Update app.py

app.py

@@ -1,12 +1,111 @@
 # app.py
 
-from flask import Flask, render_template
+import os
+import base64
+import io
+from functools import wraps
+import qrcode
 
+from flask import Flask, render_template, request, Response
+from flask_sqlalchemy import SQLAlchemy
+from flask_admin import Admin, AdminIndexView
+from flask_admin.contrib.sqla import ModelView
+
+# --- KONFIGURASI APLIKASI ---
 app = Flask(__name__)
+app.config['SECRET_KEY'] = os.environ.get('SECRET_KEY', 'ganti-dengan-kunci-rahasia-yang-sangat-aman')
+
+# --- KONFIGURASI DATABASE ---
+# Menentukan path untuk file database
+basedir = os.path.abspath(os.path.dirname(__file__))
+app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///' + os.path.join(basedir, 'database.db')
+app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False
+db = SQLAlchemy(app)
+
+
+# --- MODEL DATABASE (STRUKTUR TABEL) ---
+class Product(db.Model):
+    id = db.Column(db.Integer, primary_key=True)
+    name = db.Column(db.String(100), unique=True, nullable=False)
+    description = db.Column(db.Text, nullable=False)
+    price = db.Column(db.String(50), nullable=False)
+    image = db.Column(db.String(100), nullable=True, default='default.jpg')
+
+    def __repr__(self):
+        return f'<Product {self.name}>'
+
+
+# --- FUNGSI KEAMANAN UNTUK ADMIN PANEL ---
+def check_auth(username, password):
+    """Fungsi untuk memeriksa username & password admin."""
+    ADMIN_USER = os.environ.get('ADMIN_USER', 'admin')
+    ADMIN_PASS = os.environ.get('ADMIN_PASS', 'password')
+    return username == ADMIN_USER and password == ADMIN_PASS
+
+def authenticate():
+    """Mengirim respons 401 Unauthorized."""
+    return Response(
+        'Could not verify your access level for that URL.\n'
+        'You have to login with proper credentials', 401,
+        {'WWW-Authenticate': 'Basic realm="Login Required"'})
+
+def protected(f):
+    @wraps(f)
+    def decorated(*args, **kwargs):
+        auth = request.authorization
+        if not auth or not check_auth(auth.username, auth.password):
+            return authenticate()
+        return f(*args, **kwargs)
+    return decorated
 
+
+# --- PENGATURAN ADMIN PANEL ---
+class SecureAdminIndexView(AdminIndexView):
+    @protected
+    def dispatch_request(self, *args, **kwargs):
+        return super(SecureAdminIndexView, self).dispatch_request(*args, **kwargs)
+
+class SecureModelView(ModelView):
+    @protected
+    def dispatch_request(self, *args, **kwargs):
+        return super(SecureModelView, self).dispatch_request(*args, **kwargs)
+
+
+admin = Admin(app, name='Bit & Bean Admin', template_mode='bootstrap4', index_view=SecureAdminIndexView())
+admin.add_view(SecureModelView(Product, db.session))
+
+
+# --- FUNGSI QR CODE (TIDAK BERUBAH) ---
+def generate_qr_code(data):
+    qr = qrcode.QRCode(version=1, box_size=10, border=4)
+    qr.add_data(data)
+    qr.make(fit=True)
+    img = qr.make_image(fill_color="black", back_color="white")
+    buffered = io.BytesIO()
+    img.save(buffered, format="PNG")
+    img_str = base64.b64encode(buffered.getvalue()).decode("utf-8")
+    return img_str
+
+
+# --- ROUTE UNTUK HALAMAN UTAMA ---
 @app.route('/')
 def home():
-    """Menampilkan halaman utama."""
-    return render_template('index.html')
-
-# Tidak ada lagi kode setelah ini
+    """Mengambil data produk dari database dan menampilkannya."""
+    products_from_db = Product.query.all()
+    
+    products_with_qr = []
+    for product in products_from_db:
+        product_url = f"https://NAMA_SPACE_ANDA.hf.space/product/{product.id}" # Ganti dengan URL Space Anda
+        
+        # Konversi objek database menjadi dictionary agar mudah diolah
+        product_data = {
+            "id": product.id,
+            "name": product.name,
+            "description": product.description,
+            "price": product.price,
+            "image": product.image,
+            "qr_code": generate_qr_code(product_url)
+        }
+        products_with_qr.append(product_data)
+        
+    return render_template('index.html', products=products_with_qr)