diff --git a/db.sqlite3 b/db.sqlite3
index c794ee4c4d583e47ad9ead1c6babebfb1aeed7fe..098115ab3a97e3d3b3d107ca872729d72bb5c3a3 100644
Binary files a/db.sqlite3 and b/db.sqlite3 differ
diff --git a/student/__pycache__/urls.cpython-310.pyc b/student/__pycache__/urls.cpython-310.pyc
index f8dc4cc8fe90359442b4780ed4baa94e975b236e..d1cac6926540bdd67dca0fd682de5e71946d5eb3 100644
Binary files a/student/__pycache__/urls.cpython-310.pyc and b/student/__pycache__/urls.cpython-310.pyc differ
diff --git a/student/__pycache__/views.cpython-310.pyc b/student/__pycache__/views.cpython-310.pyc
index f3eb111b7528ab16fbce5b447499dc45e325eafb..0b7c1053937f1522c0e4b0822ff4feaab50015d0 100644
Binary files a/student/__pycache__/views.cpython-310.pyc and b/student/__pycache__/views.cpython-310.pyc differ
diff --git a/student/forms.py b/student/forms.py
index d6945a07218e9e4398cf04fbf035de687c1c007e..df522510c95aadb6515c972f8af32e00edecccaf 100644
--- a/student/forms.py
+++ b/student/forms.py
@@ -1,2 +1,11 @@
from django import forms
-from django.forms import ModelForm
\ No newline at end of file
+from django.contrib.auth.forms import UserCreationForm,UserChangeForm,AuthenticationForm
+from django.contrib.auth.models import User
+from django import forms
+
+class PaymentForm(forms.Form):
+ amount = forms.DecimalField(label='Amount', max_digits=10, decimal_places=2)
+ card_number = forms.CharField(label='Card Number')
+ exp_month = forms.CharField(label='Expiration Month', max_length=2)
+ exp_year = forms.CharField(label='Expiration Year', max_length=4)
+ cvc = forms.CharField(label='CVC', max_length=3)
diff --git a/student/templates/student/booking.html b/student/templates/student/booking.html
index 88a271a05a4a8866656d66070878510fbc02529c..3d0f97e82dbe153c886ceb3caf63dc21750abf80 100644
--- a/student/templates/student/booking.html
+++ b/student/templates/student/booking.html
@@ -66,9 +66,6 @@
<label for="payment">Payment system:</label>
<select id="payment" name="payment">
- <option value="Club Account">Club Account</option>
- <option value="Debit ard">Debit card</option>
- <option value="Paypal">Paypal</option>
<option value="Stripe">Stripe</option>
</select>
diff --git a/student/urls.py b/student/urls.py
index 4eee69e8b8badd0765a392a785dd8c217547c209..d03ba5534c6d1d3439353d83365c2be7a1671231 100644
--- a/student/urls.py
+++ b/student/urls.py
@@ -21,8 +21,10 @@ urlpatterns = [
path('view/<str:pk>/<str:message>/?', views.view_film, name='view-film-error-st'),
- path('logout/', views.user_logout, name='user-logout-st')
+ path('logout/', views.user_logout, name='user-logout-st'),
+ path('payment/', views.payment, name='payment-st'),
+
#path('<str:message>/?', views.login, name='login-error') ,
diff --git a/student/views.py b/student/views.py
index 29c666471a8f83d780d87eb73e482569f9cf5820..2aa7840dd613d6cf7b5ca02833f95b1c063404bc 100644
--- a/student/views.py
+++ b/student/views.py
@@ -8,6 +8,13 @@ import string
import random
from django.contrib.auth import authenticate, login, logout
+from django.conf import settings
+from django.views.decorators.csrf import csrf_exempt
+from django.http import HttpResponse
+from stripe import api_key
+import stripe
+
+
client = pymongo.MongoClient("mongodb+srv://daniel2fernandes:skelJ6UzCVlG36Ei@uweflix.l8xahep.mongodb.net/?retryWrites=true&w=majority")
# database
db = client.test
@@ -177,61 +184,24 @@ def view_booking(request, pk, numb_of_tickets):
tickets_sold = tickets_sold + numb_of_tickets
tickets_left= tickets_available - numb_of_tickets
- clubrep_id = ObjectId(request.session['UserID'])
-
- document={"id": results["id"],
- "ageRating": results["ageRating"],
- "filmDuration": results["filmDuration"],
- "filmTitle": results["filmTitle"],
- "showingTime": results["showingTime"],
- "ticketsSold": tickets_sold,
- "trailerDescription": results["trailerDescription"],
- "date": results["date"],
- "ticketsLeft": tickets_left,
- }
-
- result = Showings.update_one({'_id': Showings_id},{'$set': document} )
-
- now = datetime.now()
- #dt_string = now.strftime("%d/%m/%Y")
- #https://www.programiz.com/python-programming/datetime/current-datetime
-
+ #------------------------------stripe------------------------
+ stripe.api_key = settings.STRIPE_SECRET_KEY
+
+ checkout_session = stripe.checkout.Session.create(
+ line_items=[
+ {
+ # Provide the exact Price ID (for example, pr_1234) of the product you want to sell
+ 'price': 'price_1N5Xl5IPj7kzkHPxkY2059nU',
+ 'quantity': numb_of_tickets,
+ },
+ ],
+ mode='payment',
+ success_url= f'http://127.0.0.1:8000/5/payment/?payment_status=success&numb_of_tickets={numb_of_tickets}&pk={pk}',
+ cancel_url='http://127.0.0.1:8000/5/showing/2023-04-23/',
+ )
+ return redirect(checkout_session.url, code=303)
- document2={"AccountID": clubrep_id,
- "ShowingID": Showings_id,
- "NumberOfTickets": numb_of_tickets,
- "TotalCost": price_after,
- "PaymentMethod": payment,
- "DateOfTransaction": now,
- }
-
-
-
-
- Bookings.insert_one(document2)
-
- '''
- club_id = ObjectId(request.session['ClubID'])
- results = Clubs.find_one({'_id': club_id})
- balance = results['Balance']
- new_balance = int(balance) - int(price_after)
- document={"Balance": new_balance,}
- result = Clubs.update_one({'_id': club_id},{'$set': document} )
- '''
-
-
- if result.modified_count == 1:
- # Document successfully updated
- print(f"Document with _id updated.")
- message = "Your login credentials were not found. Please try again."
- return redirect('view-all-transactions-st' )
- else:
- # Document not found
- print(f"No document found with _id.")
- #return redirect('view-film', pk=pk , error ="" )
-
-
context = {
'cursor': cursor,
@@ -390,3 +360,67 @@ def user_logout(request):
+
+def payment(request):
+ payment_status = request.GET.get('payment_status')
+ numb_of_tickets = request.GET.get('numb_of_tickets')
+ pk = request.GET.get('pk')
+ if payment_status == 'success':
+ # execute database operations here
+ Showings_id = ObjectId(pk)
+
+ results = Showings.find_one({ "_id" : Showings_id })
+
+
+ price_before = int(numb_of_tickets) * 10
+ price_after = price_before * 0.75
+
+
+
+
+ numb_of_tickets = int(numb_of_tickets)
+ payment = request.POST.get('payment')
+ tickets_available = results["ticketsLeft"]
+ tickets_sold = results["ticketsSold"]
+ tickets_sold = tickets_sold + numb_of_tickets
+ tickets_left= tickets_available - numb_of_tickets
+
+ clubrep_id = ObjectId(request.session['UserID'])
+
+
+
+ document={"id": results["id"],
+ "ageRating": results["ageRating"],
+ "filmDuration": results["filmDuration"],
+ "filmTitle": results["filmTitle"],
+ "showingTime": results["showingTime"],
+ "ticketsSold": tickets_sold,
+ "trailerDescription": results["trailerDescription"],
+ "date": results["date"],
+ "ticketsLeft": tickets_left,
+ }
+
+ result = Showings.update_one({'_id': Showings_id},{'$set': document} )
+
+ now = datetime.now()
+ #dt_string = now.strftime("%d/%m/%Y")
+ #https://www.programiz.com/python-programming/datetime/current-datetime
+
+
+
+ document2={"AccountID": clubrep_id,
+ "ShowingID": Showings_id,
+ "NumberOfTickets": numb_of_tickets,
+ "TotalCost": price_after,
+ "PaymentMethod": payment,
+ "DateOfTransaction": now,
+ }
+
+
+
+
+ Bookings.insert_one(document2)
+ return redirect('view-all-transactions-st')
+ return render(request, 'student/select_date.html')
+
+
diff --git a/student/views.txt b/student/views.txt
new file mode 100644
index 0000000000000000000000000000000000000000..ee1d272286c3604df81f6ff47c210cfc8aacb49a
--- /dev/null
+++ b/student/views.txt
@@ -0,0 +1,424 @@
+from django.shortcuts import render, redirect
+from pymongo import MongoClient
+import pymongo
+from bson.objectid import ObjectId
+from datetime import datetime
+import re
+import string
+import random
+from django.contrib.auth import authenticate, login, logout
+
+from django.conf import settings
+from django.views.decorators.csrf import csrf_exempt
+from django.http import HttpResponse
+from stripe import api_key
+import stripe
+
+
+client = pymongo.MongoClient("mongodb+srv://daniel2fernandes:skelJ6UzCVlG36Ei@uweflix.l8xahep.mongodb.net/?retryWrites=true&w=majority")
+# database
+db = client.test
+# collection
+Clubs = db.Clubs
+Screens = db.Screens
+ClubReps = db.ClubRep
+Accounts = db.Accounts
+Showings = db.Showings
+Films = db.Films
+Bookings = db.Bookings
+
+
+
+
+
+def select_date(request):
+ if request.session.get('loggedin', False):
+
+
+ if request.GET.get('date'):
+ selected_date = request.GET.get('date')
+
+
+ #cursor = Clubs.find({})
+ # case insensitive search using regex
+ regex = re.compile(selected_date, re.IGNORECASE)
+ query = {'Name': {'$regex': regex}}
+ cursor = Screens.find(query)
+
+
+ context = {
+ 'cursor': cursor,
+ 'selected_date': selected_date,
+ }
+ return redirect('showings_list-st',selected_date )
+
+
+ return render(request, 'student/select_date.html')
+ else:
+ return redirect('/login/')
+
+
+
+
+
+
+
+def showings_list(request, selected_date):
+
+ if request.session.get('loggedin', False):
+
+
+ #selected_date = request.GET.get('date')
+ #print(selected_date)
+ #selected_date = date
+ document={"date": selected_date,
+ }
+
+ results = Showings.find(document)
+
+ data = [doc for doc in results]
+
+
+
+ context = {
+ 'results': results,
+ 'selected_date': selected_date,
+ 'data': data,
+ }
+ return render(request, 'student/showings_list.html', context)
+ else:
+ return redirect('/login/')
+
+
+
+
+def view_film(request, pk, message=None):
+
+ if request.session.get('loggedin', False):
+
+ Showings_id = ObjectId(pk)
+
+ results = Showings.find_one({ "_id" : Showings_id })
+ film_name = results["filmTitle"]
+ showing_date = results["date"]
+
+ regex = re.compile(film_name, re.IGNORECASE)
+ query = {'Name': {'$regex': regex}}
+
+ cursor = Films.find(query)
+
+
+
+
+ if request.POST.get('tickets'):
+ numb_of_tickets = int(request.POST.get('tickets'))
+
+ tickets_available = results["ticketsLeft"]
+
+
+ if numb_of_tickets > tickets_available:
+ print("not ennough tickets")
+ message = (f"There are not enough tickets available. \n Tickets Available: {tickets_available} ")
+ return redirect('view-film-error-st',pk=pk , message=message)
+
+ elif numb_of_tickets <= tickets_available:
+
+
+ club_id = ObjectId(request.session['ClubID'])
+ price_before = int(numb_of_tickets) * 10
+ price_after = price_before * 0.75
+ results = Clubs.find_one({'_id': club_id})
+ balance = results['Balance']
+ print(balance)
+ print(price_after)
+
+ if int(balance) < int(price_after):
+ message = (f"Insufficient balance in club account. \n Club Balance: £{balance} ")
+ return redirect('view-film-error-st' ,pk=pk , message=message )
+ else:
+ return redirect('view-booking-st', pk=pk ,numb_of_tickets=numb_of_tickets)
+
+
+
+
+ context = {
+ 'cursor': cursor,
+ 'film_id': pk,
+ 'date': showing_date,
+ 'message': message,
+ }
+ return render(request, 'student/view_film.html', context)
+ else:
+ return redirect('/login/')
+
+
+
+
+
+
+
+
+
+def view_booking(request, pk, numb_of_tickets):
+ if request.session.get('loggedin', False):
+ Showings_id = ObjectId(pk)
+
+ results = Showings.find_one({ "_id" : Showings_id })
+ film_name = results["filmTitle"]
+ showing_date = results["date"]
+ showing_id = results["_id"]
+
+ price_before = int(numb_of_tickets) * 10
+ price_after = price_before * 0.75
+
+ regex = re.compile(film_name, re.IGNORECASE)
+ query = {'Name': {'$regex': regex}}
+
+ cursor = Films.find(query)
+
+ if request.POST.get('tickets'):
+ numb_of_tickets = int(request.POST.get('tickets'))
+ payment = request.POST.get('payment')
+ tickets_available = results["ticketsLeft"]
+ tickets_sold = results["ticketsSold"]
+ tickets_sold = tickets_sold + numb_of_tickets
+ tickets_left= tickets_available - numb_of_tickets
+
+ clubrep_id = ObjectId(request.session['UserID'])
+
+ document={"id": results["id"],
+ "ageRating": results["ageRating"],
+ "filmDuration": results["filmDuration"],
+ "filmTitle": results["filmTitle"],
+ "showingTime": results["showingTime"],
+ "ticketsSold": tickets_sold,
+ "trailerDescription": results["trailerDescription"],
+ "date": results["date"],
+ "ticketsLeft": tickets_left,
+ }
+
+ result = Showings.update_one({'_id': Showings_id},{'$set': document} )
+
+ now = datetime.now()
+ #dt_string = now.strftime("%d/%m/%Y")
+ #https://www.programiz.com/python-programming/datetime/current-datetime
+
+
+
+ document2={"AccountID": clubrep_id,
+ "ShowingID": Showings_id,
+ "NumberOfTickets": numb_of_tickets,
+ "TotalCost": price_after,
+ "PaymentMethod": payment,
+ "DateOfTransaction": now,
+ }
+
+
+
+
+ Bookings.insert_one(document2)
+
+ '''
+ club_id = ObjectId(request.session['ClubID'])
+ results = Clubs.find_one({'_id': club_id})
+ balance = results['Balance']
+ new_balance = int(balance) - int(price_after)
+ document={"Balance": new_balance,}
+ result = Clubs.update_one({'_id': club_id},{'$set': document} )
+ '''
+
+
+ if result.modified_count == 1:
+ # Document successfully updated
+ print(f"Document with _id updated.")
+ message = "Your login credentials were not found. Please try again."
+ return redirect('view-all-transactions-st' )
+ else:
+ # Document not found
+ print(f"No document found with _id.")
+ #return redirect('view-film', pk=pk , error ="" )
+
+
+
+ context = {
+ 'cursor': cursor,
+ 'date': showing_date,
+ 'showing_id': showing_id,
+ 'numb_of_tickets': numb_of_tickets,
+ 'price_before': price_before,
+ 'price_after': price_after,
+ }
+
+
+
+ return render(request, 'student/booking.html', context)
+ else:
+ return redirect('/login/')
+
+
+
+
+
+
+def view_transactions(request , selected_month=None):
+ if request.session.get('loggedin', False):
+
+ clubrep_id = ObjectId(request.session['UserID'])
+
+ if request.GET.get('date'):
+ selected_month = request.GET.get('date')
+ return redirect( 'view-month-transactions', selected_month=selected_month)
+
+ if selected_month:
+ print("po")
+ print(selected_month)
+ selected_month = datetime.strptime(selected_month, "%Y-%m")
+
+ query = {
+ "DateOfTransaction": {
+ "$gte": selected_month,
+ "$lt": selected_month.replace(month=selected_month.month+1)
+ },
+ "AccountID": {
+ "$eq": clubrep_id
+ }
+ }
+
+ cursor = Bookings.find(query)
+
+
+ else:
+ cursor = Bookings.find({"AccountID" : clubrep_id})
+
+
+
+
+ pipeline = [
+ {
+ '$match': {
+ 'AccountID': clubrep_id
+
+ }
+
+ },
+
+ {
+ '$lookup': {
+ 'from': 'Showings',
+ 'localField': 'ShowingID',
+ 'foreignField': '_id',
+ 'as': 'showings'
+ }
+ },
+
+ {
+ '$project': {
+ '_id': 1,
+ 'NumberOfTickets': 1,
+ 'TotalCost': 1,
+ 'PaymentMethod': 1,
+ 'DateOfTransaction': 1,
+ 'showings.showingTime': 1,
+ 'showings.date': 1,
+ 'showings.Screen': 1,
+
+ }
+ }
+ ]
+
+
+
+ if selected_month:
+
+ pipeline2 = [
+ {
+ '$match': {
+ 'AccountID': clubrep_id,
+ 'DateOfTransaction': {
+ "$gte": selected_month,
+ "$lt": selected_month.replace(month=selected_month.month+1)
+ }
+ }
+
+ },
+
+ {
+ '$lookup': {
+ 'from': 'Showings',
+ 'localField': 'ShowingID',
+ 'foreignField': '_id',
+ 'as': 'showings'
+ }
+ },
+
+ {
+ '$project': {
+ '_id': 1,
+ 'NumberOfTickets': 1,
+ 'TotalCost': 1,
+ 'PaymentMethod': 1,
+ 'DateOfTransaction': 1,
+ 'showings.showingTime': 1,
+ 'showings.date': 1,
+ 'showings.Screen': 1,
+
+ }
+ }
+ ]
+
+ result = client['test']['Bookings'].aggregate(pipeline2)
+ else:
+ result = client['test']['Bookings'].aggregate(pipeline)
+
+ data = [doc for doc in result]
+ print(data)
+
+
+
+
+ context = {
+ 'cursor': cursor,
+ 'data': data,
+ }
+ return render(request, 'student/transactions.html', context)
+ else:
+ return redirect('/login/')
+
+
+
+def user_logout(request):
+ del request.session['loggedin']
+ namey2 = request.session['Name']
+ print(namey2)
+ del request.session['UserID']
+ del request.session['Name']
+ return redirect('/login/')
+ #return redirect('home-page')
+
+
+
+
+def payment(request):
+ selected_ticketsnum = request.GET.get('tickets')
+ #stripe.api_key = 'sk_test_51MreTZEAy08SY67AuRf9elHrmFnL4yBktiRpiZ29iuuUvC5icNfYLv9XuVmggtVml6bUKSuvylsi5B9VPSuRe8PX00PvyX47Oh'
+ stripe.api_key = settings.STRIPE_SECRET_KEY
+ #print(settings.STRIPE_SECRET_KEY)
+ #payment = Ticket.objects.get(pk = booking_id)
+ checkout_session = stripe.checkout.Session.create(
+ line_items=[
+ {
+ # Provide the exact Price ID (for example, pr_1234) of the product you want to sell
+ 'price': 'price_1N5Xl5IPj7kzkHPxkY2059nU',
+ 'quantity': selected_ticketsnum,
+ },
+ ],
+ mode='payment',
+ success_url= 'http://127.0.0.1:8000/5/transactions',
+ cancel_url='http://127.0.0.1:8000/5/showing/2023-04-23/',
+ )
+ # print("heeeey", checkout_session.status)
+ # while checkout_session.status != 'succeed':
+ # print("not done")
+ # else:
+ # print("now its done", checkout_session.status )
+ return redirect(checkout_session.url, code=303)