$xZ9sXUb+ucq4-Rrixt?vLV$_Q-$

diff --git a/resources/user.py b/resources/user.py
index b579334..dfe8b92 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -1,6 +1,6 @@
-from flask import request
+import traceback
+from flask import make_response, render_template, request
 from flask_restful import Resource
-from marshmallow import ValidationError
 from werkzeug.security import safe_str_cmp
 from flask_jwt_extended import (
     create_access_token,
@@ -14,21 +14,6 @@
 from schemas.user import UserSchema
 from blacklist import BLACKLIST
 
-# extracted parser variable for global use, and made it private
-# _user_parser = reqparse.RequestParser()
-# _user_parser.add_argument(
-#   "username",
-#   type=str,
-#   required=True,
-#   help="This field cannot be empty"
-# )
-# _user_parser.add_argument(
-#   "password",
-#   type=str,
-#   required=True,
-#   help="This field cannot be empty"
-# )
-
 user_schema = UserSchema()
 
 
@@ -45,12 +30,24 @@ def post(cls):
             # if exists, then don't add
             return {"message": "An user with that username already exists."}, 400
 
+        # Then check if that user email is present or not
+        if UserModel.find_by_email(user.email):
+            # if exists, then don't add
+            return {"message": "An user with that email already exists."}, 400
+
         # user = UserModel(data["username"], data["password"])
         # user = UserModel(**user_data)  # since parser only takes in username and password, only those two will be added.
         # flask_marshmallow already creates a user model, so we need not do it manually
-        user.save_to_database()
-
-        return {"messege": "User added successfully."}, 201
+        try:
+            user.save_to_database()
+            user.send_confirmation_email()
+            return {
+                "messege": "Account created successfully, an email with activation link has been sent to your email.",
+            }, 201
+        except:
+            # print(err.messages)
+            traceback.print_exc()
+            return {"message": "Internal server error, failed to create user"}
 
 
 class User(Resource):
@@ -76,8 +73,8 @@ def delete(cls, user_id: int):
 class UserLogin(Resource):
     @classmethod
     def post(cls):
-        # get data from parser
-        user_data = user_schema.load(request.get_json())
+        # get data from user to login. Include email to optional field.
+        user_data = user_schema.load(request.get_json(), partial=("email",))
 
         # find user in database
         user = UserModel.find_by_username(user_data.username)
@@ -128,6 +125,14 @@ def get(cls, user_id: int):
         if user:
             user.activated = True
             user.save_to_database()
-            return {"message": "User activated."}, 200
-
-        return {"meggase": "User not found"}, 404
+            headers = {"Content-Type": "text/html"}
+            return make_response(
+                render_template(
+                    "confirmation_page.html",
+                    email=user.username,
+                ),
+                200,
+                headers,
+            )
+
+        return {"message": "User not found."}
diff --git a/static/confirmation_page.css b/static/confirmation_page.css
new file mode 100644
index 0000000..5a74cf6
--- /dev/null
+++ b/static/confirmation_page.css
@@ -0,0 +1,5 @@
+.full-height {
+  height: 80vh;
+  margin: 10px;
+  background-color: aquamarine;
+}
diff --git a/templates/confirmation_page.html b/templates/confirmation_page.html
new file mode 100644
index 0000000..4eb558e
--- /dev/null
+++ b/templates/confirmation_page.html
@@ -0,0 +1,31 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>Registration Confirmation</title>
+    <link href="{{url_for('static', filename='confirmation_page.css')}}" rel="stylesheet" type="text/css">
+    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
+</head>
+<body>
+
+  <div class="container-fluid">
+    <div class="jumbotron text-center full-height">
+      <h1>Thank You</h1>
+      <p>Your registration has been confirmed through < {{ email }} >.</p>
+    </div>
+
+    <footer class="text-center">
+      <hr>
+      <h4>Activated on: <span id='date-time'></span></h4>
+      <script>
+        var today = new Date();
+        var date = today.getFullYear()+'-'+(today.getMonth()+1)+'-'+today.getDate();
+        var time = today.getHours() + ":" + today.getMinutes() + ":" + today.getSeconds();
+        var dateTime = date+' '+time;
+        document.getElementById("date-time").innerHTML = dateTime;
+      </script>
+    </footer>
+  </div>
+
+</body>
+</html>
\ No newline at end of file

From 5d4d5a9dda780e020d3d6f22af3ad910c334ea41 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Wed, 2 Mar 2022 20:01:54 +0530
Subject: [PATCH 32/42] Added environment variables

---
 .env.example                           |   2 ++
 .gitignore                             |   4 ++-
 database/data.db                       | Bin 32768 -> 32768 bytes
 libs/__init__.py                       |   0
 libs/mailgun.py                        |  33 +++++++++++++++++++++++++
 models/__pycache__/item.cpython-39.pyc | Bin 1503 -> 1525 bytes
 models/__pycache__/user.cpython-39.pyc | Bin 2579 -> 2323 bytes
 models/item.py                         |   2 +-
 models/user.py                         |  31 +++++------------------
 requirements.txt                       |   3 ++-
 10 files changed, 47 insertions(+), 28 deletions(-)
 create mode 100644 .env.example
 create mode 100644 libs/__init__.py
 create mode 100644 libs/mailgun.py

diff --git a/.env.example b/.env.example
new file mode 100644
index 0000000..4756ef5
--- /dev/null
+++ b/.env.example
@@ -0,0 +1,2 @@
+MAILGUN_DOMAIN=
+MAILGUN_API_KEY=
\ No newline at end of file
diff --git a/.gitignore b/.gitignore
index 643b9c8..e4677e2 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,4 +2,6 @@ test/test.py
 test/test.db
 __pycache__
 .vscode
-.idea
\ No newline at end of file
+.idea
+/.env
+database/data.db
\ No newline at end of file
diff --git a/database/data.db b/database/data.db
index d7bd4092aeb73f6aa24454c82f771dd218fb87d4..49549e3aaae37ea9947260c45bc125a324d468ab 100644
GIT binary patch
delta 115
zcmZo@U}|V!njp={I#I@%k#%Fj5`H#D{-X^1M>h*9?B*A@WMpH|_7&yKP0UM4%qcES
z%1BH}O)Z%Gz+PeUA9)U-+P4h+Z#N4%Jm!}bV%A1i$Hl<Fz{r1xf&UIr$tC{HckERh
E0KxGi(EtDd

delta 218
zcmZo@U}|V!njp={Hc`fzk!@qb5`GRQ{wWOnNBO6078K~<_t0lzV~}?h<t#2u%1BH}
zO)Y>kQu0faa#E8M3mnpO6Ek!4lJj#7jf_n!8QB=LeMLFo>T(nFQWA3}Kd@Jr{70Sx
zX#9N!{`>rIHw!9U=GWzAmS=>kWD;W5Mpy*V$Hl<Fz{J0sf&UKwZlH_S^D8PayCSq;
MaRk%mJN7CL0Gz}{AOHXW

diff --git a/libs/__init__.py b/libs/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/libs/mailgun.py b/libs/mailgun.py
new file mode 100644
index 0000000..aea8b3d
--- /dev/null
+++ b/libs/mailgun.py
@@ -0,0 +1,33 @@
+import os
+from typing import List
+from requests import Response, post
+
+
+class Mailgun:
+
+    MAILGUN_DOMAIN = os.environ.get("MAILGUN_DOMAIN")
+    MAILGUN_API_KEY = os.environ.get("MAILGUN_API_KEY")
+
+    FROM_TITLE = "Stores RestAPI"
+
+    # FROM_EMAIL = "Your Mailgun Email"
+    FROM_EMAIL = "subhadeepdoublecap@gmail.com"
+
+    # This method will interact with Mailgun API and return the response sent
+    @classmethod
+    def send_email(cls, email: List[str], subject: str, text: str, html: str) -> Response:
+
+        return post(
+            f"https://api.mailgun.net/v3/{cls.MAILGUN_DOMAIN}/messages",
+            auth=(
+                "api",
+                cls.MAILGUN_API_KEY,
+            ),
+            data={
+                "from": f"{cls.FROM_TITLE} <{cls.FROM_EMAIL}>",
+                "to": email,
+                "subject": subject,
+                "text": text,
+                "html": html,
+            },
+        )
diff --git a/models/__pycache__/item.cpython-39.pyc b/models/__pycache__/item.cpython-39.pyc
index a1c4f639674f11a6cafe9821303d4d18e89425f4..f448d86dac81ed43c6df91b76e161fa26143aa3f 100644
GIT binary patch
delta 373
zcmcc5{gs<Hk(ZZ?0SG$l<&&0A<gH`eF|j8#B8xADJB2ZYr<W;;KUE-AFohw7cMeku
zUkZN<OEY7X5Kv4wg+Y=bMPLqNieQQmSX3lM7|a(*5p7|K5{2@_QpABgu@vE822F{{
zu8g^YjJNob5|gvz3-Sv}a}rBZizjbnbYtY5{DV=AgBR$Ol?+9~lhv3eF!D{_&SWUV
z4-~q^oS2iN$yg)=WETm;36aSx%xR2ble3vMxsgTZGnea$0aa<T6fuJoO9F{oY$>TZ
zsU@jJ(jXBT5P_`4g=HSl36EL)HAO*EOdvu6M96^%1rUKy4rYl=j%Jkwy0MbgMhjgE
asQea(O>TZlX-=vgBam0j0wj2tc$fj-yG?`u

delta 329
zcmey$eV>~*k(ZZ?0SL7GWRm(P^42kKnb?yWvVbpzdm&>Kf2u&LU<yMD&m5){-W0wT
zmS)B%A)uIW3WFp=3jZ9&6oC{$u&79i5STBVBGSSVB?{$<ricM~Vkttw44UGTJsEQ+
zpI~%l<eALJq{hJmv~(pyk<ertrU{I^lg~04%J2b&ZZRk3<Y+P$2?E(gLU2NOvJ`U~
zqv+&DW=(En(XGtodZIv8nk+@kAjJ|u;uc#<YEEiNYLOI3L>fdOYl&i+2Xw+u7Jp3<
mkQ5V$5C;*mAVMBQAe4hy!jlVGWf{39_p{mvU`X9&l>z`gokBbS

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 0528c2e1138aa932249ecb4c0dca1744236255f8..7755611268075aa0680f397f9c5aedeb5cc0321f 100644
GIT binary patch
delta 861
zcmZuv&2JJx6yMpM{otz>iUAa%wuW@uN<UIHF-TDp?WLqijWHa=g&Eq#1(MmtR08p!
z7ms8P9!wKWjEQG2UcCAjc-n&(y?FCK(0Oa94e^or@!s2cZ{GXm$CEs<V#Q)%N!ayU
zxyF56lD<Q5+OP;J;<yjTE8CZdL{ulziPoY>x+@Wl=r1Iq({MZXT&c|vV_z~u<M)-Q
ziF|$6vYmr|w>geyKE6Wp2*vm(`2mXaxKc3UqU8sPrTMl(P?En>iZ~%s+?TIx__9sd
zoQO=BrNkdQ50E~AjPU$$%kGkT<7wR{X<ow1lk%%uIk<SbJV;EH$0p^pBgV|~uegwh
z0h&m_#8lyE;@lR;-QyWGe~;jiOw=KIEgj1vg=pXrJwW4F9bpf@QHN4nJ3vEus0{I2
z43t!V{uWk?^j*rDy>8299bgDTF+cyJR*b>5(xKOJ%KV$Ulr35Fhm5vvEDYp@@*q-L
zv&yBl;Ipao4ee|-D<)zg0kyD81rNa%3>Gz2AG_3P`Pi|$kA2<kH`=u6`PidJ0-?z?
zl_~y9OU+$`B?B!eSs9}+O33_&_N=f7Pff8m>sn7}-Rsqf<yj5OrK|j<Zta-xK4u0~
zEDP{8LLKT+whEcc08@>Ue=pQqtk*edw$3+=qd8d7*Y-VTcMllIh2{8XW9#NQ$SZc&
zV;3Nq2LO?>C4eHpI>5h|0uMyPV7(CE3@t_?GdPH<<{ADdbZ4&?b?k;)1ThHB2GsiM
fZcmICT>D=)-zar@r0>u&XeOX;7Kxu6MN#Ds!VA7D

delta 1112
zcmZuw&2Jk;6yKR0uQ&dxlN!>}loVBJ<)pFKU$Ik#;)tYepovk_BJjnU^}KZ)Y;QC>
zu7XvR16)CrxgdpHkvMYW58%Xqz+AcTFHj-Gj3Fh8nAQ93`<S2J%zJO-oXjoLbUI<_
zwe-`1|MQGx{br2wE2fR6mgw1w<#*NrK@u>eAQ|ARmXUUv#o8I>v@fxEJImbm>;sF<
zu*4S@OF-ga?sL0+nI-qEeCowl&ErWWq9f*qN99_z9{AAk>a<&>s{y5r3NWA5N&&3G
zTBR_g{XuU$Dulc@DF;yNuGOlr#!3y3daG-d2JM#WP%ly6D_6Z0C_{xcpu6IEwR)u<
z&`D-bgdCz9k0BBpA8bz+qOre!g))Fc7LNS^bm?KUXR;K!;qb>_?;@0vIs6gI$|1hx
zX7!bSu=u<@!3-^aV;9h@EZT41nbZC}=CA7?f5X81E4ZRHl?eJH*6}~>^w~}Mt-Um*
zHER62*>;{hbzC5)&&XiTbz6Gm*5a%tc9Dj&g|*^pc~?vHp&XONbwL;ru@j5MPHpB0
zC%_`Et+;SCx~Js1buiOIrYq0UiFJxu@;ky(U)s7WY55CTtX$g{;xM{fEYidNtICf+
z6rWX!lbPZWqKNh&Qnrpy@QwAC=$`zYG>`K{k${Iog+-|1y21z06^aNr5_zl$9gBTM
z7!@?1;Eq18a>sno;bACvT$}uw0W)DLv$L`N=)u$7&Spz%yXw-Jt$Wvbf9qqFxc|7d
z(|NM}<k8l@`qs{E&6!r#B#U4WC^G1eKDpSFd6{<R-@2pIM5afUy?`-JV2tozIF>;U
z!pQxT{2`HZoGs}1dA|JGc?~t?_YQqn(xE)zruMw7K{*TtAb?kmr)J<nKXd<V=$I09
zOc{I{!KQ4*k1m^=D`!ve{;0>zu<`3s#j6`vjo<E%1Ya=DHw_R2o`F>Z4FmsWnrh}=
zTt8ncCtL2#WG+Ld)^0v0KXdO7`KF0)X=uAoBjE4twRZWE@huxLrQs_YRBR{IXP$EZ
eFNJc~hanpe;GUVt$joyV=?|xH4ilRgvHu27H~=O9

diff --git a/models/item.py b/models/item.py
index 6b87894..0a137cd 100644
--- a/models/item.py
+++ b/models/item.py
@@ -13,7 +13,7 @@ class ItemModel(db.Model):  # tells SQLAlchemy that it is something that will be
     price = db.Column(db.Float(precision=2), nullable=False)  # precision: numbers after decimal point
 
     store_id = db.Column(db.Integer, db.ForeignKey("stores.id"), nullable=False)
-    store = db.relationship("StoreModel")
+    store = db.relationship("StoreModel", back_populates="items")
 
     # searches the database for items using name
     @classmethod
diff --git a/models/user.py b/models/user.py
index d098c8d..60fddb9 100644
--- a/models/user.py
+++ b/models/user.py
@@ -3,18 +3,7 @@
 from flask import request, url_for
 
 from database import db
-
-UserJSON = Dict[str, Union[int, str]]
-# MAILGUN_DOMAIN = "YOUR_DOMAIN"
-MAILGUN_DOMAIN = "sandbox2547fbe807ac4a6faa83edbd51fe6e93.mailgun.org"
-
-# MAILGUN_API_KEY = "API_KEY_HERE"
-MAILGUN_API_KEY = "fe5c954e9d180a06938ac17e71ab0240-e2e3d8ec-005737fa"
-
-FROM_TITLE = "Stores RestAPI"
-
-# FROM_EMAIL = "Your Mailgun Email"
-FROM_EMAIL = "subhadeepdoublecap@gmail.com"
+from libs.mailgun import Mailgun
 
 
 class UserModel(db.Model):
@@ -46,19 +35,11 @@ def send_confirmation_email(self) -> Response:
         # url_for("userconfirm") - this must mathch the name of user confirmation endpoint
         link = request.url_root[:-1] + url_for("userconfirm", user_id=self.id)
 
-        return post(
-            f"https://api.mailgun.net/v3/{MAILGUN_DOMAIN}/messages",
-            auth=(
-                "api",
-                MAILGUN_API_KEY,
-            ),
-            data={
-                "from": f"{FROM_TITLE} <{FROM_EMAIL}>",
-                "to": [self.email],
-                "subject": "CONFIRM REGISTRATION",
-                "text": f"Click the link to confirm ragistration: {link}",
-            },
-        )
+        subject = "CONFIRM REGISTRATION"
+        text = f"Click the link to confirm ragistration: {link}"
+        html = f'<html>Click the link to confirm ragistration: <a href="{link}">{link}</a></html>'
+
+        return Mailgun.send_email([self.email], subject, text, html)
 
     def save_to_database(self) -> None:
         db.session.add(self)
diff --git a/requirements.txt b/requirements.txt
index 242289e..40cb649 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -4,4 +4,5 @@ Flask_-JWT-Extended
 Flask-SQLAlchemy
 Marshmallow
 Flask-Marshmallow
-Marshmallow-SQLAlchemy
\ No newline at end of file
+Marshmallow-SQLAlchemy
+Python-Dotenv
\ No newline at end of file

From af8d3cbdc7a314b6e56c64eec51f4276582784d0 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sat, 5 Mar 2022 14:31:05 +0530
Subject: [PATCH 33/42] Minor changes

---
 libs/mailgun.py | 23 ++++++++++++++++++-----
 1 file changed, 18 insertions(+), 5 deletions(-)

diff --git a/libs/mailgun.py b/libs/mailgun.py
index aea8b3d..cf15396 100644
--- a/libs/mailgun.py
+++ b/libs/mailgun.py
@@ -3,21 +3,29 @@
 from requests import Response, post
 
 
-class Mailgun:
+class MailgunException(Exception):
+    def __init__(self, message: str):
+        super().__init__(message)
 
-    MAILGUN_DOMAIN = os.environ.get("MAILGUN_DOMAIN")
-    MAILGUN_API_KEY = os.environ.get("MAILGUN_API_KEY")
 
-    FROM_TITLE = "Stores RestAPI"
+class Mailgun:
 
+    MAILGUN_DOMAIN = os.environ.get("MAILGUN_DOMAIN")  # can be None
+    MAILGUN_API_KEY = os.environ.get("MAILGUN_API_KEY")  # can be None
+    FROM_TITLE = "Stores RestAPI"
     # FROM_EMAIL = "Your Mailgun Email"
     FROM_EMAIL = "subhadeepdoublecap@gmail.com"
 
     # This method will interact with Mailgun API and return the response sent
     @classmethod
     def send_email(cls, email: List[str], subject: str, text: str, html: str) -> Response:
+        if cls.MAILGUN_API_KEY is None:
+            raise MailgunException("Falied to load Mailgun API key.")
 
-        return post(
+        if cls.MAILGUN_DOMAIN is None:
+            raise MailgunException("Failde to load Mailgun domain.")
+
+        response = post(
             f"https://api.mailgun.net/v3/{cls.MAILGUN_DOMAIN}/messages",
             auth=(
                 "api",
@@ -31,3 +39,8 @@ def send_email(cls, email: List[str], subject: str, text: str, html: str) -> Res
                 "html": html,
             },
         )
+
+        if response.status_code != 200:
+            raise MailgunException("Error in sending confirmation email, user registration failed.")
+
+        return response

From 12480d9b3615703d34a8ec0b37db4a793f26c5b5 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sat, 5 Mar 2022 15:21:06 +0530
Subject: [PATCH 34/42] minor unfortunate changes

---
 libs/mailgun.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libs/mailgun.py b/libs/mailgun.py
index cf15396..7e27e92 100644
--- a/libs/mailgun.py
+++ b/libs/mailgun.py
@@ -14,7 +14,7 @@ class Mailgun:
     MAILGUN_API_KEY = os.environ.get("MAILGUN_API_KEY")  # can be None
     FROM_TITLE = "Stores RestAPI"
     # FROM_EMAIL = "Your Mailgun Email"
-    FROM_EMAIL = "subhadeepdoublecap@gmail.com"
+    FROM_EMAIL = "postmaster@sandboxb3ef8f2c0e20406cb3f834bc39735ab4.mailgun.org"
 
     # This method will interact with Mailgun API and return the response sent
     @classmethod

From a7ff629b540023e211bc1c280a32981710c2ce7f Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sat, 5 Mar 2022 20:17:49 +0530
Subject: [PATCH 35/42] minor changes

---
 resources/__pycache__/user.cpython-39.pyc | Bin 3968 -> 3546 bytes
 resources/user.py                         |  55 ++++++++++------------
 static/confirmation_page.css              |   5 --
 templates/confirmation_page.html          |  31 ------------
 4 files changed, 25 insertions(+), 66 deletions(-)
 delete mode 100644 static/confirmation_page.css
 delete mode 100644 templates/confirmation_page.html

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index f9663ce42a6e78ec529e911952b7b6e086195bcc..5d2448aa048e65be33ff1891a9f07579c1b5a55a 100644
GIT binary patch
literal 3546
zcmai1OLODK5yk)@36h{hJ$Ajj-o$Voj_Ej5l1fz)CvmO4wNAORR&A}ct}-qt2s0!h
z0R(pdt}L2+(q3JaRORS{bksjden2j`=CpsoCx6|bB+8b`P|a|<2bf3q*I&27PN!wy
z`RdvIz5jI$<NqWqKQ@F1XnBcF8d4-iDtsYmY$j%E`4*3@#7=8|jmLIUPaA%N$F;;s
zn|?EG`K`3=w^P@5(~jTaxq7mauKKGyZY14w&0piOldPv3{)RBr+Ogqp{@svG*?MKj
zma>j5{}$x7bRoMe--g_gE09-MegpEV>_YCcd<XKHT!*~Q@?FRqauf0<%lG819iw;q
zHSTBhMA^{l`BdcvhR#!!XHy+1j8{JolURmDoQ)r8ooT4tJRGPXFLV&4lU}Xdh_ng|
z6@*cw@;oTA12rx;7fP)LTIHjK*4;lW0@^6nN|xQBDgx5PQjLqaI4T<p4R&ch%a#5t
zlPZDGB4H;QsWhaij~{>Z@E?yq-Pw)k@XL<{;Q?BH2c0r}Ar0SDmK4%_WgH9NmKH8;
zmo6>%R1M?2P&yKL`TQ|4Am=|s%RfL@7$>4IPpnhpRJ;_0eNvl?{raiU@6f8Tkk-K5
zG3Mf=acaPgwyZ%{Cta_xT{cqKBpj;QdmoLxDK_;E<6`6$qp)Cc9Hz<(6If6ldFo4?
zC-2Aq#DRSNQsK)xbXG5vQb{kLvXKYVBsuE8{x6Q#bILZY8{}-B(oV8aYPv<~ur>2+
ztlK1Z2k}@2dq)AiPWzV5#i*NyFBF^<z}4Yin5&*yT2YdhHobCY=(||q+b3J8l5x0|
zPxnTlRBE#INKPXLhZl~ex04Nu!%(ZOCpz0#QIT&wIVwik`01ma-Eb0b0SSz&e2Z4?
zPmW4^lI6v(uy)SjXs%eU>DC-`w)PBfoI9vbZ*8B|N+$^D;6YHff*{T0G@-E@1ka~o
zvY2T{NtoxU!p2g+iKY4MOWi%vt)Tk_?MuFPEK{)N2Y9-mf#2e_OFSuCif`b3X}z+6
zs+zJE8hD>Iby+9>mo{DF4ADgw2F@dL%=trLrN&Tu7XyOYTmWX~+|2JS!;1hoH&2DM
z8CbP#y^8n0U8Uu{aaMSPY&w?x*Z&4`UjGMEJ-c#x>)h$F)N9a}ww$JuGfTe#LI0dO
z3YG7fr?dc_KSQ58=nShRY~h+Shqmiu>gH?o@%qizn42diM+q*1D5>#f>eXd5xkLXF
z-K@jcLg=eP$-aIEx}L@N(S#L$vziJ9I!iAQt9$f4;k4?=&1JoM^J9z`2&=B*h*_I2
zQ_XMp8u};n<xi=5i#iWoX~pA0zenP)sk>a9M+~I5G4Urfwv;1G(RBbO(ne@k9`f}A
zv>ziUroPA7FdkoFrW!saJThFy7~I561RuRuH0I{M1Fmw8Az|Fqe$m2jn}GGT`O+#}
zmaMPEOM7n3ZE1gFRz8t+*@(rCfnNuHYO<eN+q-9G>0FR?jhVeC^cKznzHqN3fX)@>
zXCE?VXMg)5n|dSA4dXV-#)DXcRy@sYteH*T_a=z~3whwQ=)gMyYk1)PIO)$eKOMiI
zl;k17aM}nHFy_C2`(B3;uGeuKCP2MGBjP^2N!=~#$cm*i0Yw~UT9(Z)D&iMNUsBg;
z#zdSnFzD4dLdxcp0+(2^ij&{b8o#IR5)6z3Vw%s;a@yXoKxFp1SvOaNYps|dv=xFI
zJGEjneIKtaEpmyd-(cb~T18DjlqSs&&~!mfgxO_kI!3ipr8}agMZ)6@itV#$aRpSw
zM}$iTm4`uL(D!!@q&jh85*s0@f#?8(bM7gv{UWZMd1q%SA$dtQ9Kw^><05E@)^!J6
zX(5C4%!+p?V3zKFVZageIr)JorzK|0Z`G+6IiP-BoN8jJo4Njvm>r<;%8qG*%rxn4
zHtEkWyKGX97-V{BQx(Bxt%2X`rMpYj&eN*M*+p%FGK$0Eijm2{7m-WuA|sQ5=VB3y
zFz}peiE|TwqKQZ~qmAj$)J;;5Z9s)Y-lZE&wMOB@`P^@g)nQd-U1!+m_+Vk!Ix+d$
z^0^m){D3yNMD-;g|AL9h`2s|7j?kpL*?!-L<kf5`ZP>0>G66rV;$M@+Z_X-z!0d8X
z(eFwzHv{k-)n!)!Dr>S1OE#FZobBBTs8y!C2=)q}RAUW?;F&5qFB2)Jp+ySil%wec
z`Zjgfq!~^TUtuzL(HUmTvPB(Mf}wfe#U&|oZuhQ7@cXnhXPWCg@F8YrXqS{gn(f}3
zWo>|J=b)<hIy^>wofjw&HKDF-r=iYAX_zG0p(YIaYlli7%+z$)&lM1avb*BM_3CS?
z$JLjG8l&7~xG^185ylXth{iuORGH^}Vn=3J->vG;g^KJ@HusV+I!I8{G6PiXOobPx
uM`ksSLk5$k8(jy#()nvu>3s-}H*%s)S5$xZ9sXUb+ucq4-Rrixt?vLV$_Q-$

literal 3968
zcmai1OLN=E5e5bz2vVR#$?|iZ4f5IzH(qL!%B!}rj=jz%<-}3BENvx=Lr@TAC_%!5
z9t<Um#mz;&x+<y4aS!rQ|0Kyzz#*5Me9h5^O}-wG66r?;tQk!Ayf8gqf8C5aowkAJ
zKW8_0{<&rt|0ZGnu_4?+DgT9v8{ABdfZi-MGZwJS3arcyY?E|W+Q^*1(QP|zW^Ul>
zb|Y<N?Vz141xuM1cv&atWXr*_?sL+WtQ&N7yP2+LYr&dsyXmEDJy<slv36nvmw#jM
z7H>Z_cw0CpR&WLK689i`TD}Uo!<Qj1Yxx@F72bv1)$(=7t9%XenwD=szQorduWR`o
zZf+U9%P(+7W3y*foh&*Kp%mq?$V*YJNRe|PLnX3d8YxjVrFc9NrRtfL`$&|<NX7zf
zuZ#vFER_u7Y}jj5mtrX}JdEO4lx3)j1CdwjQ>7FGY_K=gdizHT8$KQ-Qt+y~D^y6D
zgo|7y>bPo7HQ1%~c`4-Y3ocR!Z4$QPJ&{G!_34AV_kQ=_{?>L(N11;t2zOA*Yp8?~
znA`}Mu(-+DQ{%)8Y;M5>cIDB6kHl_LDj{PNgJ%yz!$G-+QvMm0GEPm!POaz0bMs46
z*{6+(x$itT<$JVhVsdN1whZW-(7VvzhTfj($L~(e)7EptH1KZIn>V<F-sXV)!PtUK
zKecq~={}RYiRl<$pywli4d2?@teP3@8tsbl2X}LSgb(+R61C^6y+~;>k22v$DQ<xu
z`{D`CRQ8j<;85fDU!MRICh4oA1HFa77Js}O$HgdDetm!3FGu=X2ctASzU4=`UoW7)
zAc|FT7^$Sl{WQrB{Jp63cZA6O68Gt=!aoLP>IwZ9|9~yWx9;aKcpjw~A`fvAA!Q+N
z`2&2E;54P)SD&lbsg~%tVX1GvveP2sl6<vtHBibTmmZ1TL6Y-u=QyO{WRA+6wSvy9
zPk(sTs9)VOIut-<$Ric)M5PF>;-h&O7x^HOnLbol4{a$K#bPIl531HsCb<g5leot!
zD^APGrhU!~`3-!=%ZD48;7PPmj&}AUF2r!-Gd_xI14TLaw~B!}ilo?hD2sg&t8(Mv
zvDz#0N1ttNN5f<To}!(s+@Mwa!{f>x7NsIAm+zu7*s|p@k4l4?uIV!Szl^c39m`>^
zIbQu7vu2>~)6C7YM&*VfStJarb{J*_AEngx!tn7ZN~b+baT=9nCh##_eiIw%^UPJW
zyIeta8KtBva4lwP&1*h*PNpAW*o6-Yo10(3W4QIyh9@?JHPzU>p*0S7fcIu)(=pD>
zs!2uwH^k(Uvxgj<igwTMqe1RDG2xnQ!pa*9E(xcdu;*|_a?oC5Q+6@_<q9qD=Y{eI
z06Oo#_!~Us#oy7@vuiZ9XNXC-M6@s}n~$>LnI+$WAm69zCRKFjbw%c>EMW4dXp}B0
z!)lwh>9Mg(+x5})_G9!h{O!k>uv0eW24a<lK8#ZzMv?_&57oG%j|I9EO7On?0J@%~
z&m(_;cCcP|g#%e+=b)D#()?G>;nX94iLO$IO;#TT2wT#Jsrxs3P5CXF{%xwhL)CXt
zRTex%(vjo_RTqovmIl)I(D4%#Z7J7eX4eInNE@RpJapH0Q2rmG>u~X)*iG^UHg8}m
z;ZegyqM?laDVq~ip0RmGCkV-bYEIa`OI&^e3GJ5rlWOC=#4T=PhNV0$HJ+JY+7oMH
zbLT5Ye7<FHm$woGS-ji0t0jF`-sYJpuVQb6uI4b3Dv8qVGgi6hVXvWMWY3gj6fldo
z5K21>F;w5IM)LTRFNzU3_fTjwPnioWDs^0wns;vb!&HFYd{Ah7Fi*(i_51l@lqQ@g
zR|nuIMcnu+yrI|8xR;mkIht?fI<<&uB@uwULKQ{H${m6@jta@E)-)OjE}PWD;63CC
zy@vLisx=~aCc3S?=V!FW&#AhAh(-tT&u>vm@;$>^vpjo^Ic(YVtYzl1@iKu>Uv<rK
z(#Np5MJ{mmLv-9nsR;`>lcaeKW9NiL+s_l$2{OStaUjB)rVct6!S=;SEkKP}iqNW|
z=A)qunt$B@#LQDh9EIQy`U5a#j8s|sDyc8?+SXj4_0wW^7dMGL&Ruy4OUh+bl@)Q`
zV>KJyChZ#xD4;LthKPvT=2){{{ngXR;JnFuWsBB(YXtZNy<|SUvdb7KPR?{tUp(g~
zC32WIsrEYLOx&h?Oq;a<a&{_joASm-b-K7st}=!Ff|1F<=l)FBMMfqAPt2)5!@v{D
z%4R11wfr%LNsTs5icAuzX^es(iP9@C9!Vs>N~aG&D;Gy~zWOG^=9n-wtV8_1I{)2M
zK;EGZE-pp4G_>!cBbzNi#OIolbY#<o=iGj;LUJ*Na+?BMrD^$Iow>;Ou+T!Rp|ywy
zH84L#V?Nf%kGVNvA()Rc+!;W@akgr38$9Rm#xus9iFJa^nKvmv#h$Ir?Xia)6|DB*
z_VG}RTS`1p8+$5C$5$4Ts39`fKI!F;u=fRh>DYxBqFIGPl>C?~N_HgqlBB!VOoO<*
z7<sGa9&%kF%Q+)!`%>6>f>Kg^Hdx!TO^5O%SekzJ*S3xKOS@J3!_;IHoi}@L_6N#g
z>S*?+`}`Gpk5DcMhBUpK@;Y8sV}PvcVD2z<6IDlR>2H@pQZ4Cbg4H7-55{7&+b;#M
zh`&NLyROw^=|2*zOMlO5a@E9I`>F;raRdH#(!Zs$Pduxw8hCZ$JXLjQ_ts8|L^j2L
z1kEKi&r@Qj!>{H??a>;Rl1?*c<8vTa?l0<0@;0JHZEe?FH$D7rx>S42vAceEy?dkE
H?zaC23_*v8

diff --git a/resources/user.py b/resources/user.py
index dfe8b92..b579334 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -1,6 +1,6 @@
-import traceback
-from flask import make_response, render_template, request
+from flask import request
 from flask_restful import Resource
+from marshmallow import ValidationError
 from werkzeug.security import safe_str_cmp
 from flask_jwt_extended import (
     create_access_token,
@@ -14,6 +14,21 @@
 from schemas.user import UserSchema
 from blacklist import BLACKLIST
 
+# extracted parser variable for global use, and made it private
+# _user_parser = reqparse.RequestParser()
+# _user_parser.add_argument(
+#   "username",
+#   type=str,
+#   required=True,
+#   help="This field cannot be empty"
+# )
+# _user_parser.add_argument(
+#   "password",
+#   type=str,
+#   required=True,
+#   help="This field cannot be empty"
+# )
+
 user_schema = UserSchema()
 
 
@@ -30,24 +45,12 @@ def post(cls):
             # if exists, then don't add
             return {"message": "An user with that username already exists."}, 400
 
-        # Then check if that user email is present or not
-        if UserModel.find_by_email(user.email):
-            # if exists, then don't add
-            return {"message": "An user with that email already exists."}, 400
-
         # user = UserModel(data["username"], data["password"])
         # user = UserModel(**user_data)  # since parser only takes in username and password, only those two will be added.
         # flask_marshmallow already creates a user model, so we need not do it manually
-        try:
-            user.save_to_database()
-            user.send_confirmation_email()
-            return {
-                "messege": "Account created successfully, an email with activation link has been sent to your email.",
-            }, 201
-        except:
-            # print(err.messages)
-            traceback.print_exc()
-            return {"message": "Internal server error, failed to create user"}
+        user.save_to_database()
+
+        return {"messege": "User added successfully."}, 201
 
 
 class User(Resource):
@@ -73,8 +76,8 @@ def delete(cls, user_id: int):
 class UserLogin(Resource):
     @classmethod
     def post(cls):
-        # get data from user to login. Include email to optional field.
-        user_data = user_schema.load(request.get_json(), partial=("email",))
+        # get data from parser
+        user_data = user_schema.load(request.get_json())
 
         # find user in database
         user = UserModel.find_by_username(user_data.username)
@@ -125,14 +128,6 @@ def get(cls, user_id: int):
         if user:
             user.activated = True
             user.save_to_database()
-            headers = {"Content-Type": "text/html"}
-            return make_response(
-                render_template(
-                    "confirmation_page.html",
-                    email=user.username,
-                ),
-                200,
-                headers,
-            )
-
-        return {"message": "User not found."}
+            return {"message": "User activated."}, 200
+
+        return {"meggase": "User not found"}, 404
diff --git a/static/confirmation_page.css b/static/confirmation_page.css
deleted file mode 100644
index 5a74cf6..0000000
--- a/static/confirmation_page.css
+++ /dev/null
@@ -1,5 +0,0 @@
-.full-height {
-  height: 80vh;
-  margin: 10px;
-  background-color: aquamarine;
-}
diff --git a/templates/confirmation_page.html b/templates/confirmation_page.html
deleted file mode 100644
index 4eb558e..0000000
--- a/templates/confirmation_page.html
+++ /dev/null
@@ -1,31 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-    <meta charset="UTF-8">
-    <title>Registration Confirmation</title>
-    <link href="{{url_for('static', filename='confirmation_page.css')}}" rel="stylesheet" type="text/css">
-    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
-</head>
-<body>
-
-  <div class="container-fluid">
-    <div class="jumbotron text-center full-height">
-      <h1>Thank You</h1>
-      <p>Your registration has been confirmed through < {{ email }} >.</p>
-    </div>
-
-    <footer class="text-center">
-      <hr>
-      <h4>Activated on: <span id='date-time'></span></h4>
-      <script>
-        var today = new Date();
-        var date = today.getFullYear()+'-'+(today.getMonth()+1)+'-'+today.getDate();
-        var time = today.getHours() + ":" + today.getMinutes() + ":" + today.getSeconds();
-        var dateTime = date+' '+time;
-        document.getElementById("date-time").innerHTML = dateTime;
-      </script>
-    </footer>
-  </div>
-
-</body>
-</html>
\ No newline at end of file

From b2f02e88e7f15fd4b885b6c6b1bbd27b6ebe2275 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sat, 5 Mar 2022 20:26:29 +0530
Subject: [PATCH 36/42] Re-added confirmation page

---
 static/confirmation_page.css    |  5 +++++
 template/confirmation_page.html | 31 +++++++++++++++++++++++++++++++
 2 files changed, 36 insertions(+)
 create mode 100644 static/confirmation_page.css
 create mode 100644 template/confirmation_page.html

diff --git a/static/confirmation_page.css b/static/confirmation_page.css
new file mode 100644
index 0000000..5a74cf6
--- /dev/null
+++ b/static/confirmation_page.css
@@ -0,0 +1,5 @@
+.full-height {
+  height: 80vh;
+  margin: 10px;
+  background-color: aquamarine;
+}
diff --git a/template/confirmation_page.html b/template/confirmation_page.html
new file mode 100644
index 0000000..4eb558e
--- /dev/null
+++ b/template/confirmation_page.html
@@ -0,0 +1,31 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <title>Registration Confirmation</title>
+    <link href="{{url_for('static', filename='confirmation_page.css')}}" rel="stylesheet" type="text/css">
+    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css">
+</head>
+<body>
+
+  <div class="container-fluid">
+    <div class="jumbotron text-center full-height">
+      <h1>Thank You</h1>
+      <p>Your registration has been confirmed through < {{ email }} >.</p>
+    </div>
+
+    <footer class="text-center">
+      <hr>
+      <h4>Activated on: <span id='date-time'></span></h4>
+      <script>
+        var today = new Date();
+        var date = today.getFullYear()+'-'+(today.getMonth()+1)+'-'+today.getDate();
+        var time = today.getHours() + ":" + today.getMinutes() + ":" + today.getSeconds();
+        var dateTime = date+' '+time;
+        document.getElementById("date-time").innerHTML = dateTime;
+      </script>
+    </footer>
+  </div>
+
+</body>
+</html>
\ No newline at end of file

From 3daf4391641e0711c9ca9b17fe54ac31fc411dfc Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sat, 5 Mar 2022 21:02:59 +0530
Subject: [PATCH 37/42] minor changes

---
 database/data.db                              | Bin 32768 -> 32768 bytes
 libs/mailgun.py                               |   2 +-
 models/__pycache__/user.cpython-39.pyc        | Bin 2323 -> 2323 bytes
 resources/__pycache__/user.cpython-39.pyc     | Bin 3546 -> 4064 bytes
 resources/user.py                             |  33 ++++++++++++++----
 .../confirmation_page.html                    |   0
 6 files changed, 28 insertions(+), 7 deletions(-)
 rename {template => templates}/confirmation_page.html (100%)

diff --git a/database/data.db b/database/data.db
index 49549e3aaae37ea9947260c45bc125a324d468ab..6f30f8c989a1c5af9e1e410a63965a3629a38b5e 100644
GIT binary patch
delta 141
zcmZo@U}|V!+Q25ja-M<z{ANLgqx{zTjBE_@uA-d9rAZlyDXFOia7IdgX;MyVa$<o)
zdTwH7j$U$puAz~!2^Rwc10(-u2L8{R1sz`Ui}NtcBQ!%KA29Gg0GfV{Ure6a6(I>X
KaPv2NE(ZV|C@hTt

delta 161
zcmZo@U}|V!+Q25ja+HDp=w?BI-TbbWjBE_rzM`DDiFqlBImM+(8Hp*WsRg-}#i==I
zdI&yP+95qRF*8RmIX~CX$k>F7fq{XM|1AUm+s%RwkNIVVn6=T3fhf7dz<+16pu#17
RDP?9~PV7c+{$|hR002QnG-Ch&

diff --git a/libs/mailgun.py b/libs/mailgun.py
index 7e27e92..cf15396 100644
--- a/libs/mailgun.py
+++ b/libs/mailgun.py
@@ -14,7 +14,7 @@ class Mailgun:
     MAILGUN_API_KEY = os.environ.get("MAILGUN_API_KEY")  # can be None
     FROM_TITLE = "Stores RestAPI"
     # FROM_EMAIL = "Your Mailgun Email"
-    FROM_EMAIL = "postmaster@sandboxb3ef8f2c0e20406cb3f834bc39735ab4.mailgun.org"
+    FROM_EMAIL = "subhadeepdoublecap@gmail.com"
 
     # This method will interact with Mailgun API and return the response sent
     @classmethod
diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 7755611268075aa0680f397f9c5aedeb5cc0321f..223a9c568ee02e98446a8af998a56155e8440c1f 100644
GIT binary patch
delta 20
acmbO%G+Br{k(ZZ?0SI1{D{tiH-~<3Ia|9{?

delta 20
acmbO%G+Br{k(ZZ?0SK&|<Ti41Z~_1)S_47=

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 5d2448aa048e65be33ff1891a9f07579c1b5a55a..151214814236d3c2d4a39f099c2779f7470b1e05 100644
GIT binary patch
literal 4064
zcmai1OK;rB5hk0Q8O}=@$z%Buuft@M-ONTAZ4xBN)3MgD10#-NSlT4!Aq2(lktp#o
z+w8Hd!FUnC29k?`1jum@@=^a}_b>38lm9>tK5X(;b4Hr+10m7HuIhJn)mO!!-EJ6o
zzWVF?yPI9Z_%|{0j}7J~O8y@ZZg4X;64NtHs<W6SmS^d@728S0tLVBNSCg7o)AdU1
zBz3QzG`vRA^qNV_Yb9;3t=p>clDC9;YM67`TTVJ&=WK2#UP)HHRo$;1Ur4%MSJxZy
z#bnJ}GY!#wYIv7^Yw#v-Ju`SqSWhkQGWa%M0>7mBE8v%T2Yg5KSHZ9FRq(5t{|5LA
zybHdo`D@@W@-^^lntzX1w~gMVmpHr8GmDxOpN&MWP<0-NJR8YSpuYUaAdYyTqAa~F
zWhNnN<-tJsxsraE411O0LMTO`gdc>V$a7z1haxSyQ=t?CDf0cPv~_T#d|D`yf)|}V
zp?s1=T%;;e$3<-_+3HzEI|&X2I_JYI%|)>+MaqTrl}Ls$mXoa9cm2~`$lqsN#MoMc
znC)<1BmubkC-*jQ{qEk~?VXSgIsaH-ZldIuL4@I%-0+yNxXIZw<EiP{+=6oKqD2!v
z5PMOM6+;u9XAdo3MY)BNe-5II6H~Dh>xJ>cd}1p5q%tuNsxM6W0nHkj+#0ZL1M(W=
z4&*l=w`cP4^@({>e_@ygz76{F3a_HIHei1;w!zb@nkOyYW^yMotHwjLd<=8NUh7*$
zErI@nJu&`hGj&JUxO)_-eOK)VO0#K@2semvTm0A+k8!5FAN>P|8h`la0H`pEU+?Yd
zB?OlE^JW-kqg1)&J##l7>FXbi;`n&o4N|w9K<^+3RrE;PkQ+zop}QaC?yeB2o8#VH
zmAS_-w{k%L<yX+<c>Qh)g{MJ`F7gphBFOmG-2pZwI1MS+)#vK9izXe{&-Kk0cAN!V
z+ehJOgUYj1wlQtd8AK`fcaMGQPU<L}S<P$D+VsYYO8M#J!6O0d_2C1-ZjcM_5;o2K
zFiQuKO!T4rvTI$*AQZbncv#ejGD?*%9)~?vSYezOHm!4N$m`g~tNR;?;8C!Vk9PM1
zF2r!-HXnthf`XL0+u1-J1yXF>m)U^`RlafmSnX%&gWKCX!7$o@Q)vIpH)z)W@VKyt
zS*||9+&L{^uqCU-S|&<`nU3i&`@f8_ud7y-Ip%ofQ;eD!b)QCVomL9R_emqZUo?C_
z$@nOyddv4e8wK&Sr5VOSo+kpE;nKxI`aE;wn<VRie29`0z&aK)wd4&SJcHkl(e2y^
zh0V<`;4$2KX2TOJ!kS8KUeS`O2CiCR(=kqgT%-hGNJuU@d&t45X!racD&(FM6Ryc7
zEWf(ol5pAydjV%82klk1<O=$~TBhmUG*j*XhR*vh{{>HZ`6Zfqc4<wGnZ-n0UVyx?
z`6wBlTJjngNsG$&h|rakgw#`5u*o~9<PL~oHB1{9HFjvZKAPTrj6S-*`xp~;!lu|j
zs8Z2~sg{S4Jq(p(ALF(@7T{7S!Ta+2ko7Em9=VRX*Dag;fy|OKqnEVw>*uJJJ^z5F
zTnAcK9t9TG)Q2hCw|X`CZ5sYQk?#=sE=Xa)L*xdrbpLacYjtTu`Tz~LQM9HUlbIa{
z#zfK(W#OT_zKQbx09}WRd)Z!;E}(e@L&+Ysxkyx$aWF-5GL`3S9?{8!<UrLX?7$%`
ze+mxuy8Mf3;M?RDw=u#}EzMP)n@{YCHL-d13r2XpZE%OzBU67HxT~hVtJc=3DJdQy
zbk&A|R8bJ`oU+0>3y&2YOM9mLDfMDSYa!&e7h<ixS#8PVUq8%7z}!bdTk{mTfTB{z
zHK}oD-5tgP@a6(S!^3$%9(V7ik0=Qs$kl;5h!Hpb32*4NwcSf3SBA!0d68-awQ`Nf
zB_gET!WjZMjxx!M`ZO8{E-8K%4Bk^irB~5@Q`AS~&IGrm_xz0J_&Je9KhpT)L7uOI
z7}l!QvR7G^EtxHAi8*Y%L`JBuy2Lp7t;I>s?d(Trc!*L07VJ!t<P94;11uUj4_Hr;
zJC=z90oF8i(76bf&qiv&)Ci@>TD7UUs3?QRUol`}<_RN=LhuLt!7yfsR9FWpDlhZ$
z_FSNK<7{saH;FaQT$x-^E`t<Sz<H0AX!IMBzD0o}$aA^}0-}aF)~HwRdKww3Z}VPB
z*!AuRaD!&0LNhyz0pcXd-mOwXh<TN2uS3qnZOX^AS}OqOYSG%E{PIDWR_>6iOwE2l
z$)w;jf2L!Tl1af6bL!7f@Px9mnTqeopP-x6)}}#`$vO$>1OP~a^r97xB+^i&(+97f
zilZ{GeVbxG$AGC~tAy_>^ZT9}<R&dZyPG2#_&$N`$!r1wKF5?Kd$;~*mPP%|$53ul
zU@J5%-zqZ~NfCM>){wr)SG8f@L1jMH$X{@C!h9efWw<i~1;*K`!foJOl~<lKUY+1q
z1-MqD{FK)<t~IuH#x1O>pt&FH91q2~uEb-tv9FSNyta@?4UxU}NiKhk^)-Z1%DJ}(
zWGemnJRs|EhS;LfhC-M8C6OycnnYSe2!Rl<7b9{}+eZ#8Wd6F|DIEPBC8z!dYgo2f
zrThsuK(GC^ZR7jOu9to?RV793t=`-H<cFB2jB;<gX9{kALpcW?lJu?@l>rj1!!n0$
z>pJ}jDP-4@OuJ|%fz0=lAda&mNf+m>90_?i7Nfm>E?}nkn<{~KwH!^qSx`FtLzTFz
zF}HMMZRZ*`u41Nh<>8l>{;TpnA+px9*D6!&sc4C|Qs0e{^2Yd^(5O>J1WEyQpw>vL
zeP0`}r1Q;bT`NUrMb59vobv|aijlh@$Y1q)t>&0rOV?MbcISGh+qv3lbQ=EyeaNIE

delta 1688
zcmZ`(&u`;I6!wfA$8j7dY0{rbw<&>wciSKk(!v&1f;}vUB^-8pF^Aw}oYcihma(&_
z*;F}nuPafF-~>|l*uR0lfEyPsJ|S@egm(V~-kU&EAS9a4^UWL2dw%bG^Yd0xvAtZ*
zRN(jIu-g8qaBf#ga(?S@+RwXrqA-P}!$QC47UkRsm-;2QL=?Yxrnu#M3d=C_slrTO
zJyYFf;8|t?w<KQyo?|v}Tk=)lc~$^kkbDhzku3pVl6)O_iIstu{VX21!ImE=&WhL}
zUyEPJ)YKr%yD*|VBBajBgj}SbD-f8*QUPIlm%{F}ctQ7Xy6L_jMSjm8uN_7{uX&95
ztQL(r9a!#;!tkW=>kn{}V~F3?I?0N>wpC9Gk@whd#lsf!Vz2E*zC#nW6Gn+Pf<rD9
zzAnDeJ}teDA;_FjTeYZ_GN@QfeY9JFb-w;j*g$Fnyb2@24=_|pxGlcQZi>s)ImwHC
zefxtf7!tD^3|Omu(h3+a;)2FT{YRH7Uj@SJ2x|y)7kGN2_Wbxg@tuC`<<W|c_-g>;
zocwg=hkop{2H$}-N9E{><0rV~nW@#~!~WGLa|iAJa-q+5ekhL8_2wpSxPh>RPy<NR
zU=Z`0NN*v`UzanPgl#aq3nMZB3_?l4fJAIVBFf^A^nEgbnpUQ#bV7MMPEY8uF(Jps
z88Db<xEq`B%re60GkU7VmSpNPa;i<#iN>^VDNCUOn9kAxkxv6uk&&t}n-4E(Vg$?|
z#6f(Lq`KUXjvT_@gkYe`mM4|b62BSCIwp$eMJn^z7M6i8Ay9-8f=pl;XUpPgrg4DP
zNiwJqnZ#L*-a`A^2=iRXG@wX6h7sYZifW6OneE*wOs{R6Cv6W5_hHPG14-k1;zw&w
z9GksEtoC^A!8J|S!eOrmIv<YWt8$}Gc@7{^p$Qy16B8EVn!~Hej>Jy3es4jAIaZDT
zuflJGwF@KC0SrosM)++g?Zu4-z9+LG^+$OI7jPSBaaA;}&GLc_eIce+y>SP(&aLyb
z?1SMEjF~$~i$VB4B<2(C6<8H7QybHFU=k}AWI~=3DXKRZna~!<>q3>624yP9Lz9w8
zF&*Y<DHWsnkjvEOXE#SD4jy|~4TKj<uLoDd*p}wOFs^lnqXCmG=V*Vo*Aybh5cmqh
zf}WDy@&t^L1)xw<)rbz?VbQU4e0MnL2E5;Z=59JVUsRG^JX$v0e{)n(_yL&5Fy`99
zm8Me>-`ihK-E4mdT^%)0xH4+jiaJMr-}`F`!%8yk(Cd6222m_EB(EiTopEeuj`HMK
qdyW;69v9UsG2RDfqtHJfuq{HhS1mI8R}J|r>RO=;|BZrKF#iO298WF)

diff --git a/resources/user.py b/resources/user.py
index b579334..c71ae00 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -9,6 +9,9 @@
     get_jwt_identity,
     get_jwt,
 )
+import traceback
+from flask import make_response, render_template, request
+
 
 from models.user import UserModel
 from schemas.user import UserSchema
@@ -44,13 +47,23 @@ def post(cls):
         if UserModel.find_by_username(user.username):
             # if exists, then don't add
             return {"message": "An user with that username already exists."}, 400
+        if UserModel.find_by_email(user.email):
+            # if exists, then don't add
+            return {"message": "An user with that email already exists."}, 400
 
         # user = UserModel(data["username"], data["password"])
         # user = UserModel(**user_data)  # since parser only takes in username and password, only those two will be added.
         # flask_marshmallow already creates a user model, so we need not do it manually
-        user.save_to_database()
-
-        return {"messege": "User added successfully."}, 201
+        try:
+            user.save_to_database()
+            user.send_confirmation_email()
+            return {
+                "messege": "Account created successfully, an email with activation link has been sent to your email.",
+            }, 201
+        except:
+            # print(err.messages)
+            traceback.print_exc()
+            return {"message": "Internal server error, failed to create user"}
 
 
 class User(Resource):
@@ -76,8 +89,8 @@ def delete(cls, user_id: int):
 class UserLogin(Resource):
     @classmethod
     def post(cls):
-        # get data from parser
-        user_data = user_schema.load(request.get_json())
+        # get data from user to login. Include email to optional field.
+        user_data = user_schema.load(request.get_json(), partial=("email",))
 
         # find user in database
         user = UserModel.find_by_username(user_data.username)
@@ -128,6 +141,14 @@ def get(cls, user_id: int):
         if user:
             user.activated = True
             user.save_to_database()
-            return {"message": "User activated."}, 200
+            headers = {"Content-Type": "text/html"}
+            return make_response(
+                render_template(
+                    "confirmation_page.html",
+                    email=user.username,
+                ),
+                200,
+                headers,
+            )
 
         return {"meggase": "User not found"}, 404
diff --git a/template/confirmation_page.html b/templates/confirmation_page.html
similarity index 100%
rename from template/confirmation_page.html
rename to templates/confirmation_page.html

From ee467428552235d378f1f0e3fa61127e60e5604f Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Sun, 6 Mar 2022 22:46:02 +0530
Subject: [PATCH 38/42] minor changes

---
 libs/mailgun.py   | 13 +++++++++----
 resources/user.py |  5 +++++
 2 files changed, 14 insertions(+), 4 deletions(-)

diff --git a/libs/mailgun.py b/libs/mailgun.py
index cf15396..5ec6ea6 100644
--- a/libs/mailgun.py
+++ b/libs/mailgun.py
@@ -3,6 +3,11 @@
 from requests import Response, post
 
 
+FAILED_LOAD_API_KEY = "Falied to load Mailgun API key."
+FAILED_LOAD_DOMAIN_NAME = "Failde to load Mailgun domain."
+FAILED_SEND_CONFIRMATION_MAIL = "Error in sending confirmation email, user registration failed."
+
+
 class MailgunException(Exception):
     def __init__(self, message: str):
         super().__init__(message)
@@ -14,16 +19,16 @@ class Mailgun:
     MAILGUN_API_KEY = os.environ.get("MAILGUN_API_KEY")  # can be None
     FROM_TITLE = "Stores RestAPI"
     # FROM_EMAIL = "Your Mailgun Email"
-    FROM_EMAIL = "subhadeepdoublecap@gmail.com"
+    FROM_EMAIL = "postmaster@sandboxb3ef8f2c0e20406cb3f834bc39735ab4.mailgun.org"
 
     # This method will interact with Mailgun API and return the response sent
     @classmethod
     def send_email(cls, email: List[str], subject: str, text: str, html: str) -> Response:
         if cls.MAILGUN_API_KEY is None:
-            raise MailgunException("Falied to load Mailgun API key.")
+            raise MailgunException(FAILED_LOAD_API_KEY)
 
         if cls.MAILGUN_DOMAIN is None:
-            raise MailgunException("Failde to load Mailgun domain.")
+            raise MailgunException(FAILED_LOAD_DOMAIN_NAME)
 
         response = post(
             f"https://api.mailgun.net/v3/{cls.MAILGUN_DOMAIN}/messages",
@@ -41,6 +46,6 @@ def send_email(cls, email: List[str], subject: str, text: str, html: str) -> Res
         )
 
         if response.status_code != 200:
-            raise MailgunException("Error in sending confirmation email, user registration failed.")
+            raise MailgunException(FAILED_SEND_CONFIRMATION_MAIL)
 
         return response
diff --git a/resources/user.py b/resources/user.py
index c71ae00..9dc76a1 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -16,6 +16,7 @@
 from models.user import UserModel
 from schemas.user import UserSchema
 from blacklist import BLACKLIST
+from libs.mailgun import MailgunException
 
 # extracted parser variable for global use, and made it private
 # _user_parser = reqparse.RequestParser()
@@ -60,6 +61,10 @@ def post(cls):
             return {
                 "messege": "Account created successfully, an email with activation link has been sent to your email.",
             }, 201
+        # Delete user from database in case of any Mailgun error
+        except MailgunException as e:
+            user.delete_from_database()
+            return {"message", str(e)}, 500
         except:
             # print(err.messages)
             traceback.print_exc()

From 1f1b360390a16ad248e95c917a958d7346ba9977 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Tue, 8 Mar 2022 12:03:49 +0530
Subject: [PATCH 39/42] Added confirmation model and schema

---
 models/__pycache__/user.cpython-39.pyc    | Bin 2323 -> 2691 bytes
 models/confirmation.py                    |  48 ++++++++++++++++++++++
 models/user.py                            |  19 ++++++++-
 resources/__pycache__/user.cpython-39.pyc | Bin 4064 -> 4204 bytes
 schemas/confirmation.py                   |  11 +++++
 5 files changed, 76 insertions(+), 2 deletions(-)
 create mode 100644 models/confirmation.py
 create mode 100644 schemas/confirmation.py

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 223a9c568ee02e98446a8af998a56155e8440c1f..4dace0a2f35a79d6396288f2e99f5d111ca4a278 100644
GIT binary patch
delta 1378
zcmZ`(&2Jk;6yKShU9TN`V>@=752vx(P`afFK?PKa0+os=q9PSUaPY;fcP7bN>s{;3
zMvy2~4haV&s0e#OqKD*y6!CX(=Dv3%xN}2%ycyS$6^R+mPxIcq-`jZ~vswM5>H3vQ
z$-wc;gPZ-Yi)U_|49;G8yv7Y~N0p)5b&2uF;05lS8r%`3!R(3It@7fw;g!ywJ>K+4
zUVE6tJ0T4HG)&@;5-y@ZIh-CA3J-9}-_QQ+AD4NNm-q}Xe`|It!bPd_oN$-Vp0X3t
zofTD4!_QZrQ(ohBt*fJM4s~;=Yw)JlHD1`wqprmlw5}=UwXa3KbjrFdzO1D-UqNZ%
zg><dVS5aK#%NRo^`<1+R?BdlxWg#!{gV-O2!C~ExqB|XoMWkXqfzh5Hdo*W}e|V4=
z0$&C`7Z|$@BHf2LAV{7JwO0W@#3dIHj*NkEPEvYqrfgtckPC8dUl`lQCE4-{c{!NQ
zU+yHp1@!s{;2<?;T*yG*ty>gdjzSPUKg})7w@fcd&ZLNTE)8gBKho{b7KVvTdmsW4
zr@dgRDs6QYieS*g>z_&ix=b7YXO59N`)Gx!5YWh8HSbYa&4#pf7Z%Y69-BcVVHNkF
zT#sP|cX@Ruj5*%EH{o}_H#dm#@%Eh#8h8|LD8@?)u5e2eZphcNAI#gDcJB?irEEJ0
z6S7uZAy+13G4#XeR<_A*WL>tj^a=7(V?eNb$X9gHNGYdS5Oct?Z<x1fo!clCcF7Sv
zGLP5=!=@;1{qZjjm{*^~hMdl1_8WV4-vJwsFh>yeAW2dvpa|C#+*D9R=$53wOz7L_
z2s{gxQJ?*6wX0X|-pVR=Yi=D+Wfj3NT|$Zdk7H$jS$zwdiuSp^QiCPjO=m6p&Tf*o
zvY%}K17+kf-8AqT?sI$Gyl_`>t`e0&V{Fjdfn?a@e(LvqDc;SV6xPX7_O$Tfv5F<P
zw^In?-Epy1;&W%@OZf%1X<h~q=~plJ!jVoF9zrq_kRIrC<TF8p#zT?rB|JA}3b3YJ
zm|>j4%eVti0aLK4;B^IWDrg%YYn*`UE|@`3?^NDKa40jYWFBXOGE5lGzio$-s!2(G
zvY6|-O!Kz9TK3d=Kg!Ed*q0lsOLq6;ajoWt>bE5~rYk-EAz1pQXa`e?*Y(r=?%YS}
Tek9&euU?iBsstx36P)IM?=MUg

delta 1037
zcmZWnJ8u&~5Wc<Jd-&}*ekKkGx#2=$f|LM}PzsPhA|i?uLE!@H>|KYm&UdhPP87*f
ziiCm!Bx^gA0?L$BG)Vjc3L1)SpoG5w1<amoh{B%syPa?6o7tJ&qY^J<olGXF!1%u3
z=sYsV**bbWzOq@prx1gf#|klNvY$E9T3KT4D0X7}dUO194t?Pz)H&2C?x%@P5--(O
zhGuDwC?t8Jk`zfF<0I6{12+R)2DmKA#av<Hmj`Z!6k=|c7Rl@hB1KX<#;p=5$5w?@
z!75Lz8kqyDLdtN8d69S+QpPQHqmhBL+eny%_MD*?*{ZOHu;)7iDhx)WA@lh!eEsSS
z_?>D(e>SA-KqPvu7g5&k90<MVvQX-@t{1Y{O<`4TX*-2{&-DrTw5Jh^d<{2Ifxpvk
zUK6TI*sRR1vI_jzyoBmssKH7krx9FI<)83ktX*HdAid6NW8$1PGu6_8<9c;Y^~So5
zSOK(M1TY;sEDV@;V20ZOk<v%db@W`VDUnLlk<!=r2i;!5Z**82yJ)12v=M%b<&AFr
z_zk0#k~MY%AG$G+{gfsz8LuiPlfj{@%xkkCh?of`tMiXWDJ_p}>jH<=>+!Efef3-k
zm5@RMCsCcq4g7Xo%q7r;@w3zFDqk}@+9}%NC+32EidaL&KNlz;I(xJo1#RL)PR9x9
z68~m8O<U&2%#w;l0AUd7QMlM8$t+7a6Nm>^4XyAO)-tN{_tyQxdMw$AnCtJxH_v22
z!g}h2;eNn~FmDHeM;%`zoNnaqIT0ly)%9R|K%*xC5n32AHYY`z>ql%sX1pi?OSmkd
zDPcvzzoW#f+6_s{E+k-vGPR{*Esx6Z6;WPQQ9+wboK0nM?7L;>_~*pk?N-`zJ7H5k
ojoqQoWC)=@2%!Gh?Z0Gl-?}vj$k3x3^7+L5&m;KMG)ilK05kyhz5oCK

diff --git a/models/confirmation.py b/models/confirmation.py
new file mode 100644
index 0000000..5bf94e5
--- /dev/null
+++ b/models/confirmation.py
@@ -0,0 +1,48 @@
+from uuid import uuid4
+from time import time
+
+from database import db
+
+
+CONFIRMATION_EXPIRATION_DELTA = 1800  # 30minutes
+
+
+class ConfirmationModel(db.Model):
+    __tablename__ = "confirmations"
+
+    id = db.Column(db.String(50), primary_key=True)
+    expire_at = db.Column(db.Integer, nullable=False)
+    confirm_status = db.Column(db.Boolean, nullable=False)
+    user_id = db.Column(db.Integer, db.ForeignKey("user.id"), nullable=False)
+    user = db.relationship("UserModel")
+
+    def __init__(self, user_id: int, **kwargs):
+        super().__init__(**kwargs)
+        self.user_id = user_id
+        self.id = uuid4().hex
+        self.expire_at = int(time()) + CONFIRMATION_EXPIRATION_DELTA  # current time + 30 minutes
+        self.confirm_status = False
+
+    @classmethod
+    def find_by_id(cls, _id: str) -> "ConfirmationModel":
+        return cls.query.filter_by(id=_id).first()
+
+    def save_to_database(self) -> None:
+        db.session.add(self)
+        db.session.commit()
+
+    def delete_from_database(self) -> None:
+        db.session.delete(self)
+        db.session.commit()
+
+    # To check id confirmation has expired
+    # When a method only returns the status/value of property, it must be given @property decorator
+    @property
+    def has_expired(self) -> bool:
+        return time() > self.expire_at
+
+    # Forcefully expire the confirmation at current time
+    def force_to_expire(self) -> None:
+        if not self.has_expired:  # has_expired() method is given a propeerty decorator, so can be called as an object
+            self.expire_at = int(time())
+            self.save_to_database()
diff --git a/models/user.py b/models/user.py
index 60fddb9..cf3d739 100644
--- a/models/user.py
+++ b/models/user.py
@@ -4,6 +4,7 @@
 
 from database import db
 from libs.mailgun import Mailgun
+from models.confirmation import ConfirmationModel
 
 
 class UserModel(db.Model):
@@ -15,7 +16,18 @@ class UserModel(db.Model):
     username = db.Column(db.String(80), nullable=False, unique=True)
     email = db.Column(db.String(50), nullable=False, unique=True)
     password = db.Column(db.String(80), nullable=False)
-    activated = db.Column(db.Boolean, default=False)
+
+    confirmation = db.relationship(
+        "ConfirmationModel",
+        lazy="dynamic",
+        cascade="all, delete-orphan",
+    )
+    # lazy=dynamic means that when we create a new UserModel, confirmation is not retrieved from the db,
+    # When we access the confirmation, then it it is retrieved from detabase
+
+    @property
+    def most_recent_confirmation(self) -> "ConfirmationModel":
+        return self.confirmation.order_by(db.desc(ConfirmationModel.expire_at)).first()
 
     @classmethod
     def find_by_username(cls, username: str) -> "UserModel":
@@ -33,7 +45,10 @@ def find_by_email(cls, email: str) -> "UserModel":
     def send_confirmation_email(self) -> Response:
         # http://127.0.0.1:5000 - is the 'url_root'
         # url_for("userconfirm") - this must mathch the name of user confirmation endpoint
-        link = request.url_root[:-1] + url_for("userconfirm", user_id=self.id)
+        link = request.url_root[:-1] + url_for(
+            "confirmation",
+            confirmation_id=self.most_recent_confirmation.id,
+        )
 
         subject = "CONFIRM REGISTRATION"
         text = f"Click the link to confirm ragistration: {link}"
diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 151214814236d3c2d4a39f099c2779f7470b1e05..eb492b40294045fa1f73b04486add3219726bdeb 100644
GIT binary patch
delta 1488
zcmZ`(&u<$=6rP#gtk?E>vraa(n<nupP7B*OCiE9-2_Pl36$J`XKvfMQIGK&(YHe4u
zYbmt~kw}gO5sienR0_xZ0|>-Fz<~o2w^fC>a6o_%5?ou}8&`Ew1+U)c{pP)ydGozD
z`%CE$&#vck83Mn5f0|jH9ow}h7^AzD&$c+>*|5+m){2w_?l!3%ze>2pb326R0&QEX
zjRUv&Fz{i;PXKp#9(Z2y3E(4q6!@s(lfYd*27FBMDd5L=0eC_25;vBKU;GV|@u{4n
zKf69noHy&uu+eQ_-dqcA$IVV#K1f}Zud;DlgE-852`u_XhOGX+PU7sHFDdzmQPP{a
zOZTj=2qm1xxw~weZZK}Hvm3-9HwlNBkJ<9$|9ObQC${&7`!jgDNilAj%tH+1m63n3
zAGGE_RDP>HPaXNYw&Mv0woY6ggh3pvtcy--h1cWyYCQ@PEsBNg=!H=&(bmE!(YsL~
z5*q9iF)hE)-}7fN?HK^VY|Ua81sh`2q$blJF~%Mmx(#fGN_Xgu3I>Yl!%#+=2Y41N
z(g943QIVIQXD8+U&@LU3FB)g&U2r5i@3wC5YoY{1R1iFb!HT$8qBVl}b$Q>o_4WvQ
z=Mbs@z1+Kyz1Ke|uZrhj%-2K?{qqPX5Y8YxwW86V^N!p|m9L+|fM*aeW8niNTC*LC
zvq;Y&45q6$b;Q%)xCR!P048PBG2xh};h3)cGxa?^F26QU(o6DzSvD{;F(QZ3AC~ak
zVhn*H979kU7x1kpchc3fC`XdU(x}SyMOi@qO9+E(R3cb}75QtrQaO3pJIM6{I6eUD
zmjiMY7vzuDoV=B3c&KTwxZGV^3!-Sf8-{nhu+wM+-0O5>5LN!2DNLyXEgfF|$>u$I
zDqFsKgp2~E5&zpHi{RY^iwpo0F1Sv`BIvg_brI*O1FM=ck;VZGgZh@_b!*Z+LWFI(
zWtFR!F?8S^h;RiQpMdqZ0})Iru7C`0(OK!`?r*(-6LG&<sueUEa9w(~YOr=E_SQSy
zHdkHerw(-3D>!EyA&X!k6ajqwsh&<!8$q21B07+o5)hm0Q?N)b*ypbuCE|HpRQ2Lf
zr+N*%_i(<tX;@ku@jdySy-6qKx#7jFniV!zqiU=F$x@#Oq1q5{slYxK*dSsN0aa2<
r97yzuhKae*>hNwDyi6f1!g2UQsAnQ&QdfJ-@`mnAJFYYCWSq=@yg(LU

delta 1333
zcmZuwOHUI~6rMXXOlSI>!a#YHQmKF=wLpnP#9+W6ffz9%CQ?jl;f@IM&^v8>M9~Bi
zT@Vv;7j7icrE%epaAo4k<-|l?ni!XC+<49{ae%aw^Ywn`+<WIckNKVc(Ge|0B0&j$
zpPy$I#;o0FQr?$#v#*{x)|OOAOiDCF!`l)KJIa<)Xa*jkQQ%R*TY$%?3EULC6?mN1
z1Fsjn4R`~!fLnqmfj817;7x+JQ*BnV6TeV^O}qee?pGYQ3`;&izVcpqHY!6%1G@y~
zZt@+u)JY_K%AvR6ckoXM)t8AT%}KLTzeE9TgHI`6c&pk+B79oi=6}?LDSOJ|s_Us0
z*J1A^mg3EI^V(^=G{qm)C5gh{)LqG@!NF2Tp#!N2&;#bG0J<U*X7X#g#oNLLAJBG5
zoPW~t{S6TGR9acP_g-O1AnX)EJA!{JUg#-HPWdwL3apgk7_|{l&f~~+P?)C9s#A7o
zj`f1iR#*h%S%8974Ha**jkO{zl}igHIFQ5mu~%r-oiqG<Aak`7H)Ie_B6I<G%JO=d
z^&#y?@Q;g?$h#W?6JV|mpc9#xI^^CBxql<g{EX2>hWM<J(NHFf^C!lw4lDw*5U_Ww
z5kbgr!c~I*HFASk8_&RAh!m<7I*0LL1Yd~|kp^FZ-wbB6Cyqvaop}h%fmQnhI$2)y
zXFk%xe+HMJKU1O9&_OYA;8_g7Q%aQDa<x?#(Ocuq6}}hBOxCC$!<w-4(PO@(Q3$wb
zIKH|p6P2*hgQ3}(Ig7_c#zK_L40PaD=(Z?Nc(KBmvtBM@nF_|b^PpJXxa+Lf(zwa@
z!<pO|Ug2lpOBsj2Q?RNOsE$t9_(6R}NDqG<+0zE`a4$a}ZNGtYXb1e6V<Q-AK?os)
z5fT8ldTh$Qz#XSV9p)aAAzFx2_L6^$4o}xA<N#hM2C<fUoWB=fes9rZr+7a0khJm-
zvGElqh7Lbch7-$h92ho$Vd@O`A5!$cFrI#4ZG%=;olyci+%!O#RG(x(Czc}CaZNQ-
Lre(I8K{NOdriJbO

diff --git a/schemas/confirmation.py b/schemas/confirmation.py
new file mode 100644
index 0000000..31a33f7
--- /dev/null
+++ b/schemas/confirmation.py
@@ -0,0 +1,11 @@
+from ma import ma
+from models.confirmation import ConfirmationModel
+
+
+class ConfirmationSchema(ma.SQLAlchemyAutoSchema):
+    class Meta:
+        model = ConfirmationModel
+        load_instance = True
+        load_only = ("user",)
+        dump_only = ("id", "expire_at", "confirmed_status")
+        include_fk = True

From 908cf4dd15869d59789653484544473bc51f9cc8 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Tue, 8 Mar 2022 19:05:56 +0530
Subject: [PATCH 40/42] Added confirmation resources

---
 .gitignore                                |   4 +-
 app.py                                    |   5 +-
 database/data.db                          | Bin 32768 -> 0 bytes
 models/__pycache__/item.cpython-39.pyc    | Bin 1525 -> 1525 bytes
 models/__pycache__/store.cpython-39.pyc   | Bin 1410 -> 1410 bytes
 models/__pycache__/user.cpython-39.pyc    | Bin 2691 -> 2691 bytes
 models/confirmation.py                    |   6 +-
 resources/__pycache__/user.cpython-39.pyc | Bin 4204 -> 3803 bytes
 resources/confirmation.py                 |  77 ++++++++++++++++++++++
 resources/user.py                         |  46 ++-----------
 schemas/confirmation.py                   |   2 +-
 schemas/user.py                           |   8 ++-
 12 files changed, 101 insertions(+), 47 deletions(-)
 delete mode 100644 database/data.db
 create mode 100644 resources/confirmation.py

diff --git a/.gitignore b/.gitignore
index e4677e2..178d4d0 100644
--- a/.gitignore
+++ b/.gitignore
@@ -4,4 +4,6 @@ __pycache__
 .vscode
 .idea
 /.env
-database/data.db
\ No newline at end of file
+database/data.db
+resources/__pycache__
+model/__pycache__
\ No newline at end of file
diff --git a/app.py b/app.py
index dde98a9..b2fa87b 100644
--- a/app.py
+++ b/app.py
@@ -5,7 +5,6 @@
 
 from ma import ma
 from resources.user import (
-    UserConfirm,
     UserRegister,
     User,
     UserLogin,
@@ -14,6 +13,7 @@
 )
 from resources.item import Item, ItemList
 from resources.store import Store, StoreList
+from resources.confirmation import Confirmation, ConfirmationByUser
 from blacklist import BLACKLIST
 from database import db
 
@@ -125,7 +125,8 @@ def revoked_token_callback(self, callback):
 api.add_resource(ItemList, "/items")
 api.add_resource(StoreList, "/stores")
 api.add_resource(UserRegister, "/register")
-api.add_resource(UserConfirm, "/activate/<int:user_id>")
+api.add_resource(Confirmation, "/user_confirm/<string:confirmation_id>")
+api.add_resource(ConfirmationByUser, "/confirmation/user/<int:user_id>")
 api.add_resource(User, "/user/<int:user_id>")
 api.add_resource(UserLogin, "/login")
 api.add_resource(UserLogout, "/logout")
diff --git a/database/data.db b/database/data.db
deleted file mode 100644
index 6f30f8c989a1c5af9e1e410a63965a3629a38b5e..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 32768
zcmeI(!B5jr9Ki9Gu?-f+yqJa)@3=;T4m9y%q%03yoSl?m!f7dM)h3ML+Nl>47ylFQ
z{w2ovC&2$;Vm$i#mH{JfB;1_erfXkcU)%Tl{Cat9x3^o5l2E+r_BwtdHjG<_X&ReC
z7>1EmzXkOhO&L{~A8n|$d8s_9m^IcKAB&~mMt<qkSpHi2Uiwn}wft%6wD@h(A=D#)
z00IagfB*srAb<b@Hxd{`xx8gr=I2V{A0CBjsMCq{B472S)0Cp=Y}KXERia#2i~><}
zn{r2b!fiB#yI-&06@|rPzY~g=j#qu^c;!d;?XjIFy{H|E?Rvve2V6QRPP)CYHQ|ge
zyxMceI}p$0fhb3TonB?%t?lkhQBJR>E4CY+tnIjIqw?r%w(#V(^rTyrdqP*n`UC~r
z&gZPhmT5%CLHHqld!&MD`TeA;w_7^IRz<HC2Ko8CwX$LkBF!>9&2X6=gBe}mW-`|X
zS+MV9bJmlUNu3^EzEv5nbAz5a%w|=0yB~+WSTE+rI<2dwWHa4AHKSq2kB-js{qSnO
z{WyN#?FHuzuHF!SJBi-;Nf?N&Mx!nrH%;y|i&2Nh?gHHjTctHKEv-7%*1BHJ+jG}9
zt>~udSYD6qi>hFjei&+ILI42-5I_I{1Q0*~0R#|00D*r);GUT?R^{!*xPSP@55n-|
zybyHz>H%2WKiPbpKHXSrcRQ8!jRyr4ms$F0sF?`?1Q0*~0R#|0009ILKmY**W=CKt
zvwHD-U^xCiGfHQ(6CjZwfB*srAb<b@2q1s}0tg`RzX_~n<i%kBFW&&9-~X#W{WBqe
z00IagfB*srAb<b@2q1vK3=5?1{~7<!aDoX90R#|0009ILKmY**5I_I{CBXZCZUY1m
sKmY**5I_I{1Q0*~0R(1WfcO8ipJO6K009ILKmY**5I_I{1Q0;r4<(fvUjP6A

diff --git a/models/__pycache__/item.cpython-39.pyc b/models/__pycache__/item.cpython-39.pyc
index f448d86dac81ed43c6df91b76e161fa26143aa3f..a85569aaf364b8019af24aa4217166376b38a0bb 100644
GIT binary patch
delta 20
acmey${gs<Lk(ZZ?0SMTys%+$b#R>p8)df5N

delta 20
acmey${gs<Lk(ZZ?0SG$l<u`J_Vg&#?Mg?O4

diff --git a/models/__pycache__/store.cpython-39.pyc b/models/__pycache__/store.cpython-39.pyc
index 878dd17598371bef84a141386179d786132bc60e..92a34625ef39d3673ce4062e066450b5580315ee 100644
GIT binary patch
delta 20
ZcmZqTZsO)n<mKgJ0D_2XDjT`WSpg{;1T_Ev

delta 20
ZcmZqTZsO)n<mKgJ00Pkik{h|pSpg=B1JM8g

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 4dace0a2f35a79d6396288f2e99f5d111ca4a278..c671a4fba26f9f04201dabe70c7799e1f2a9c3f8 100644
GIT binary patch
delta 26
gcmZn`Z5HKD<mKgJ0D|*&>KnP`xfpLv*5--;07zN|)c^nh

delta 26
gcmZn`Z5HKD<mKgJ0D_|qY8$!bxfr7+YjZ^a07Yd5OaK4?

diff --git a/models/confirmation.py b/models/confirmation.py
index 5bf94e5..941cd5b 100644
--- a/models/confirmation.py
+++ b/models/confirmation.py
@@ -12,8 +12,8 @@ class ConfirmationModel(db.Model):
 
     id = db.Column(db.String(50), primary_key=True)
     expire_at = db.Column(db.Integer, nullable=False)
-    confirm_status = db.Column(db.Boolean, nullable=False)
-    user_id = db.Column(db.Integer, db.ForeignKey("user.id"), nullable=False)
+    confirmed = db.Column(db.Boolean, nullable=False)
+    user_id = db.Column(db.Integer, db.ForeignKey("users.id"), nullable=False)
     user = db.relationship("UserModel")
 
     def __init__(self, user_id: int, **kwargs):
@@ -21,7 +21,7 @@ def __init__(self, user_id: int, **kwargs):
         self.user_id = user_id
         self.id = uuid4().hex
         self.expire_at = int(time()) + CONFIRMATION_EXPIRATION_DELTA  # current time + 30 minutes
-        self.confirm_status = False
+        self.confirmed = False
 
     @classmethod
     def find_by_id(cls, _id: str) -> "ConfirmationModel":
diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index eb492b40294045fa1f73b04486add3219726bdeb..4ecf12a408437827dff5e3d47a1b77f5ba83d28b 100644
GIT binary patch
delta 1242
zcmY*YOK;p%6!y7(jP3C_o<|-{n-@uhhPEL|2}QJ|kgftksx+xkjl{?^*J&K)rE3S8
z%0m{}HjC&Yu>zGP><~WzA+bbVng!~f1*`6$J;yUbVXXW4-tV4!<~#TE`D^iyIX5Vk
zYz2R3yRWxCs+_x5*bC+S+Jh=|lrH!H3RifcGtu>Y@BHf<P&xl?&)`NwsZYsG_(uK>
zw<hb5mGAa@`;q7dN!0Is+~;9OUS$ne!^D*RE{^z_e8P54)>C+DeXoF$*eM(qPhrSX
zHeztcp&hPsBLZI7XP+nyMN^W}@sFSkRZt$UV2qo`Kr)f4r*OcyNpXhq0F@5auhho)
zy^fjaNxY|JIx#x=^9^+hpdvrimZ2zn+Sc2?7YAR2&7|MtK@zlrI202oH)9d^r{l24
zo9zp=HN$QYb%ZN_*S2Q0Ol^1KOgq9enR78rmi5-g998`Wg2G(YVGiKX8JJ+>Fq!s}
zG4`*axwu*ZgP9<|)7w=K<7eq4U7o2j5T3ke*5qZ!k{iZtsLP(Q2W9z-u~aW&NM`Rx
zD6)0jjJT*0q4A^c;0IOA<3d~|SdgW{G`ufY3y1g0L|h}dj_|m2AH^@CVPO*THL-?V
zT@{pAyh%V(#0J4@|G_fOGGlaRSN>VJ4V&^GcTT5T@5pU4bPb%5{@nOf{$#GaH%JO8
zJ2cUB^OT7J&aI)Es^TD34{dRf6p?Yb%C$2#)RI!Z($8S1r&_8@(^}H%AZFxsYZcy+
z4QtsTsiG`X>$4L#FI?1!VFZ%|c@a}In<mf^GIJ2b@t1wU{h4k*PMRWYhrQ%~7W?kl
z$!44c$x$q*7;%Z9fKWH`i_I)@J^yAzb%8b)3Em~Rg&?0hwb~v|Vp65371hxy=&~)l
z_FL60q#CrDn+$03R&MgArAzX;{SfWlEzU2E&7ckvC4@{3IIpvjv3HQ5KY@Y#ws?PX
z8<#yCF{w2f0}aIX_``WJe-p`(wmc^j77-MRX3xuCopm^tFPvrgKrWdxvpcx)2*)TH
z$}>R_S6`5u6OT@=;M6a6sm<dxx`zC!eJ5@oV0(-y2ZJ)J)d||4ccM7S3-Fyz)QZ=r
zg&rRDgiCp<<2)DJC-1<Kr_>IDJ}g0ZCa6p%c2MQCyy-1WIV!f*=wXKDt$H=@vS+^n
D^db;f

delta 1529
zcmZ8h&u<$=6yBK~uf4W+?YN1ZrcL8EAz;$D5owC3QlN<lqDU1esjB)AYwa03PIql<
zcAYksLnMO4g$P9>L2jhSoO|Gh_zMtH4~WYGXD(ck5C_D2n-Hq*YQA~<-rJcs?|W~4
z8ULebJC>Ey;Q8~XsoKoQfqjuua&YxQChlrprjqfpm8?f9<lu0g3?KZsmVZ~{d0zNL
z;{~Db>6Hm?tZJoEHBG*p)<es49*U|Iez(*1MVOJI&4sK6!t1(DAS8v2)c0gjS#;Ib
z;RCl`hT(ss+H}dfG$2Rj6OCvvC)G1LayzwsNVFYFwEh(6(rDu(um*IGY*3zP(EFO9
zJ<vG#d_-4I=Q;4gH?WT~PiOT}Lb7UwO%h9OvV~lj^_?wI4LVis1WwKIh5C+-fy>Wq
zA+3jc-StD(^MzDXv08oxqniTIsI8}In!t!rbrdV8Z)486AuzmxE({={QzD1dhv{*3
z$5<rC>QiHl<kYXm<=YmR!(^k?=GEGEwZ-KyDj4s1-D6!&z=ynwP(-+L29qF#dQ$}N
zt2g7D3pq5*B9sC8);)-_$b~Bc!OQX*=t{c8t>hfS1%%hsZ}Bm*rv8dA8uO^Qu0FR5
zhI|#|JL-Ny*fEeW{D=sten?EsH-h+pZYBm~GqFcy17uUK2T7PyT<2_`?&v`}`ikw7
z9X8MhOwE{=*)fsl)d%KF<fhs(Ck>29=G0f_`lc0~SdO3u%RuH4qF4(kjUr$qVWR8!
z{-ciMq3P6v))o{Fmj+rW<Sh<DDHdfcG?Ar<#gn`(;u^Qqvs58h1<}WJX?jjivm7<l
z*U9VWZh&GPO%YuL=(-Wnbs_cW7JBzbS9|rk@cl;5b+?Odr`Z&|*y#ml*~N;L8GulC
zI4{u??v`;=(pSHy?x}%g$DxTBkxQ`l(WN)=k0`W=ASz8%;DLaw36-(t$ew!Jnk4Ta
zF?qQHmXBfh=#qdK6GX0@MwwL=!`|f#dM*~GkpAUPyU~)K#5%2GV*h*agqY8WRa`UB
zj>v#KAv<(H<xNfov<lLZ9`zLEdW!(5EQoOi#2P%dPq{IG9*3@q^F)hqvjH7eO5WXF
z>!)GcK(vF|we7Cxn}K*7T-yjdx1X<{#N!05PP^K5nxc$)`8os;6=)^yiDna;u5U-x
z+wKI#MyJ>2QAwBL&z0|6_|F(Z3L%YvWwKjhFLX>8-w+PmH2w>%BeCH3VfYsTG@8^I
zF(99qReae$jKTajGy9q6l39j^yIV5kH2fo9M!*)AC4>d2C{4~IRp;e<p!p2O|K)_5
zQc-<jJ>DHh_p`_=DX#;a>X)%*qeE8GetkoD&Z)`<_t31lPW_?V@`I?xDrvV>^UI#o
za+|%j%;Ji8aY(#&q7If=(Q*j^IgTPaNrF1GXY<24Tv+%H87zAxJDeTMCbP+Z0X=X_
AfdBvi

diff --git a/resources/confirmation.py b/resources/confirmation.py
new file mode 100644
index 0000000..96358c1
--- /dev/null
+++ b/resources/confirmation.py
@@ -0,0 +1,77 @@
+from time import time
+import traceback
+from flask_restful import Resource
+from flask import make_response, render_template
+
+from models.confirmation import ConfirmationModel
+from models.user import UserModel
+from schemas.confirmation import ConfirmationSchema
+from libs.mailgun import MailgunException
+
+confirmation_schema = ConfirmationSchema()
+
+
+class Confirmation(Resource):
+    # Returns confirmation HTML page
+    @classmethod
+    def get(cls, confirmation_id: str):
+        confirmation = ConfirmationModel.find_by_id(confirmation_id)
+        if not confirmation:
+            return {"message": "Confirmation referrence not found"}, 404
+
+        if confirmation.has_expired:
+            return {"message": "Confirmation link has expired."}, 400
+
+        if confirmation.confirmed:
+            return {"message": "Registration has already been confirmed."}, 400
+
+        confirmation.confirmed = True
+        confirmation.save_to_database()
+
+        headers = {"Content-Type", "text/html"}
+        return make_response(
+            render_template("confirmation_page.html", email=confirmation.user.email),
+            200,
+            headers,
+        )
+
+
+class ConfirmationByUser(Resource):
+    # Return confirmations for given user. Only for test purpose
+    @classmethod
+    def get(cls, user_id: int):
+        user = UserModel.find_by_id(user_id)
+        if not user:
+            return {"message": "User not found."}, 404
+
+        return {
+            "current_time": int(time()),
+            "confirmation": [confirmation_schema.dump(each) for each in user.confirmation.order_by(ConfirmationModel.expire_at)],
+        }, 200
+
+    # Resend confirmation email
+    @classmethod
+    def post(cls, user_id: int):
+        user = UserModel.find_by_id(user_id)
+        if not user:
+            return {"message": "User not found."}, 404
+
+        try:
+            confirmation = user.most_recent_confirmation
+            if confirmation:
+                if confirmation.confirmed:
+                    return {"message": "Registration has already been confirmed"}, 400
+
+                confirmation.force_to_expire()
+
+            new_confirmation = ConfirmationModel(user_id)
+            new_confirmation.save_to_database()
+            user.send_confirmation_email()
+
+            return {"message": "Confirmation mail re-send successful"}, 201
+
+        except MailgunException as err:
+            return {"message": str(err)}, 500
+        except:
+            traceback.print_exc()
+            return {"message": "Failed to resend confirmation mail."}, 500
diff --git a/resources/user.py b/resources/user.py
index 9dc76a1..545c890 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -10,28 +10,14 @@
     get_jwt,
 )
 import traceback
-from flask import make_response, render_template, request
+from flask import request
 
 
 from models.user import UserModel
 from schemas.user import UserSchema
 from blacklist import BLACKLIST
 from libs.mailgun import MailgunException
-
-# extracted parser variable for global use, and made it private
-# _user_parser = reqparse.RequestParser()
-# _user_parser.add_argument(
-#   "username",
-#   type=str,
-#   required=True,
-#   help="This field cannot be empty"
-# )
-# _user_parser.add_argument(
-#   "password",
-#   type=str,
-#   required=True,
-#   help="This field cannot be empty"
-# )
+from models.confirmation import ConfirmationModel
 
 user_schema = UserSchema()
 
@@ -57,6 +43,8 @@ def post(cls):
         # flask_marshmallow already creates a user model, so we need not do it manually
         try:
             user.save_to_database()
+            confirmation = ConfirmationModel(user.id)
+            confirmation.save_to_database()
             user.send_confirmation_email()
             return {
                 "messege": "Account created successfully, an email with activation link has been sent to your email.",
@@ -68,6 +56,7 @@ def post(cls):
         except:
             # print(err.messages)
             traceback.print_exc()
+            user.delete_from_database()
             return {"message": "Internal server error, failed to create user"}
 
 
@@ -103,8 +92,9 @@ def post(cls):
         # check password
         # this here is what authenticate() function used to do
         if user and safe_str_cmp(user.password, user_data.password):
+            confirmation = user.most_recent_confirmation
             # Check if user is activated
-            if user.activated:
+            if confirmation and confirmation.confirm_status:
                 # create access and refresh tokens
                 access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
                 refresh_token = create_refresh_token(identity=user.id)
@@ -135,25 +125,3 @@ def post(cls):
         new_token = create_access_token(identity=current_user, fresh=False)  # fresh=Flase means that user have logged in days ago.
 
         return {"access_token": new_token}, 200
-
-
-class UserConfirm(Resource):
-    @classmethod
-    def get(cls, user_id: int):
-        user = UserModel.find_by_id(user_id)
-
-        # If user is found, activate their profile
-        if user:
-            user.activated = True
-            user.save_to_database()
-            headers = {"Content-Type": "text/html"}
-            return make_response(
-                render_template(
-                    "confirmation_page.html",
-                    email=user.username,
-                ),
-                200,
-                headers,
-            )
-
-        return {"meggase": "User not found"}, 404
diff --git a/schemas/confirmation.py b/schemas/confirmation.py
index 31a33f7..fa5e39a 100644
--- a/schemas/confirmation.py
+++ b/schemas/confirmation.py
@@ -7,5 +7,5 @@ class Meta:
         model = ConfirmationModel
         load_instance = True
         load_only = ("user",)
-        dump_only = ("id", "expire_at", "confirmed_status")
+        dump_only = ("id", "expired_at", "confirm_status")
         include_fk = True
diff --git a/schemas/user.py b/schemas/user.py
index c8d0a65..dfe871f 100644
--- a/schemas/user.py
+++ b/schemas/user.py
@@ -1,4 +1,5 @@
 from ma import ma
+from marshmallow import pre_dump
 from models.user import UserModel
 
 
@@ -13,5 +14,10 @@ class Meta:
         load_only = ("password",)  # makes 'password' field load_only
         dump_only = (
             "id",
-            "activated",
+            "confirmation",
         )  # makes 'id' field dump_only.
+
+    @pre_dump
+    def _pre_dump(self, user: UserModel, **kwargs):  # Here user is the user that will be turned to json
+        user.confirmation = [user.most_recent_confirmation]
+        return user

From 0238ae189b2b74cd04d891de78dbc8407c6aba77 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Tue, 8 Mar 2022 21:23:31 +0530
Subject: [PATCH 41/42] minor changes

---
 models/__pycache__/user.cpython-39.pyc | Bin 2691 -> 2634 bytes
 models/user.py                         |  13 +++++--------
 resources/confirmation.py              |   2 +-
 3 files changed, 6 insertions(+), 9 deletions(-)

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index c671a4fba26f9f04201dabe70c7799e1f2a9c3f8..20344f8871127eb585aa2478150596cc91c893c6 100644
GIT binary patch
delta 1021
zcmZuv&1)1f6yIbrGuf}QwA<S6x_-0_$ckcVl~M`{B7PiN{9q1UW;bb_n%P;C*~*I2
zLp|uBhmwDw-t;71ya}HD6M_eCqJM)2lPs-^I3Yh?-ut~@=DnBw(XZ8VR4x~C`g^pw
z(0q7Uo=G0)1IZD<atR0lFg9c`aY83SA+l$OxrrBg)<(=vaEPt#vV2kq3m|thM?B)c
z$`PM>JH>q`ED^ks3-UkBO#x7Nor+G{7WDAT?SiL$YkG@caulpCp|^mz1QPGS2@4eM
zxD*{>()aoYFf3}HmLqvmAVpF-Kw+5<5iDPWPx%1wqE_O*yaP|y6zU4f14khiJ?|;M
z6^T|vsKV(k<t*w5`4VoHT%Dj0p`xYJe!$aUQex*F7?vNMtBW%__})?O(=O#bmEVe4
zMtP&z<EL~WfXZnx!3~K|p1_oxLpN;xa!tXQ@L9{{HN!Z2LbC}|@-w>DzpFNHLW5lE
z7}Q;NKY*%)UJp?D!V8uhouP1-vj$Joj3Xm3ZQz^%)7P*dXqz->62*)gy};!Y@|!nT
z9Mtvv8n%zXnT2xEZ{ZQcMBJ4}{^b0)5gVZEqpFB#mo~DrL82^bMuINO?|xK2&NCSo
z4bLN#QQfjj#`CX`Oz{L*k#BJGz8!*hJ!Rdbt^8Z<jBZnI%TV4%#^d&Ozssfsg*%ZD
z&r(iQiBlG3v3^O9;|{O(gFNj}p7r>&T+5H`oiR=)ZfE?w`G*Aq&_Lb5Wdm0X{4LO0
zQ^toi<n<O8G+>CF3K-L?3K4+)_1nusP;np_KHg}kID~BGy`UW8Jx=x85t*=;DtC)T
z;t4l{v*S|uxPjcZpv2;)sGDhRciVP?Y9vW@6Ggq1wzp!Q*mAkA1(bW&MC@Jv`+bF1
Wl60JO8C?aY2s7alsK64?%lQLyLg0e{

delta 1017
zcmZuwy>HYo6hAvo;>+d2721P-Uj?)rNaa)IQw6C=2%$2x>XLy|?re@LPIA~eP#Gvv
zSr|H09+=tK*ccHr4BaheL{SI+0T6ahEfpe9`Ni+~=bxY7b3PAl43(pD*(>O0dw!<*
zdaFFXzN#HkAb=HO5P}$n5EvgaD@GxT?a<DBi#f3yx-kxM?ju%=z0k|YHY>$`=;vdH
zmE#}`K;ce-xCFl{5KO(*LmO6DA;slF-P<v{*P%kUJFQIFM^}<gnrI&{QPE8kK^5wz
zBHMa%&$Bi2mVU+et=)Ox$}?be7;nO`MA52Gio_!&;%{1EnFgdNBk&>ExnRTr5A=t7
zvIc7dW-AswUsG-?60L|(8NmlW)&zwJ6)jEs0&8GQ?!tFqP<};M!KB=_j*Sf)DX6R#
z6MWL>jqSs@w9xIGd_}%Q_E;^a^5ceZa-Ws+$K_jet*<+E%1qTX)M1~S2M)^4+3!JB
zezVu)S*I+SGk)38bcK7IHF%n4+%*yt2Br-ZHH4m^32D$c>M(8;>oy;ipPb3kLFFIL
zR8Y~A1uFm$IKQzikGL&7WcY|<`NAEU9?{OhQ)*XLMD&z4va~^>ENVuAUY8%;Xm)R%
zS#jR*96}k*D8FbT{|d=PJPdBiHg2xug?AQG){7J6-c2&vraV84a+WjRN!tBln}aCa
zjf8lXa-w`rS(NFUA|7?RyxO1SX_xYBjZeslVs-t530j>b<1;3Qx&dV1oPkRQ<_!F;
zO20uSR?=X83vpTlhRCXbs<uIhbg{JkaxerH3xdOYFA9PH<?HU(2b7boEp<)q(5P7&
zLd@xt9u=ABCt>cgvLCWYJm#jSc_$U#t18dy;<HXu%$i2FdkHVfpT*$?la{g<Q(fPD
byZ_~{@QpYnJx1q&W(!|K1!#jl&}RJs>{;4$

diff --git a/models/user.py b/models/user.py
index cf3d739..e6049ab 100644
--- a/models/user.py
+++ b/models/user.py
@@ -1,5 +1,4 @@
-from typing import Dict, Union
-from requests import Response, post
+from requests import Response
 from flask import request, url_for
 
 from database import db
@@ -14,13 +13,14 @@ class UserModel(db.Model):
     # table columns for users table
     id = db.Column(db.Integer, primary_key=True)
     username = db.Column(db.String(80), nullable=False, unique=True)
-    email = db.Column(db.String(50), nullable=False, unique=True)
+    email = db.Column(db.String(80), nullable=False, unique=True)
     password = db.Column(db.String(80), nullable=False)
 
     confirmation = db.relationship(
         "ConfirmationModel",
         lazy="dynamic",
         cascade="all, delete-orphan",
+        overlaps="user",
     )
     # lazy=dynamic means that when we create a new UserModel, confirmation is not retrieved from the db,
     # When we access the confirmation, then it it is retrieved from detabase
@@ -45,14 +45,11 @@ def find_by_email(cls, email: str) -> "UserModel":
     def send_confirmation_email(self) -> Response:
         # http://127.0.0.1:5000 - is the 'url_root'
         # url_for("userconfirm") - this must mathch the name of user confirmation endpoint
-        link = request.url_root[:-1] + url_for(
-            "confirmation",
-            confirmation_id=self.most_recent_confirmation.id,
-        )
+        link = request.url_root[:-1] + url_for("confirmation", confirmation_id=self.most_recent_confirmation.id)
 
         subject = "CONFIRM REGISTRATION"
         text = f"Click the link to confirm ragistration: {link}"
-        html = f'<html>Click the link to confirm ragistration: <a href="{link}">{link}</a></html>'
+        html = f'<html>Click the link to confirm registration: <a href="{link}">{link}</a></html>'
 
         return Mailgun.send_email([self.email], subject, text, html)
 
diff --git a/resources/confirmation.py b/resources/confirmation.py
index 96358c1..02cb226 100644
--- a/resources/confirmation.py
+++ b/resources/confirmation.py
@@ -28,7 +28,7 @@ def get(cls, confirmation_id: str):
         confirmation.confirmed = True
         confirmation.save_to_database()
 
-        headers = {"Content-Type", "text/html"}
+        headers = {"Content-Type": "text/html"}
         return make_response(
             render_template("confirmation_page.html", email=confirmation.user.email),
             200,

From ee9865b0de7a7ce28ce602c00eea7f5b12288ae4 Mon Sep 17 00:00:00 2001
From: Subhadeep <subhadeepdoublecap@gmail.com>
Date: Wed, 9 Mar 2022 11:39:49 +0530
Subject: [PATCH 42/42] minor changes

---
 models/__pycache__/user.cpython-39.pyc     | Bin 2634 -> 2634 bytes
 resources/__pycache__/item.cpython-39.pyc  | Bin 2805 -> 2805 bytes
 resources/__pycache__/store.cpython-39.pyc | Bin 1715 -> 1815 bytes
 resources/__pycache__/user.cpython-39.pyc  | Bin 3803 -> 4161 bytes
 resources/confirmation.py                  |  17 +++++++----
 resources/item.py                          |   1 +
 resources/store.py                         |  16 ++++++----
 resources/user.py                          |  33 ++++++++++++++-------
 schemas/confirmation.py                    |   2 +-
 9 files changed, 46 insertions(+), 23 deletions(-)

diff --git a/models/__pycache__/user.cpython-39.pyc b/models/__pycache__/user.cpython-39.pyc
index 20344f8871127eb585aa2478150596cc91c893c6..e795248064950a6e84c465695af72f2eb5fd5f2d 100644
GIT binary patch
delta 19
ZcmX>la!Q0Nk(ZZ?0SGLMH*z^}0RSz#1N{I1

delta 19
ZcmX>la!Q0Nk(ZZ?0SF@EHgY*|0RS!x1P1^B

diff --git a/resources/__pycache__/item.cpython-39.pyc b/resources/__pycache__/item.cpython-39.pyc
index 624e8a71099d1e029765ed86ebf942253e6088f2..d2d434f99cf24ba168d59f716914c4e36d9b2f9d 100644
GIT binary patch
delta 82
zcmew=`c;%Sk(ZZ?0SJ!Qt0&Fc$Q#1UD786>IiHbHW%DH#eMUyh%}i`;jEr8BIoYQ$
mif^9B?#alQGx-I_GRB0-{hUdR@smGs{$XcgW8`8M@BjdbCl$c}

delta 82
zcmew=`c;%Sk(ZZ?0SNY8kxZJgkvD{yQF3z<b3P-Z^5#n{`izVgo0-_y7#Te$bFxoi
m6x%$H-II|qd-4m8WsLEY`#F;s<0gON{KL-3#>mAi-~j-b02TBA

diff --git a/resources/__pycache__/store.cpython-39.pyc b/resources/__pycache__/store.cpython-39.pyc
index d63844ac65feb400631eec3afe69441a45b869ee..d409f59cc063c1fbec6f29e9bbb33765379d126a 100644
GIT binary patch
delta 801
zcmZ{h&1(}u7{+JzD_^^t)YRIBR%3(M_z@KKAc#=NrUvQ;b|bOtVc9wp38ab4PDMjR
zp?WMBw&1lr_AKbtqaO6`{s+B#^Wr<3q6l@D{mnD;&OY<(yC01ArWqJU7Qr=neQ~pt
znwX22PcGkR5Y<Z)&C8IKmnCU0N7WtV=~N{dlHJ9gv4%*F=x-3wsk|e5Cd>_D!rV;e
zd6IWgwJ_PcJvW+l`H<0a&}RX8QKrv(ArEVjE?-$56{e-Zke9o|?E$Hc%;^fDeab1R
zO}>3x=1LC}xhsL8Vjq2htZ{0KhGFo8_VzGBRW<sAudc*-x7~6q-)^=2M(crHKa^wn
zaX(}k@rD|T5Qm5rqhI(DJ{5H&>lK&4SrX11jp2-4{8Ad}V`*PLKp1t<U>?JW5y43Y
zr7LM@1G(rL;_ALOmJTpclU$n3a&SuT9mHX2p?-oo`U<L=Vk!(w2gF5t^}gk=t~=Ih
zeZ#k{hfTNb#)U9=Mtwf?Nx*~6Af$2La-5dqH*ME)+D&_n8N$L8C<qk)U=~!YJROF-
z6up(bc`o;`dmI=VCQXAui%LrQdTdNvRJYcxwpC~O{~2o2{$GkZinnrF>?#Q?3H&`f
zQ6d0K0cN5f%J+qtf43x6VQ?$@tS&Xqit0ImvcP$P#Qr4H3RG{x6Doi-mM{}5cC`>y
zw0q<XXtp4be8r+rNtZ4NB?2YePl_9-?`#dpcAwsbpM=6WfR1%ZJPJ;3S;JYmQ27o2
CMW??2

delta 715
zcmZut&ubGw7@Z%xo6Tmk#u}*62DenOs~81E5Jl)g?ZsSj5Z6Q5W+t*U-IbY%Xoz^I
zC!t^%!J{pB=~?jT!IOIM4_N#MdiM|Tn@x!pT$nfW&HLtkZ{PdiQ$0xPbq~S!<!fv6
zjWZ3FFq>Ywc7xkHD0aEcZ079ZxOyM43Ugm0=5o42V-M;o^Pu+1y2fff6#3JSH}x9+
ze4Wu0GiyNL&h8$51Now|&81A9@NuK3a>2taSK%NZWvr9F!w5x|ZjsB22ehF5p%hi~
z#FnP>0Eq>ik;mBAKgiuzjDR#X(h5yr$S!_K#{Putk$r^GLzJDyuw%q9v!T-&5C=U%
zJ#-Z*x@S$uK4z8DnA;UKm@;n8{3Jt>uooeJo=PP<>09t5T*F^n%R(+hF2cOuA8CTy
z57OVj9)1TlvV{$s@Bxa3OrG%#m2a>_C7X%lqHegrzzG8jb2tU3!g`uZ)zrUee9Qb*
z&v=I5AT;a9TTmttGCt&rv(EVBQJrTO)XZu`b=L~p|J8S9@6PKFR=nCYvlk7t<}Qx=
z5fvb6dfEQjY8-DdZiNxJqFtwb?~EzW8dx&WHc-m{)hkcsvva_9U`Y$W#RLm;(~W$+
q<*cul0WHHtIlQF)NolT9xVN`+HX8Cf5ImA5Q6KxnEC+kEvGNBzsg;TV

diff --git a/resources/__pycache__/user.cpython-39.pyc b/resources/__pycache__/user.cpython-39.pyc
index 4ecf12a408437827dff5e3d47a1b77f5ba83d28b..8ce997af053afbe7a5788b1da1df8456ff45a554 100644
GIT binary patch
delta 1996
zcmZuyO>7%Q6yBL#|Hgkw+%(Pa=BH^)Q<KtCP?e@N@sA9yBWwq#QER!Lb-Jlzhw-=~
zu1%0q2`-hW25~~dk;<W*xp3qLT)8a=5Es-t2Tq9h)(vT+dNtq7d+(c>H}Aa}|2Fxf
z9w__$UIl(X%r4%Z4L=G@&@u98>G2-(6~~yrIL-pa2^K6)vQTk~4Hl=_P*G>Y#TgbZ
z&ZZQ0f{i>-*odL-tHn8xPqI;vM{Ri?<Wp=6<S|=54e~gf0C~ce7eJn5Qy@>-@)_pL
zE0O7^=#D%~{#4tMn9Qq-YI`9jAE>9N+rf>d!S#AW=+#E6&Z2F<tzbsY5C)Tfct+08
zw3lq%ipj3rZvnkzvhJ$hY*i{ovsrD`YP))^vAJn5z0nfU_FM9?XGPan?sr$C?Q`k6
zFnGOO(_!L0*vjC%!J~RoE^A>m+Wts>ubv}y`MbJwQZF;cVaX+Zr)HF!hF-a2RPIKl
zpMJV0Tqa?(O7n`)dhQO{@*EJp%82kD>f6g5(i=EXh$4Jo_wSP~?a;mkECIAIRRn>r
zRq6XmUeOd0+Wn3wU6m;9dEgA%93qA~>OQ$cnFD!F<%Ys;0_hVquQ0n`hNbWm!@V$0
zd2Z?nli-BBvJ6~^y)$dMw&6_WO~d?xC`!?mj7{U|&yW-IZ%{=>WKvs;S;HIoM6MLe
z<Px#?jZ)%+biR-;`m1K0m2U5rjP0^nvmE^{oVXrKXO3~@H`>K9Yc#*HwwB1}OSwb}
zR)7_+gA_|8<gePLAuE)GiHUfruwGh&jS30ram<hfdDihEIU_%Fw5JxqFTU_1oIx=J
zFfXT_y*)t>gD%vb)}aT4shFB4T9yw2%ls0K_4FqgMI3wpI?H=_43k*_`<&VJLMgev
zk&W|VBxtO)z4Junvmo$S5#|t%{6H5hb<+@UEApx<#g2S{B&*L7r-5I#Cwv*`&o<|;
z;Yt?}CUFs;y?;EBNfZ)s{yOT9ZR6~he_sCMn#;a|gtG`s2<HGS)vODC3B@-Nj;7lq
zJ6cgNq@gw40B%A_$V~~4%6ENXIYk%cx9)lJx%|aFzt<724&B0<cJEW(fw8Bn3NKST
z>ej$Mh4NClfU%DY;Rovg)0pES?P?-mOU{R+>*#152XlQ*nHv+qJXq&;AA*p0Q5PA=
zMhHIz-b9Gy+9`8kmTT=`D}WCGT)Re#SB%TLyyZDbuE=|yxzKsw_Vf7&%XCow>&fg{
zjvbDt9|vR6Q)$$zCf_y~cOuyZU=3qx*VePibnZG-S|XQQ&soFi?0d0HI*wHrPh<<}
zSSBBF+Ud4D_M^heqTEmVJT7$=;TpnGbRn=6g=2x<g4P@XP}CvSrwtJ&@lh`g5T6>L
zZrTpui<N0?n)T>TqbagH0@UYLI?B^!Fx-UJ)BrF~{4(TdQjQPA_E5EkHlzz>Ut#2w
z(j|iQXonmScu%N(0bqPsco8jYsawLd<Hj+9P=)w+!2JN03QwFBv<on^o=QP@);9{4
zv)bU>Wf7tM@=qZhwj6xsv0YDi>ihDqfw|O63X)@y*@1cK8Ixe$h1PTexG5zX;Ym1U
zZ)yeS*`c;wrQCxGq($H^%AkKT42~T4<AJ>9pS$qR|Au3f3>fyI^|ynNx(P>JWKn+Q
z|Cmh6VBqfFD9#>3uy5uYIEo|SrQsNLK7%lUfKLy{8^tkQJc)oSzU;J?du6-9S~X)8
lidJb}1n`mmH{o(af!O02R8c3@AQmrtTIh5r9GVDu{{x?@v+w`_

delta 1669
zcmZ`(&2Jk;6yKRy+q?eQI3EpdnxrNlBo3)b=@+7DpcE+ts&H`mG6HLxStpx1>u7dd
z63Zq?<{F7;;Ksp`xRe9`0YY$s3sSGkfg=js5b6PO;JvYe0}8h0H~X9SX7=s-{dT|2
z{WRvdnM~4v-~P(Xz1Ic~oKgDNIGF$9&1Hk9dFEq-XFS$sr4ir`?*rba`FY@3-VeNA
z^HJafd=U7c=3~Hz_!;15G#}^jqLCj~uaaNXkL;s8PJO~zg%%BIb`njpX&n-=#0fW#
z*Bc8>(y<Q>V#p-KQ*F|sP1;?7NE#zN#^aEmsL;2JqG1{`v->46T8tQtDadhj4v~FL
z)+QU2TbLI&-ZA(xBz?$=2G{cf9EE?G?eyc8-d1k=1UD3o1;~XbNUlbSEiVk+b+0jZ
zD^OSHtnGh745KjvtW2j<B^~!5{<eCLT~zyQ?ndG02WYYX2j<PM1kw|MTg`=@c;Jbg
zCqzxm=PIsW^>|L!a%;kKrI)KiJU^i3Vz-A&nTj9q^1a=%w*_fYOi${o*cJ6x?3#Kx
z{v?@DmH4}4Onnz`j8DPM#Kga05@{A-M3oYqll`Y1)})8fc~m1GTNV9~^=IE3aQj?P
zletQ*9`M4^r%?RS_YlgPA_Y^FJg&*-Vh|ThUf<e&$iz4h@if8(gkB+7L&VlS`J&pf
zUO7<%=t{d<Y5ilml6bcgF^`8_1ZZS*P28(`(&GhDfVDi+#fWDxX$0XC!hh}=@9tTF
zP^jHblf+b)?BUg?Fnb1J79kH1F+Y&vS)`W{dS~e?-N-ozyZ|G#04zdD)}lnrsa$$U
z{mf?7BYTQ8)nj{VZ(AmsbkjnIx2f2MYrDmoOl&mSW>Rd(6s)8<<K{kXnKGkUY@f7Z
zO|uE^{+yz_!KfBmQO`+md`fpHy_zTDEL4yuQDWN_(s!$OAJWM3xfe)Z?nW`YBD`<|
z(w<Y_BqvkYGOcgpruvmGju#q3E5QS|>T`6R-sM)qf`0&F=N<KX^3Gn#S*ryVUu=~_
z>B@R2;&{e6gaqC?uJw*=v}>8W((S6A!-VG%ZXooUsQZTwy$d580x;MBOPd2EPLtFj
zY35LiHXPLYPHkQNma^xkA?d^sJsqw>pa>&00Z<2V6*PGNCIfmK*K+{UXd9fIGg?HF
z4sDV{0$&cw8T9ek^AX#Wez!4ai|P@5;`*_>&@Lha5HXkYJngz0wLekNKhLzSoXq6%
zDW(!=6!E_=<`P5$7$G*-qLi5MHH0S_Q=etpuV2T#x|iDWRM@zHsbGJ6+oJSZT?o*;
zj4G7u!26&qYxlk2v>JESx-)tC79P=4rPtDzAg}|YTMD$)A_CX)7u46z4jEO~`tC2{
rheY5@AW#8;<?E!=PK>O@ts1Xay(KV}5l*ONcGNbr)7hcy`E2rU%yVMs

diff --git a/resources/confirmation.py b/resources/confirmation.py
index 02cb226..be44960 100644
--- a/resources/confirmation.py
+++ b/resources/confirmation.py
@@ -9,6 +9,11 @@
 from libs.mailgun import MailgunException
 
 confirmation_schema = ConfirmationSchema()
+NOT_FOUND = "Confirmation referrence not found"
+EXPIRED = "Confirmation link has expired."
+ALREADY_CONFIRMED = "Registration has already been confirmed."
+RESEND_FAIL = "Failed to resend confirmation mail."
+RESEND_SUCCESSFUL = "Confirmation mail re-send successful"
 
 
 class Confirmation(Resource):
@@ -17,13 +22,13 @@ class Confirmation(Resource):
     def get(cls, confirmation_id: str):
         confirmation = ConfirmationModel.find_by_id(confirmation_id)
         if not confirmation:
-            return {"message": "Confirmation referrence not found"}, 404
+            return {"message": NOT_FOUND}, 404
 
         if confirmation.has_expired:
-            return {"message": "Confirmation link has expired."}, 400
+            return {"message": EXPIRED}, 400
 
         if confirmation.confirmed:
-            return {"message": "Registration has already been confirmed."}, 400
+            return {"message": ALREADY_CONFIRMED}, 400
 
         confirmation.confirmed = True
         confirmation.save_to_database()
@@ -60,7 +65,7 @@ def post(cls, user_id: int):
             confirmation = user.most_recent_confirmation
             if confirmation:
                 if confirmation.confirmed:
-                    return {"message": "Registration has already been confirmed"}, 400
+                    return {"message": ALREADY_CONFIRMED}, 400
 
                 confirmation.force_to_expire()
 
@@ -68,10 +73,10 @@ def post(cls, user_id: int):
             new_confirmation.save_to_database()
             user.send_confirmation_email()
 
-            return {"message": "Confirmation mail re-send successful"}, 201
+            return {"message": RESEND_SUCCESSFUL}, 201
 
         except MailgunException as err:
             return {"message": str(err)}, 500
         except:
             traceback.print_exc()
-            return {"message": "Failed to resend confirmation mail."}, 500
+            return {"message": RESEND_FAIL}, 500
diff --git a/resources/item.py b/resources/item.py
index 82306b3..14f1c48 100644
--- a/resources/item.py
+++ b/resources/item.py
@@ -15,6 +15,7 @@
 NAME_ALREADY_EXISTS = "item '{}' already exists"
 ERROR_INSERTING = "An error occured while inserting the item."
 ITEM_DELETED = "Item deleted"
+
 item_schema = ItemSchema()
 item_list_schema = ItemSchema(many=True)
 
diff --git a/resources/store.py b/resources/store.py
index 15b7a15..5474e42 100644
--- a/resources/store.py
+++ b/resources/store.py
@@ -4,6 +4,12 @@
 from schemas.store import StoreSchema
 from models.store import StoreModel
 
+NAME_ALREADY_EXISTS = "Store alrady exists."
+ERROR_INSERTING = "An error occured while creating the store."
+STORE_NOT_FOUND = "Store not found."
+STORE_DELETED = "Store deleted."
+
+
 store_schema = StoreSchema()
 store_list_schema = StoreSchema(many=True)
 
@@ -15,12 +21,12 @@ def get(cls, name: str):
         if store:
             return store_schema.dump(store), 200
 
-        return {"message": "Store not found."}, 404
+        return {"message": STORE_NOT_FOUND}, 404
 
     @classmethod
     def post(cls, name: str):
         if StoreModel.find_store_by_name(name):
-            return {"message": "Store alrady exists."}, 400
+            return {"message": NAME_ALREADY_EXISTS}, 400
 
         store = StoreModel(name=name)  # since __init__() method was removed from StoreModel, the name needs to be passed manually as such
         # as StoreModel is a model subclass, model class acceps keyword arguements and maps them to columns
@@ -29,7 +35,7 @@ def post(cls, name: str):
         try:
             store.save_to_database()
         except:
-            return {"message": "An error occured while creating the store."}, 500
+            return {"message": ERROR_INSERTING}, 500
 
         return store_schema.dump(store), 201
 
@@ -38,9 +44,9 @@ def delete(cls, name: str):
         store = StoreModel.find_store_by_name(name)
         if store:
             store.delete_from_database()
-            return {"message": "store deleted."}
+            return {"message": STORE_DELETED}
 
-        return {"message": "store don't exist"}
+        return {"message": STORE_NOT_FOUND}
 
 
 class StoreList(Resource):
diff --git a/resources/user.py b/resources/user.py
index 545c890..025ae9f 100644
--- a/resources/user.py
+++ b/resources/user.py
@@ -21,6 +21,16 @@
 
 user_schema = UserSchema()
 
+USER_ALREADY_EXISTS = "A user with that username already exists."
+EMAIL_ALREADY_EXISTS = "A user with that email already exists."
+USER_NOT_FOUND = "User not found."
+USER_DELETED = "User deleted."
+INVALID_CREDENTIALS = "Invalid credentials!"
+USER_LOGGED_OUT = "User <id={user_id}> successfully logged out."
+NOT_CONFIRMED_ERROR = "You have not confirmed registration, please check your email <{}>."
+FAILED_TO_CREATE = "Internal server error. Failed to create user."
+SUCCESS_REGISTER_MESSAGE = "Account created successfully, an email with an activation link has been sent to your email address, please check."
+
 
 # New user registration class
 class UserRegister(Resource):
@@ -33,10 +43,10 @@ def post(cls):
         # First check if that user is present or not
         if UserModel.find_by_username(user.username):
             # if exists, then don't add
-            return {"message": "An user with that username already exists."}, 400
+            return {"message": USER_ALREADY_EXISTS}, 400
         if UserModel.find_by_email(user.email):
             # if exists, then don't add
-            return {"message": "An user with that email already exists."}, 400
+            return {"message": EMAIL_ALREADY_EXISTS}, 400
 
         # user = UserModel(data["username"], data["password"])
         # user = UserModel(**user_data)  # since parser only takes in username and password, only those two will be added.
@@ -47,7 +57,7 @@ def post(cls):
             confirmation.save_to_database()
             user.send_confirmation_email()
             return {
-                "messege": "Account created successfully, an email with activation link has been sent to your email.",
+                "messege": SUCCESS_REGISTER_MESSAGE,
             }, 201
         # Delete user from database in case of any Mailgun error
         except MailgunException as e:
@@ -57,7 +67,7 @@ def post(cls):
             # print(err.messages)
             traceback.print_exc()
             user.delete_from_database()
-            return {"message": "Internal server error, failed to create user"}
+            return {"message": FAILED_TO_CREATE}
 
 
 class User(Resource):
@@ -66,7 +76,7 @@ def get(cls, user_id: int):
 
         user = UserModel.find_by_id(user_id)
         if not user:
-            return {"message": "User not found."}, 404
+            return {"message": USER_NOT_FOUND}, 404
 
         return user_schema.dump(user), 200
 
@@ -74,10 +84,10 @@ def get(cls, user_id: int):
     def delete(cls, user_id: int):
         user = UserModel.find_by_id(user_id)
         if not user:
-            return {"message": "User not found."}, 404
+            return {"message": USER_NOT_FOUND}, 404
 
         user.delete_from_database()
-        return {"message": "User deleted."}, 200
+        return {"message": USER_DELETED}, 200
 
 
 class UserLogin(Resource):
@@ -93,8 +103,9 @@ def post(cls):
         # this here is what authenticate() function used to do
         if user and safe_str_cmp(user.password, user_data.password):
             confirmation = user.most_recent_confirmation
+            print("user resource: ", confirmation.id)
             # Check if user is activated
-            if confirmation and confirmation.confirm_status:
+            if confirmation and confirmation.confirmed:
                 # create access and refresh tokens
                 access_token = create_access_token(identity=user.id, fresh=True)  # here, identity=user.id is what identity() used to do previously
                 refresh_token = create_refresh_token(identity=user.id)
@@ -102,9 +113,9 @@ def post(cls):
 
                 return {"access_token": access_token, "refresh_token": refresh_token}, 200
             # If user is not activated
-            return {"message": "You have not confirmed registration, please check your email."}
+            return {"message": NOT_CONFIRMED_ERROR}
 
-        return {"message": "Invalid credentials."}, 401  # Unauthorized
+        return {"message": INVALID_CREDENTIALS}, 401  # Unauthorized
 
 
 class UserLogout(Resource):
@@ -114,7 +125,7 @@ class UserLogout(Resource):
     def post(cls):
         jti = get_jwt()["jti"]  # jti is JWT ID, unique identifier for a JWT
         BLACKLIST.add(jti)
-        return {"message": "Successfully logged out."}, 200
+        return {"message": USER_LOGGED_OUT.format(jti)}, 200
 
 
 class TokenRefresh(Resource):
diff --git a/schemas/confirmation.py b/schemas/confirmation.py
index fa5e39a..a417a67 100644
--- a/schemas/confirmation.py
+++ b/schemas/confirmation.py
@@ -7,5 +7,5 @@ class Meta:
         model = ConfirmationModel
         load_instance = True
         load_only = ("user",)
-        dump_only = ("id", "expired_at", "confirm_status")
+        dump_only = ("id", "expired_at", "confirmed")
         include_fk = True