tags:

views:

34

answers:

1
+1  Q: 

django delete object

Hello, in a mini blog app, i want to create a delete function, so that the owner of the blog can delete his entries (and only his entries). I guess that the only methos for doing do, is using a form. Though my the deletion code seems clear and correct, it doesn;t work. My code:

def delete_new(request,id):
   u = New.objects.get(pk=id).delete()
   if request.method == 'POST':
       form = DeleteNewForm(request.POST)    
       form.u.delete()             
       form.save()   
   return render_to_response('news/deleteNew.html', {
           'form': form,
           }, 
        context_instance=RequestContext(request))

and in the template:

<a href='/news/delete_new/{{object.id}}/'> Delete</a> <br />

Is this a correct appropach? I mean, creating a form for this? also, the only way to take the blog post associated with the deletion link is having an id as a parameter. Is it right? I mean, maybe any user can type another id, in the url, and delete another entry (eventually not one of his) Thanks so much!

+1  A: 

You don't need form for this I think.

If you have url pointing to some url like yours: <a href='/news/delete_new/{{object.id}}/'> Delete</a> then you can simply write view that will check if object belongs to logged in user and delete this entry if yes, like in code you have already written:

def delete_new(request,id):
   #+some code to check if New belongs to logged in user
   u = New.objects.get(pk=id).delete()

To check if New objects belogs to some user you need to create realation between User and New (like created_by = models.ForeignKey(User) in New model).

You can get logged in user this way: request.user

I hope I got your point correctly and my answer helps you somehow.

PS: You can also consider using {% url %} tag instead of writing urls directly in your templates.

Lukasz Dziedzia  2010-06-26 16:51:29
i'll check! seems logical, anyway! Thx!
dana  2010-06-26 16:55:16
it rolls smoothly, and in just one line: u = New.objects.filter(created_by = request.user).get(pk=id).delete()thank you! :)
dana  2010-06-26 17:59:12
Exactly, you can add some error handling if there is no such New object for a given user and display nice error message (with your one liner it will fails loudly with 500 error). But basically that is all what you need to do here:) I'm glad that my answer was helpful for you.
Lukasz Dziedzia  2010-06-26 18:34:15
I'd strongly recommend using a form and checking POST, because GETs to pages are not supposed to change the state on the server. (Although, in practice what's happening here is relatively 'safe')
stevejalim  2010-06-27 11:53:48

related questions

Django: Print url of view without hardcoding the url
Django Calendar Widget?
Can the HTTP version or headers affect the visual appearance of a web page?
Project design / FS layout for large django projects
Extending the User model with custom fields in Django
How to generate urls in django
Always including the user in the django template context
Screencasts for Django/Python?
Using Django time/date widgets in custom form
How do I add data to an existing model in Django?
Setup django with WSGI and apache
Altering database tables in Django
Django Templates and variable attributes.
Django ImageField core=False in newforms admin
How can I render a tree structure (recursive) using a django template?
Cleanest & Fastest server setup for Django
Unicode vs UTF-8 confusion in Python / Django?
Does Hostmonster support Django
Specifying a mySQL ENUM in a Django model
Represent Ordering in a Relational Database
updating an auto_now DateTimeField in a parent model w/ Django
Version track, automate DB schema changes with django
Learning Ruby on Rails any good for Grails?
What Hosting Service is best for Django applications?
Class views in Django