hugo/AiThingy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Added auth and basic chat system

Browse Source
This commit is contained in:
Hugo H
2025-08-22 10:10:49 +01:00
parent d61b09cb8e
commit ed00ec8251
12 changed files with 1126 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

210
.gitignore vendored Normal file
View File

@@ -0,0 +1,210 @@
# AiThingy config files
config/settings.json
# Byte-compiled / optimized / DLL files
__pycache__/
*.py[codz]
*$py.class
# C extensions
*.so
# Distribution / packaging
.Python
build/
develop-eggs/
dist/
downloads/
eggs/
.eggs/
lib/
lib64/
parts/
sdist/
var/
wheels/
share/python-wheels/
*.egg-info/
.installed.cfg
*.egg
MANIFEST
# PyInstaller
# Usually these files are written by a python script from a template
# before PyInstaller builds the exe, so as to inject date/other infos into it.
*.manifest
*.spec
# Installer logs
pip-log.txt
pip-delete-this-directory.txt
# Unit test / coverage reports
htmlcov/
.tox/
.nox/
.coverage
.coverage.*
.cache
nosetests.xml
coverage.xml
*.cover
*.py.cover
.hypothesis/
.pytest_cache/
cover/
# Translations
*.mo
*.pot
# Django stuff:
*.log
local_settings.py
db.sqlite3
db.sqlite3-journal
# Flask stuff:
instance/
.webassets-cache
# Scrapy stuff:
.scrapy
# Sphinx documentation
docs/_build/
# PyBuilder
.pybuilder/
target/
# Jupyter Notebook
.ipynb_checkpoints
# IPython
profile_default/
ipython_config.py
# pyenv
# For a library or package, you might want to ignore these files since the code is
# intended to run in multiple environments; otherwise, check them in:
# .python-version
# pipenv
# According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
# However, in case of collaboration, if having platform-specific dependencies or dependencies
# having no cross-platform support, pipenv may install dependencies that don't work, or not
# install all needed dependencies.
#Pipfile.lock
# UV
# Similar to Pipfile.lock, it is generally recommended to include uv.lock in version control.
# This is especially recommended for binary packages to ensure reproducibility, and is more
# commonly ignored for libraries.
#uv.lock
# poetry
# Similar to Pipfile.lock, it is generally recommended to include poetry.lock in version control.
# This is especially recommended for binary packages to ensure reproducibility, and is more
# commonly ignored for libraries.
# https://python-poetry.org/docs/basic-usage/#commit-your-poetrylock-file-to-version-control
#poetry.lock
#poetry.toml
# pdm
# Similar to Pipfile.lock, it is generally recommended to include pdm.lock in version control.
# pdm recommends including project-wide configuration in pdm.toml, but excluding .pdm-python.
# https://pdm-project.org/en/latest/usage/project/#working-with-version-control
#pdm.lock
#pdm.toml
.pdm-python
.pdm-build/
# pixi
# Similar to Pipfile.lock, it is generally recommended to include pixi.lock in version control.
#pixi.lock
# Pixi creates a virtual environment in the .pixi directory, just like venv module creates one
# in the .venv directory. It is recommended not to include this directory in version control.
.pixi
# PEP 582; used by e.g. github.com/David-OConnor/pyflow and github.com/pdm-project/pdm
__pypackages__/
# Celery stuff
celerybeat-schedule
celerybeat.pid
# SageMath parsed files
*.sage.py
# Environments
.env
.envrc
.venv
env/
venv/
ENV/
env.bak/
venv.bak/
# Spyder project settings
.spyderproject
.spyproject
# Rope project settings
.ropeproject
# mkdocs documentation
/site
# mypy
.mypy_cache/
.dmypy.json
dmypy.json
# Pyre type checker
.pyre/
# pytype static type analyzer
.pytype/
# Cython debug symbols
cython_debug/
# PyCharm
# JetBrains specific template is maintained in a separate JetBrains.gitignore that can
# be found at https://github.com/github/gitignore/blob/main/Global/JetBrains.gitignore
# and can be added to the global gitignore or merged into this file. For a more nuclear
# option (not recommended) you can uncomment the following to ignore the entire idea folder.
#.idea/
# Abstra
# Abstra is an AI-powered process automation framework.
# Ignore directories containing user credentials, local state, and settings.
# Learn more at https://abstra.io/docs
.abstra/
# Visual Studio Code
# Visual Studio Code specific template is maintained in a separate VisualStudioCode.gitignore
# that can be found at https://github.com/github/gitignore/blob/main/Global/VisualStudioCode.gitignore
# and can be added to the global gitignore or merged into this file. However, if you prefer,
# you could uncomment the following to ignore the entire vscode folder
# .vscode/
# Ruff stuff:
.ruff_cache/
# PyPI configuration file
.pypirc
# Cursor
# Cursor is an AI-powered code editor. `.cursorignore` specifies files/directories to
# exclude from AI features like autocomplete and code analysis. Recommended for sensitive data
# refer to https://docs.cursor.com/context/ignore-files
.cursorignore
.cursorindexingignore
# Marimo
marimo/_static/
marimo/_lsp/
__marimo__/

3
README.md
View File

@@ -1 +1,2 @@
# AiThingy # myAiFrontend
A frontend for Ollama

33
config/example-settings.json Normal file
View File

@@ -0,0 +1,33 @@
{
"branding":{
"name":"AiThingy"
},
"auth_mode":"code",
"default_role":"none",
"default_permissions":[
"createChat"
],
"auth_codes":[
{
"name":"code1",
"code":"a1b2c3",
"role":"user"
},
{
"name":"code2",
"code":"a1b2c3",
"role":"admin"
},
{
"name":"code3",
"code":"a1b2c3",
"role":"guest"
}
],
"oauth_login":"true",
"github_oauth":{
"enabled":"true",
"client_id":"client_id",
"client_secret":"client_secret"
}
}

30
docker-compose.yml Normal file
View File

@@ -0,0 +1,30 @@
# Use root/example as user/password credentials
services:
mongo:
image: mongo
restart: always
environment:
MONGO_INITDB_ROOT_USERNAME: root
MONGO_INITDB_ROOT_PASSWORD: 39zj6bNT5gaXbmuOBAYn5pZRO
MONGO_INITDB_DATABASE: database
volumes:
- ai-mongo-data:/data/db
- ai-mongo-config:/data/configdb
ports:
- 27017:27017
mongo-express:
image: mongo-express
restart: always
ports:
- 8081:8081
environment:
ME_CONFIG_MONGODB_ADMINUSERNAME: root
ME_CONFIG_MONGODB_ADMINPASSWORD: example
ME_CONFIG_MONGODB_URL: mongodb://root:39zj6bNT5gaXbmuOBAYn5pZRO@mongo:27017/
ME_CONFIG_BASICAUTH: false
volumes:
ai-mongo-data:
ai-mongo-config:

358
main.py Normal file
View File

@@ -0,0 +1,358 @@
from flask import Flask, jsonify, request, render_template
from pymongo import MongoClient
from bson.objectid import ObjectId
from datetime import datetime
from argon2 import PasswordHasher
import random
import string
import json
import requests
from urllib.parse import parse_qs
with open("config/settings.json", "r") as f:
settings = json.load(f)
appName = settings["branding"]["name"]
ph = PasswordHasher()
github_client_id = settings["github_oauth"]["client_id"]
github_client_secret = settings["github_oauth"]["client_secret"]
github_auth_endpoint = f"https://github.com/login/oauth/authorize?response_type=code&client_id={github_client_id}&scope=user"
github_token_endpoint = "https://github.com/login/oauth/access_token"
github_user_endpoint = "https://api.github.com/user"
mongoUser = 'root'
mongoPassword = '39zj6bNT5gaXbmuOBAYn5pZRO'
mongoHost = 'localhost'
mongoPort = '27017'
mongoDatabase = 'database'
mongoUri = f'mongodb://{mongoUser}:{mongoPassword}@{mongoHost}:{mongoPort}/'
print(mongoUri)
client = MongoClient(mongoUri)
mydb = client[mongoDatabase]
chatCollection = mydb.chats
usersCollection = mydb.users
try:
client.server_info()
print("Connected to MongoDB successfuly")
except Exception as e:
print("Error connecting to MongoDB:", e)
app = Flask(__name__)
# Chat Details Endpoint:
# Gets details about a chat using the chatId
# Arguments: token (required), details (required), model, name
@app.route('/api/chat/<_id>/details', methods = ['GET', 'POST'])
def getChatHistory(_id):
# Get user auth token
token = request.json['token']
# Find the correct user token in user db
user = usersCollection.find_one({'tokens.token': token}, {"_id":1,"tokens":{"$elemMatch": {"token":token}}})
# If the user exists, continue, otherwise return fail
if (user):
# Convert _id to a string, python doesn't like ObjectId()
user['_id'] = str(user['_id'])
# Check if the token expiry is after the current date (Using unix timestamp, other mongodb Date datatype is a pain to use in python)
if (user['tokens'][0]['expiry'] > int(datetime.now().timestamp())):
# Store the userId
userId = user['_id']
print(userId)
# Get the request details
details = request.json['details']
# If the user is trying to GET data
if (request.method == 'GET'):
# Get the chat from the chatId
returnedChat = chatCollection.find_one({'_id': ObjectId(_id)})
# Convert chatId into string
returnedChat['_id'] = str(returnedChat['_id'])
print("Chat " + _id + " has been found with token " + token)
# Check for detail type and return correct value from db
if (details == "history"):
return jsonify(returnedChat["messages"])
elif (details == "users"):
return jsonify(returnedChat["permissions"])
elif (details == "model"):
return jsonify(returnedChat["model"])
elif (details == "name"):
return jsonify(returnedChat["name"])
else:
# Check for the detail type and add data to db
if (details == "model"):
model = request.json['model']
chatCollection.update_one({'_id': ObjectId(_id)}, { "$set": { "model": model } })
if (details == "name"):
name = request.json['name']
chatCollection.update_one({'_id': ObjectId(_id)}, { "$set": { "name": name } })
return jsonify("Success")
else:
return jsonify("User token is invalid")
else:
return jsonify("User token is invalid")
# Chat creation endpoint
# Create a new chat
# Arguments: token (required), name (required), model (required)
@app.route('/api/chat/create', methods = ['POST'])
def createChat():
token = request.json['token']
user = usersCollection.find_one({'tokens.token': token}, {"_id":1,"tokens":{"$elemMatch": {"token":token}}, "permissions":1})
if (user):
user['_id'] = str(user['_id'])
if (user['tokens'][0]['expiry'] > int(datetime.now().timestamp())):
userId = user['_id']
print(user)
print(user['permissions'])
if ("createChat" in user['permissions']):
print(userId)
name = request.json['name']
model = request.json['model']
chatCollection.insert_one(
{
"name":name,
"model":model,
"permissions": {
userId:[
"owner",
"view",
"message"
]
},
"messages": [
]
}
)
return jsonify("Success")
else:
return jsonify("Incorrect permissions")
else:
return jsonify("User token is invalid")
else:
return jsonify("User token is invalid")
# Signup page
# Returns html signup page
@app.route('/signup', methods = ['GET'])
def signup():
pass
# Index page
# If logged in return home menu (Or logout if token is expired),
# Otherwise return login screen
@app.route('/', methods = ['GET'])
def index():
token = request.cookies.get('auth_token', 'none')
if (token == 'none'):
return render_template('login.html', appName=appName, githubUrl=github_auth_endpoint)
else:
user = usersCollection.find_one({'tokens.token': token}, {"_id":1,"tokens":{"$elemMatch": {"token":token}}})
if (user):
user['_id'] = str(user['_id'])
if (user['tokens'][0]['expiry'] > int(datetime.now().timestamp())):
return render_template('home.html', appName=appName)
else:
render_template('logout.html', appName=appName)
else:
render_template('logout.html', appName=appName)
# Login endpoint
# Api backend for login screen, check for user and returns token
# Arguments: username (required), password (required)
@app.route('/api/login', methods = ['POST'])
def handleLogin():
try:
username = request.json['username'].lower()
user = usersCollection.find_one({"$or":[{"username":username},{"email":username}]})
passwordHash = user["password"]
password = request.json['password']
loggedin = ph.verify(passwordHash, password)
userId = user['_id']
except:
return jsonify("Incorrect username or password")
if (loggedin):
newToken = ''.join(random.choices(string.ascii_letters + string.digits, k=100))
newExpiry = int(datetime.now().timestamp())
newExpiry = newExpiry + 2678400
usersCollection.update_one({'_id':userId}, {"$addToSet":{'tokens':{'token':newToken, 'expiry':newExpiry}}})
return jsonify(newToken)
# Github callback endpoint
# Either logs in the user or returns extra details signup page
# Arguments: code (required) (provided by github)
@app.route('/api/github/authorized', methods = ['GET'])
def handleGithubLogin():
code = request.args.get('code')
res = requests.post(
github_token_endpoint,
data=dict(
client_id=github_client_id,
client_secret=github_client_secret,
code=code,
),
)
res = parse_qs(res.content.decode("utf-8"))
token = res["access_token"][0]
user_email = requests.get("https://api.github.com/user/emails", headers=dict(Authorization=f"Bearer {token}"))
for i in user_email.json():
if(i["primary"]==True):
email = i["email"]
try:
user = usersCollection.find_one({"email":user_email})
userId = user['_id']
newToken = ''.join(random.choices(string.ascii_letters + string.digits, k=100))
newExpiry = int(datetime.now().timestamp())
newExpiry = newExpiry + 2678400
usersCollection.update_one({'_id':userId}, {"$addToSet":{'tokens':{'token':newToken, 'expiry':newExpiry}}})
return jsonify(newToken)
except:
return render_template("oauthsignup.html", appName = appName, provider="github", accessToken=token)
# Oauth2.0 Account signup endpoint
# Creates account using extra details and oauth access token
# Arguments: code (required) (access token provided by idp), username (required), signupcode, display (required)
@app.route('/api/oauthsignup', methods = ['POST'])
def handleOauthSignup():
try:
user_email = requests.get("https://api.github.com/user/emails", headers=dict(Authorization=f"Bearer {request.json['code']}"))
for i in user_email.json():
if(i["primary"]==True):
email = i["email"]
# Set user details
username = request.json['username'].lower()
passwordHash = "a"
creationDate = int(datetime.now().timestamp())
accessCode = request.json['signupcode']
displayName = request.json['display']
# Check if details are taken
sameUsername = usersCollection.count_documents({"username":username})
sameEmail = usersCollection.count_documents({"email":email})
if (sameUsername != 0 ) or ( sameEmail != 0):
return jsonify("User already exists")
# Check for appropriate role
codeFound = False
if (settings["signup_mode"] == "none"):
return jsonify("Signups have been disabled")
elif (settings["signup_mode"] == "codeoptional"):
for i in settings["signup_codes"]:
if (i["code"] == accessCode):
codeFound = True
role = i["role"]
if (codeFound == False):
role = settings["default_role"]
elif (settings["signup_mode"] == "nocode"):
role = settings["default_role"]
elif (settings["signup_mode"] == "coderequired"):
for i in settings["signup_codes"]:
if (i["code"] == accessCode):
codeFound = True
role = i["role"]
if (codeFound == False):
return jsonify("Code not found")
# Create user
usersCollection.insert_one(
{
"_id": ObjectId(),
"name":displayName,
"username":username,
"email":email,
"permissions":settings["default_permissions"],
"role":role,
"password":passwordHash,
"passkeys": [],
"tokens": [],
"creation_date": creationDate
}
)
except:
return jsonify("An error occured")
user = usersCollection.find_one({"email":email})
userId = user['_id']
newToken = ''.join(random.choices(string.ascii_letters + string.digits, k=100))
newExpiry = int(datetime.now().timestamp())
newExpiry = newExpiry + 2678400
usersCollection.update_one({'_id':userId}, {"$addToSet":{'tokens':{'token':newToken, 'expiry':newExpiry}}})
return jsonify(newToken)
# Api signup endpoint
# Create account with user details and get permission based on access code
# Arguments: username (required), email, password (required), access_code, displayname (required)
@app.route('/api/signup', methods = ['POST'])
def handleSignup():
try:
# Set user details
username = request.json['username'].lower()
email = request.json['email'].lower()
password = request.json['password']
passwordHash = ph.hash(password)
creationDate = int(datetime.now().timestamp())
accessCode = request.json['access_code']
displayName = request.json['displayname']
# Check if details are taken
sameUsername = usersCollection.count_documents({"username":username})
sameEmail = usersCollection.count_documents({"email":email})
if (sameUsername != 0 ) or ( sameEmail != 0):
return jsonify("User already exists")
# Check for appropriate role
codeFound = False
if (settings["signup_mode"] == "none"):
return jsonify("Signups have been disabled")
elif (settings["signup_mode"] == "codeoptional"):
for i in settings["signup_codes"]:
if (i["code"] == accessCode):
codeFound = True
role = i["role"]
if (codeFound == False):
role = settings["default_role"]
elif (settings["signup_mode"] == "nocode"):
role = settings["default_role"]
elif (settings["signup_mode"] == "coderequired"):
for i in settings["signup_codes"]:
if (i["code"] == accessCode):
codeFound = True
role = i["role"]
if (codeFound == False):
return jsonify("Code not found")
# Create user
usersCollection.insert_one(
{
"_id": ObjectId(),
"name":displayName,
"username":username,
"email":email,
"permissions":settings["default_permissions"],
"role":role,
"password":passwordHash,
"passkeys": [],
"tokens": [],
"creation_date": creationDate
}
)
except:
return jsonify("An error occured")
# Logout endpoint
# Logs out user and removes token from db
# Arguments: auth_token (cookie) (required)
@app.route('/logout', methods = ['GET'])
def logout():
token = request.cookies.get('auth_token', 'none')
try:
token = request.json['remove_token']
except:
pass
user = usersCollection.update_one({'tokens.token': token}, {"$pull":{'tokens':{'token':token}}})
return render_template('logout.html', appName=appName)
if __name__ == '__main__':
app.run(debug = True)

88
notes.md Normal file
View File

@@ -0,0 +1,88 @@
# Notes
The notes for my aiFrontend project
## Database
aiFrontend uses mongoDB as a database, this is used to store previous chats
### Chats
A chat document should be formatted like this:
```
{
"name":"demoName",
"model": "demoModel",
"permissions": {
"demoUserUUID":[
'owner',
'view',
'message'
]
},
messages: [
{
"role": "user",
"content": "demoQuestion",
"images": ["demoBase64EncodedImage (This line is optional)"]
},
{
"role": "assistant",
"content": "demoResponse",
"tool_calls": [
{
"function": {
"name": "demo_function_name",
"arguments": {
"demoArg":"demoArgInput"
}
}
}
]
}
]
}
```
MongoDB will add an object ID automatically
### Users
A user should be formatted like this:
```
{
"_id": ObjectId(),
"name":"demoName",
"username":"demousername",
"email":"demoemail@example.com",
"permissions":[
"admin",
"createChat",
"banUser",
"unbanUser",
"createUser",
"deleteUser",
"editPermissions",
"seeUsers"
],
"role":"user",
"password":"demoPasswordHash",
"passkeys": [
{
"passkey":"demoPasskey1",
"name":"demoPasskeyName1"
},
{
"passkey":"demoPasskey2",
"name":"demoPasskeyName2"
}
],
"tokens": [
{
"token":"demoToken1",
"expiry":"unixTimecode"
},
{
"token":"demoToken2",
"expiry":"unixTimecode"
}
],
"creation_date": "unixTimecode"
}
```
The username and email should always be in lowercase

BIN
static/github-icon.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 817 B

11
templates/chat.html Normal file
View File

@@ -0,0 +1,11 @@
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Chat | {{ appName }}</title>
</head>
<body>
</body>
</html>

10
templates/home.html Normal file
View File

@@ -0,0 +1,10 @@
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Home | {{ appName }}</title>
</head>
<body>
</body>
</html>

201
templates/login.html Normal file
View File

@@ -0,0 +1,201 @@
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Login | {{ appName }}</title>
</head>
<body>
<style>
body {
font-family: 'Inter', sans-serif;
display: flex;
justify-content: center;
align-items: center;
min-height: 100vh;
background-color: #f8f8f8;
background-image: radial-gradient(#d1d1d1 1px, transparent 1px);
background-size: 20px 20px;
margin: 0;
padding: 16px;
}
.login {
background-color: white;
padding: 40px;
border-radius: 12px;
box-shadow: 0 4px 12px rgba(0, 0, 0, 0.1);
width: 100%;
max-width: 380px;
box-sizing: border-box;
}
.header {
text-align: center;
margin-bottom: 24px;
}
.header h1 {
font-size: 24px;
font-weight: 600;
color: #1f2937;
margin: 0;
}
.header p {
margin-top: 8px;
font-size: 14px;
color: #6b7280;
}
.oauth-buttons {
display: flex;
flex-direction: column;
gap: 16px;
}
.button {
display: flex;
align-items: center;
justify-content: center;
padding: 8px 20px;
border: 1px solid #d1d5db;
border-radius: 8px;
font-size: 14px;
font-weight: 500;
cursor: pointer;
text-decoration: none;
color: #4b5563;
transition: background-color 0.2s ease-in-out, border-color 0.2s ease-in-out;
}
.button:hover {
background-color: #f3f4f6;
border-color: #e5e7eb;
}
.button img {
width: 20px;
height: 20px;
margin-right: 8px;
}
.divider {
display: flex;
align-items: center;
text-align: center;
color: #9ca3af;
font-size: 14px;
margin: 24px 0;
}
.divider::before,
.divider::after {
content: '';
flex: 1;
border-bottom: 1px solid #e5e7eb;
}
.divider:not(:empty)::before {
margin-right: 16px;
}
.divider:not(:empty)::after {
margin-left: 16px;
}
.emaillogin {
display: flex;
flex-direction: column;
gap: 16px;
margin-bottom: 16px;
}
.input {
width: 100%;
padding: 12px;
border: 1px solid #d1d5db;
border-radius: 8px;
font-size: 14px;
box-sizing: border-box;
}
.loginbutton {
background-color: #1f2937;
color: white;
border: 1px solid #1f2937;
padding: 12px 20px;
}
.loginbutton:hover {
background-color: #374151;
border-color: #374151;
}
.footer {
margin-top: 24px;
text-align: center;
font-size: 14px;
color: #6b7280;
}
.footer a {
color: #1f2937;
font-weight: 500;
text-decoration: none;
}
.footer a:hover {
text-decoration: underline;
}
</style>
<div class="login">
<div class="header">
<h1>Sign into {{ appName }}</h1>
<p>Log in:</p>
</div>
<div class="oauth-buttons">
<a href="{{ githubUrl }}" class="button">
<img src="{{ url_for('static', filename='github-icon.png') }}" alt="Github logo">
Sign in with Github
</a>
</div>
<div class="divider">Or</div>
<div class="emaillogin">
<input id="userbox" class="input" type="text" name="username" placeholder="Username">
<input id="passbox" class="input" type="password" name="password" placeholder="Password">
</div>
<a onclick="login(document.getElementById('userbox').value, document.getElementById('passbox').value)" class="button loginbutton">Login</a>
<p id="incorrectdetailstext" style="display: none;">Incorrect username or password</p>
<div class="footer">
<p>Don't have an account? <a href="{{ url_for('signup') }}">Sign up</a></p>
</div>
</div>
<script>
async function login(user, pass) {
try {console.log("attempting to fetch")
const response = await fetch("{{ url_for('handleLogin') }}", {
method: "POST",
headers: {
"Content-Type": "application/json",
},
body: JSON.stringify({ "username": user, "password":pass }),
});
if (!response.ok) {
throw new Error(`Response status: ${response.status}`);
}
const result = await response.json();
if (result != "Incorrect username or password") {
document.cookie = `auth_token=${result}`;
window.location.reload();
} else {
document.getElementById("incorrectdetailstext").style = "display: block;"
}
} catch (error) {
console.error(error.message)
}
return false
}
</script>
</body>
</html>

17
templates/logout.html Normal file
View File

@@ -0,0 +1,17 @@
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Logout | {{ appName }}</title>
</head>
<body>
<div>
<p>You have been logged out</p>
<p><a href="{{ url_for('index') }}">Log back in</a></p>
</div>
<script>
document.cookie = "auth_token=; expires=Thu, 01 Jan 1970 00:00:00 UTC; path=/;";
</script>
</body>
</html>

166
templates/oauthsignup.html Normal file
View File

@@ -0,0 +1,166 @@
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Signup | {{ appName }}</title>
</head>
<body>
<style>
body {
font-family: 'Inter', sans-serif;
display: flex;
justify-content: center;
align-items: center;
min-height: 100vh;
background-color: #f8f8f8;
background-image: radial-gradient(#d1d1d1 1px, transparent 1px);
background-size: 20px 20px;
margin: 0;
padding: 16px;
}
.login {
background-color: white;
padding: 40px;
border-radius: 12px;
box-shadow: 0 4px 12px rgba(0, 0, 0, 0.1);
width: 100%;
max-width: 380px;
box-sizing: border-box;
}
.header {
text-align: center;
margin-bottom: 24px;
}
.header h1 {
font-size: 24px;
font-weight: 600;
color: #1f2937;
margin: 0;
}
.header p {
margin-top: 8px;
font-size: 14px;
color: #6b7280;
}
.button {
display: flex;
align-items: center;
justify-content: center;
padding: 8px 20px;
border: 1px solid #d1d5db;
border-radius: 8px;
font-size: 14px;
font-weight: 500;
cursor: pointer;
text-decoration: none;
color: #4b5563;
transition: background-color 0.2s ease-in-out, border-color 0.2s ease-in-out;
}
.button:hover {
background-color: #f3f4f6;
border-color: #e5e7eb;
}
.button img {
width: 20px;
height: 20px;
margin-right: 8px;
}
.emaillogin {
display: flex;
flex-direction: column;
gap: 16px;
margin-bottom: 16px;
}
.input {
width: 100%;
padding: 12px;
border: 1px solid #d1d5db;
border-radius: 8px;
font-size: 14px;
box-sizing: border-box;
}
.loginbutton {
background-color: #1f2937;
color: white;
border: 1px solid #1f2937;
padding: 12px 20px;
}
.loginbutton:hover {
background-color: #374151;
border-color: #374151;
}
.footer {
margin-top: 24px;
text-align: center;
font-size: 14px;
color: #6b7280;
}
.footer a {
color: #1f2937;
font-weight: 500;
text-decoration: none;
}
.footer a:hover {
text-decoration: underline;
}
</style>
<div class="login">
<div class="header">
<h1>Sign up with {{ appName }}</h1>
<p>Complete your details below</p>
</div>
<div class="emaillogin">
<input id="userbox" class="input" type="text" name="username" placeholder="Username">
<input id="displaybox" class="input" type="text" name="display" placeholder="Display Name">
<input id="codebox" class="input" type="text" name="code" placeholder="Signup Code">
<p id="incorrectdetailstext" style="display: none;">Invalid Code</p>
</div>
<a onclick="oauthsignup(document.getElementById('userbox').value, document.getElementById('displaybox').value, document.getElementById('codebox').value)" class="button loginbutton">Login</a>
<div class="footer">
<p>Have an account? <a href="{{ url_for('index') }}">Log in</a></p>
</div>
</div>
<script>
async function oauthsignup(user, display, code) {
try {
let params = new URLSearchParams(document.location.search);
const response = await fetch("{{ url_for('handleOauthSignup') }}", {
method: "POST",
headers: {
"Content-Type": "application/json",
},
body: JSON.stringify({ "username": user, "display":display, "code":"{{ accessToken }}", "signupcode":code, "provider":"{{ provider }}" }),
});
if (!response.ok) {
throw new Error(`Response status: ${response.status}`);
}
const result = await response.json();
if (result != "Code not found" && response != "Signups have been disabled" && result != "User already exists" && result != "An error occured") {
console.log(result)
//document.location.href = "{{ url_for('index') }}"
} else {
document.getElementById("incorrectdetailstext").style = "display: block;"
}
} catch (error) {
console.error(error.message)
}
return false
}
</script>
</body>
</html>