DjalimSimaila/SAE-A2-TruthInquiry
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #119 from ThomasRubini/admin_auth

Browse Source
This commit is contained in:
Thomas Rubini 2023-03-27 17:13:31 +02:00 committed by GitHub
commit 8ce6fb267f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
5 changed files with 53 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.env.dist
View File

@ -9,3 +9,4 @@ DB_PORT=3306
DB_USER=""
DB_PASSWORD=""
DB_DBNAME=""
ADMIN_PASSWORD="s0meV3ryL0ngP@sswOrd"

11
truthinquiry/routes/routes_admin.py
View File

@ -3,18 +3,26 @@ from sqlalchemy import select, or_
from truthinquiry.ext.database.models import *
from truthinquiry.ext.database.fsa import db
from truthinquiry.utils import require_admin
routes_admin = flask.Blueprint("admin", __name__)
DEFAULT_LANG = "FR"
@routes_admin.route("/")
@require_admin(ui=True)
def index():
npcs_objs = db.session.query(Npc).all()
npcs_dicts = [{"id": npc_obj.NPC_ID, "name": npc_obj.NAME_LOCALE.get_text(DEFAULT_LANG).TEXT} for npc_obj in npcs_objs]
return flask.render_template("admin/index.html", npcs=npcs_dicts)
@routes_admin.route("/auth")
def auth():
return flask.render_template("admin/auth.html")
@routes_admin.route("/npc/<npc_id>")
@require_admin(ui=True)
def npc(npc_id):
if npc_id == "new":
return flask.render_template("admin/npc.html", npc={})
@ -36,6 +44,7 @@ def npc(npc_id):
return flask.render_template("admin/npc.html", npc=npc_dict)
@routes_admin.route("/questions")
@require_admin(ui=True)
def questions():
lang = DEFAULT_LANG
@ -62,6 +71,7 @@ def questions():
return flask.render_template("admin/questions.html", questions=data, langs=["FR", "EN"])
@routes_admin.route("/places")
@require_admin(ui=True)
def places():
lang = DEFAULT_LANG
@ -70,6 +80,7 @@ def places():
return flask.render_template("admin/places.html", places=places_dicts)
@routes_admin.route("/traits")
@require_admin(ui=True)
def traits():
lang = DEFAULT_LANG

16
truthinquiry/routes/routes_api_admin.py
View File

@ -1,13 +1,26 @@
import os
import flask
from sqlalchemy import select, delete, or_
from truthinquiry.ext.database.models import *
from truthinquiry.ext.database.fsa import db
from truthinquiry.utils import require_admin
routes_api_admin = flask.Blueprint("api_admin", __name__)
@routes_api_admin.route("/auth", methods=["GET", "POST"])
def auth():
password = flask.request.values.get("password")
if password == os.getenv("ADMIN_PASSWORD"):
flask.session["admin"] = True
return flask.redirect("/admin")
else:
return flask.redirect("/admin/auth?failed=1")
@routes_api_admin.route("/setQuestions", methods=["GET", "POST"])
@require_admin(api=True)
def set_questions():
if not flask.request.json:
return {"error": 1, "msg": "no json set"}
@ -44,6 +57,7 @@ def set_questions():
return {"error": 0}
@routes_api_admin.route("/setTraits", methods=["GET", "POST"])
@require_admin(api=True)
def set_traits():
input_lang = flask.request.json["lang"]
input_traits = flask.request.json["traits"]
@ -86,6 +100,7 @@ def set_traits():
return {"error": 0}
@routes_api_admin.route("/setPlaces", methods=["GET", "POST"])
@require_admin(api=True)
def set_places():
input_lang = flask.request.json["lang"]
input_places = flask.request.json["places"]
@ -124,6 +139,7 @@ def set_places():
return {"error": 0}
@routes_api_admin.route("/setNpc", methods=["GET", "POST"])
@require_admin(api=True)
def set_npc():
input_lang = flask.request.json["lang"]
input_npc = flask.request.json["npc"]

5
truthinquiry/templates/admin/auth.html Normal file
View File

@ -0,0 +1,5 @@
<form action="/api/v1/admin/auth" method="POST">
<p>Password :</p>
<input name="password">
<input type="submit" value="Submit">
</form>

20
truthinquiry/utils.py Normal file
View File

@ -0,0 +1,20 @@
from functools import wraps
import flask
def require_admin(*args, **kwargs):
def decorator(route):
@wraps(route)
def decorated_function(*route_args, **route_kwargs):
if flask.session.get("admin"):
return route(*route_args, **route_kwargs)
elif kwargs.get("api"):
return {"error": 1, "msg": "Invalid authentication"}
elif kwargs.get("ui"):
return flask.redirect("/admin/auth")
else:
raise ValueError("Can't determine request type")
return decorated_function
return decorator