Hugging Face's logo

Spaces:
Anuj-Panthri
/
Face_rec_api
Build error

App Files Community
1
Face_rec_api
File size: 4,847 Bytes
752c636
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
from flask import render_template,request,jsonify,redirect,url_for,session
import mysql.connector
from werkzeug.security import generate_password_hash,check_password_hash
from app.admin import bp
from app.helper import generate_random_id,access_database_as_admin,create_user_table,drop_user_table


@bp.route("/login/")
def login_page():
    return render_template("admin/login.html")

@bp.route("/login/<message>")
def login_page_message(message):
    return render_template("admin/login.html",message_class='active',message=message)

def get_random_unique_id():
    dataBase = access_database_as_admin()
    cursor=dataBase.cursor()
    
    while(True):
        random_id=generate_random_id()
        cursor.execute("select username from admins where session_token=%s",[random_id])
        if cursor.fetchone() is None: break
    dataBase.close()
    return random_id
    


@bp.route("/authenticate/",methods=["POST"])
def authenticate():
    dataBase = access_database_as_admin()
    cursor=dataBase.cursor()
    cursor.execute("select password from admins where username=%s",[request.form['username']])
    db_password_hash=cursor.fetchone()
    dataBase.close()
    
    # print(db_password_hash)
    if None==db_password_hash:
        # username doesn't exists
        return redirect(url_for('admin.login_page_message', message = "username doesn't exists"))

    elif(check_password_hash(db_password_hash[0],request.form['password'])):
        # set session and login
        session.permanent = True
        
        session['admin_token']=get_random_unique_id()
        
        dataBase = access_database_as_admin()
        cursor=dataBase.cursor()
        cursor.execute("update admins set session_token=%s where username=%s",(session['admin_token'],request.form['username']))
        dataBase.commit()
        dataBase.close()
        
        return redirect("/admin/")
    else:
        # incorrect password 
        return redirect(url_for('admin.login_page_message', message = "Incorrect password"))




def is_auth(func):
    def wrapper_func(*args,**kwargs):
        if "admin_token" not in session:
            return redirect(url_for('admin.login_page_message', message = "login in first"))
        else:
            dataBase = access_database_as_admin()
            cursor=dataBase.cursor()
            cursor.execute("select username from admins where session_token=%s",[session['admin_token']])
            if cursor.fetchone() is None:
                # no such session in db records
                dataBase.close()
                return redirect(url_for('admin.login_page_message', message = "no such session in db"))
            else:
                dataBase.close()
                return func(*args,**kwargs)
    # Renaming the function name:
    wrapper_func.__name__ = func.__name__
    return wrapper_func
    
    
@bp.route("/")
@is_auth
def user_dashboard():
    return render_template("admin/dashboard.html")

@bp.route("/get_all_requests/", methods=["GET"])
@is_auth
def get_all_requests():
    dataBase = access_database_as_admin()
    cursor=dataBase.cursor()
    cursor.execute("select username,request_message,access_key from users where access_key is null or access_key!='rejected';")
    data=cursor.fetchall()
    dataBase.close()
    print(data)
    data_dict=dict()
    for one_row in data:
        for i,column_name in enumerate(cursor.column_names):
            data_dict[column_name]=[one_row[i]] if column_name not in data_dict else data_dict[column_name]+[one_row[i]]

    print(data_dict)
    return jsonify(data_dict)


def get_random_unique_access_key():
    dataBase = access_database_as_admin()
    cursor=dataBase.cursor()
    
    while(True):
        random_access_key=generate_random_id()
        cursor.execute("select username from users where access_key=%s",[random_access_key])
        if cursor.fetchone() is None: break
    dataBase.close()
    return random_access_key


@bp.route("/update_requests/",methods=["POST"])
@is_auth
def update_requests():
    print(request.form)
    dataBase = access_database_as_admin()
    cursor=dataBase.cursor()
    if request.form['mode']=="accept":
        cursor.execute("update users set access_key=%s where username=%s",[get_random_unique_access_key(),request.form['username']])
        create_user_table(request.form['username']) # also add a table for this user

    elif request.form['mode']=="reject":
        cursor.execute("update users set access_key=%s where username=%s",["rejected",request.form['username']])
        drop_user_table(request.form['username'])   # Drop table for this user

    elif request.form['mode']=="revoke":
        cursor.execute("update users set access_key=NULL where username=%s",[request.form['username']])
        
    dataBase.commit()
    dataBase.close()
    return jsonify({"message":"success"})