Testapi

Sleeping

App Files Files Community

Kgshop commited on Mar 13, 2025

Commit

77a445f

verified ·

1 Parent(s): 63e4900

Update app.py

Browse files

Files changed (1) hide show

app.py +41 -10

app.py CHANGED Viewed

@@ -8,10 +8,8 @@ from datetime import datetime
 from huggingface_hub import HfApi, hf_hub_download
 from huggingface_hub.utils import RepositoryNotFoundError
 from werkzeug.utils import secure_filename
-import hashlib
 app = Flask(__name__)
-app.secret_key = 'your_secret_key_here'  # Замените на безопасный ключ
 DATA_FILE = 'data_detobuv.json'
 USERS_FILE = 'users.json'
@@ -71,9 +69,6 @@ def save_users(users):
     with open(USERS_FILE, 'w', encoding='utf-8') as file:
         json.dump(users, file, ensure_ascii=False, indent=4)
-def hash_password(password):
-    return hashlib.sha256(password.encode()).hexdigest()
 def upload_db_to_hf():
     try:
         api = HfApi()
@@ -451,6 +446,7 @@ def catalog():
                     <i class="fas fa-moon"></i>
                 </button>
             </div>
             <div class="filters-container">
                 <button class="category-filter active" data-category="all">Все категории</button>
                 {% for category in categories %}
@@ -487,7 +483,6 @@ def catalog():
                 </div>
                 {% endfor %}
             </div>
-            <div class="store-address">{{ store_address }}</div>
         </div>
         <!-- Product Modal -->
@@ -545,6 +540,18 @@ def catalog():
                 document.querySelector('.theme-toggle i').classList.replace('fa-moon', 'fa-sun');
             }
             function openModal(index) {
                 loadProductDetails(index);
                 document.getElementById('productModal').style.display = "block";
@@ -674,8 +681,8 @@ def catalog():
                     orderText += `${index + 1}. ${item.name} - ${item.price} с × ${item.quantity} (Цвет: ${item.color})%0A`;
                 });
                 orderText += `Итого: ${total} с%0A`;
-                orderText += `Страна: {{ session['country'] }}%0A`;
-                orderText += `Город: {{ session['city'] }}`;
                 window.open(`https://api.whatsapp.com/send?phone=996555360556&text=${orderText}`, '_blank');
             }
@@ -786,7 +793,7 @@ def register():
             return "Пользователь с таким логином уже существует", 400
         users[login] = {
-            'password': hash_password(password),
             'country': country,
             'city': city,
             'purchase_type': purchase_type
@@ -871,6 +878,12 @@ def register():
                 <a href="{{ url_for('login') }}">Уже есть аккаунт? Войти</a>
             </p>
         </div>
     </body>
     </html>
     ''')
@@ -882,7 +895,7 @@ def login():
         password = request.form.get('password')
         users = load_users()
-        if login in users and users[login]['password'] == hash_password(password):
             session['user'] = login
             session['country'] = users[login]['country']
             session['city'] = users[login]['city']
@@ -954,10 +967,28 @@ def login():
                 <a href="{{ url_for('register') }}">Нет аккаунта? Зарегистрироваться</a>
             </p>
         </div>
     </body>
     </html>
     ''')
 @app.route('/logout')
 def logout():
     session.pop('user', None)

 from huggingface_hub import HfApi, hf_hub_download
 from huggingface_hub.utils import RepositoryNotFoundError
 from werkzeug.utils import secure_filename
 app = Flask(__name__)
 DATA_FILE = 'data_detobuv.json'
 USERS_FILE = 'users.json'
     with open(USERS_FILE, 'w', encoding='utf-8') as file:
         json.dump(users, file, ensure_ascii=False, indent=4)
 def upload_db_to_hf():
     try:
         api = HfApi()
                     <i class="fas fa-moon"></i>
                 </button>
             </div>
+            <div class="store-address">{{ store_address }}</div>
             <div class="filters-container">
                 <button class="category-filter active" data-category="all">Все категории</button>
                 {% for category in categories %}
                 </div>
                 {% endfor %}
             </div>
         </div>
         <!-- Product Modal -->
                 document.querySelector('.theme-toggle i').classList.replace('fa-moon', 'fa-sun');
             }
+            // Автоматическая авторизация из localStorage
+            const storedUser = localStorage.getItem('user');
+            if (storedUser && !{{ is_authenticated|tojson }}) {
+                fetch('/auto_login', {
+                    method: 'POST',
+                    headers: { 'Content-Type': 'application/json' },
+                    body: JSON.stringify({ login: storedUser })
+                }).then(response => {
+                    if (response.ok) window.location.reload();
+                });
+            }
             function openModal(index) {
                 loadProductDetails(index);
                 document.getElementById('productModal').style.display = "block";
                     orderText += `${index + 1}. ${item.name} - ${item.price} с × ${item.quantity} (Цвет: ${item.color})%0A`;
                 });
                 orderText += `Итого: ${total} с%0A`;
+                orderText += `Страна: {{ session.get('country', 'Не указана') }}%0A`;
+                orderText += `Город: {{ session.get('city', 'Не указан') }}`;
                 window.open(`https://api.whatsapp.com/send?phone=996555360556&text=${orderText}`, '_blank');
             }
             return "Пользователь с таким логином уже существует", 400
         users[login] = {
+            'password': password,  # Сохранение пароля без хеширования
             'country': country,
             'city': city,
             'purchase_type': purchase_type
                 <a href="{{ url_for('login') }}">Уже есть аккаунт? Войти</a>
             </p>
         </div>
+        <script>
+            document.querySelector('form').addEventListener('submit', function() {
+                const login = document.querySelector('input[name="login"]').value;
+                localStorage.setItem('user', login);
+            });
+        </script>
     </body>
     </html>
     ''')
         password = request.form.get('password')
         users = load_users()
+        if login in users and users[login]['password'] == password:
             session['user'] = login
             session['country'] = users[login]['country']
             session['city'] = users[login]['city']
                 <a href="{{ url_for('register') }}">Нет аккаунта? Зарегистрироваться</a>
             </p>
         </div>
+        <script>
+            document.querySelector('form').addEventListener('submit', function() {
+                const login = document.querySelector('input[name="login"]').value;
+                localStorage.setItem('user', login);
+            });
+        </script>
     </body>
     </html>
     ''')
+@app.route('/auto_login', methods=['POST'])
+def auto_login():
+    data = request.get_json()
+    login = data.get('login')
+    users = load_users()
+    if login in users:
+        session['user'] = login
+        session['country'] = users[login]['country']
+        session['city'] = users[login]['city']
+        return "OK", 200
+    return "Ошибка авторизации", 401
 @app.route('/logout')
 def logout():
     session.pop('user', None)