Update app.py

app.py

@@ -13,6 +13,7 @@ import logging
 import threading
 from huggingface_hub import HfApi, hf_hub_download
 from huggingface_hub.utils import RepositoryNotFoundError
+import requests
 
 BOT_TOKEN = os.getenv("BOT_TOKEN", "7566834146:AAGiG4MaTZZvvbTVsqEJVG5SYK5hUlc_Ewo")
 HOST = '0.0.0.0'
@@ -83,11 +84,10 @@ def load_visitor_data():
                 visitor_data_cache = {}
         return visitor_data_cache
 
-def save_visitor_data(data_to_update):
-    global visitor_data_cache
+def save_visitor_data(data):
     with _data_lock:
         try:
-            visitor_data_cache.update(data_to_update)
+            visitor_data_cache.update(data)
             with open(DATA_FILE, 'w', encoding='utf-8') as f:
                 json.dump(visitor_data_cache, f, ensure_ascii=False, indent=4)
             logging.info(f"Visitor data successfully saved to {DATA_FILE}.")
@@ -157,7 +157,7 @@ def verify_telegram_data(init_data_str):
             auth_date = int(parsed_data.get('auth_date', [0])[0])
             current_time = int(time.time())
             if current_time - auth_date > 86400:
-                 logging.warning(f"Telegram InitData is older than 24 hours (Auth Date: {auth_date}, Current: {current_time}).")
+                 logging.warning(f"Telegram InitData is older than 1 hour (Auth Date: {auth_date}, Current: {current_time}).")
             return parsed_data, True
         else:
             logging.warning(f"Data verification failed. Calculated: {calculated_hash}, Received: {received_hash}")
@@ -416,12 +416,21 @@ TEMPLATE = """
         .icon-link::before { content: '🔗'; }
         .icon-leader::before { content: '🏆'; }
         .icon-company::before { content: '🏢'; }
-        .icon-wallet::before { content: '💎'; } /* TON Wallet Icon */
-        
-        #ton-connect-button-container { margin-top: var(--padding-m); }
-        #ton-wallet-info { margin-top: var(--padding-s); font-size: 0.9em; color: var(--text-secondary-color); text-align: center;}
-        #ton-wallet-info b { color: var(--tg-theme-link-color); }
-
+        .icon-wallet::before { content: '💎'; }
+        .wallet-info-item {
+            font-size: 1em; color: var(--text-secondary-color); word-break: break-all;
+            margin-top: var(--padding-s);
+        }
+        .wallet-info-item strong {
+            color: var(--text-color);
+        }
+        .wallet-balance {
+            font-size: 1.8em; font-weight: 700; color: var(--tg-theme-link-color);
+            margin-top: var(--padding-s);
+        }
+        #ton-connect-button > button {
+             width: 100%;
+        }
         @media (max-width: 480px) {
             .section-title { font-size: 1.8em; }
             .logo span { font-size: 1.4em; }
@@ -455,13 +464,23 @@ TEMPLATE = """
              <a href="#" class="btn contact-link" style="background: var(--accent-gradient-green); width: 100%; margin-top: var(--padding-s);">
                  <i class="icon icon-contact"></i>Написать нам в Telegram
              </a>
-             
-            <div id="ton-connect-button-container">
-                <button id="ton-connect-btn" class="btn" style="width: 100%; background: var(--tg-theme-button-color);"><i class="icon icon-wallet"></i>Подключить TON кошелек</button>
-            </div>
-            <div id="ton-wallet-info" style="display: none;">
-                <p>TON кошелек: <b id="ton-wallet-address"></b></p>
+        </section>
+
+        <section class="section-card">
+            <h2 class="section-title"><i class="icon icon-wallet"></i>TON Кошелек</h2>
+            <p class="description">
+                Подключите ваш TON кошелек, чтобы проверить баланс прямо в приложении.
+            </p>
+            <div id="wallet-info" style="display: none; margin-top: var(--padding-m);">
+                <div class="wallet-info-item">
+                    <strong>Баланс:</strong>
+                    <div class="wallet-balance"><span id="wallet-balance">...</span> TON</div>
+                </div>
+                <div class="wallet-info-item">
+                    <strong>Адрес:</strong> <span id="wallet-address"></span>
+                </div>
             </div>
+            <div id="ton-connect-button" style="margin-top: var(--padding-m);"></div>
         </section>
 
          <section class="ecosystem-header">
@@ -568,9 +587,9 @@ TEMPLATE = """
       </div>
     </div>
 
+
     <script>
         const tg = window.Telegram.WebApp;
-        let tonConnectUI;
 
         function applyTheme(themeParams) {
             const root = document.documentElement;
@@ -581,6 +600,7 @@ TEMPLATE = """
             root.style.setProperty('--tg-theme-button-color', themeParams.button_color || '#31a5f5');
             root.style.setProperty('--tg-theme-button-text-color', themeParams.button_text_color || '#ffffff');
             root.style.setProperty('--tg-theme-secondary-bg-color', themeParams.secondary_bg_color || '#1e1e1e');
+
             try {
                  const bgColor = themeParams.bg_color || '#121212';
                  const r = parseInt(bgColor.slice(1, 3), 16);
@@ -592,50 +612,61 @@ TEMPLATE = """
             }
         }
 
-        function updateTonWalletUI(address) {
-            const tonConnectBtnContainer = document.getElementById('ton-connect-button-container');
-            const tonWalletInfoDiv = document.getElementById('ton-wallet-info');
-            const tonWalletAddressEl = document.getElementById('ton-wallet-address');
-
-            if (address) {
-                tonConnectBtnContainer.style.display = 'none';
-                tonWalletAddressEl.textContent = `${address.slice(0, 6)}...${address.slice(-4)}`;
-                tonWalletInfoDiv.style.display = 'block';
-            } else {
-                tonConnectBtnContainer.style.display = 'block';
-                tonWalletInfoDiv.style.display = 'none';
-            }
-        }
-        
-        async function connectTonWalletBackend(walletAddress) {
+        async function fetchBalance(address) {
+            const balanceEl = document.getElementById('wallet-balance');
+            balanceEl.textContent = '...';
             try {
-                const response = await fetch('/connect_ton_wallet', {
+                const response = await fetch('/ton_balance', {
                     method: 'POST',
                     headers: {
                         'Content-Type': 'application/json',
                         'Accept': 'application/json'
                     },
-                    body: JSON.stringify({ initData: tg.initData, walletAddress: walletAddress }),
+                    body: JSON.stringify({ address: address }),
                 });
+
                 if (!response.ok) {
-                    const errorData = await response.json().catch(() => ({}));
-                    throw new Error(`HTTP error ${response.status}: ${errorData.message || 'Failed to connect wallet on backend'}`);
+                    throw new Error(`HTTP error! status: ${response.status}`);
                 }
+
                 const data = await response.json();
                 if (data.status === 'ok') {
-                    console.log('TON Wallet connected successfully on backend.');
-                    updateTonWalletUI(walletAddress);
-                    tg.HapticFeedback.notificationOccurred('success');
+                    balanceEl.textContent = data.balance;
                 } else {
-                    throw new Error(data.message || 'Backend rejected TON wallet connection.');
+                    throw new Error(data.message || 'Failed to fetch balance');
                 }
             } catch (error) {
-                console.error('Error connecting TON wallet with backend:', error);
-                tg.showAlert(`Ошибка подключения кошелька: ${error.message}`);
-                // Revert UI if needed, or keep button visible for retry
+                console.error('Error fetching balance:', error);
+                balanceEl.textContent = 'Ошибка';
+                if (tg.HapticFeedback) tg.HapticFeedback.notificationOccurred('error');
             }
         }
 
+        function setupTonConnect() {
+            const tonConnectUI = new TonConnectUI.TonConnectUI({
+                manifestUrl: window.location.origin + '/tonconnect-manifest.json',
+                uiOptions: {
+                    buttonRootId: 'ton-connect-button'
+                }
+            });
+
+            const walletInfoEl = document.getElementById('wallet-info');
+            const walletAddressEl = document.getElementById('wallet-address');
+
+            tonConnectUI.onStatusChange(wallet => {
+                if (wallet) {
+                    const address = TonConnectUI.toUserFriendlyAddress(wallet.account.address);
+                    walletAddressEl.textContent = `${address.slice(0, 6)}...${address.slice(-4)}`;
+                    walletInfoEl.style.display = 'block';
+                    fetchBalance(wallet.account.address);
+                } else {
+                    walletInfoEl.style.display = 'none';
+                    document.getElementById('wallet-balance').textContent = '...';
+                    walletAddressEl.textContent = '';
+                }
+            });
+        }
+
 
         function setupTelegram() {
             if (!tg || !tg.initData) {
@@ -667,19 +698,12 @@ TEMPLATE = """
              .then(data => {
                  if (data.status === 'ok' && data.verified) {
                      console.log('Backend verification successful.');
-                     if (data.ton_wallet_address) {
-                         updateTonWalletUI(data.ton_wallet_address);
-                     } else {
-                         updateTonWalletUI(null);
-                     }
                  } else {
                      console.warn('Backend verification failed:', data.message);
-                     updateTonWalletUI(null);
                  }
              })
              .catch(error => {
                  console.error('Error sending initData for verification:', error);
-                 updateTonWalletUI(null);
              });
 
              const user = tg.initDataUnsafe?.user;
@@ -712,58 +736,21 @@ TEMPLATE = """
                         tg.HapticFeedback.impactOccurred('light');
                      }
                  });
-                 closeBtn.addEventListener('click', () => { modal.style.display = "none"; });
+
+                 closeBtn.addEventListener('click', () => {
+                     modal.style.display = "none";
+                 });
+
                  window.addEventListener('click', (event) => {
-                     if (event.target == modal) { modal.style.display = "none"; }
+                     if (event.target == modal) {
+                         modal.style.display = "none";
+                     }
                  });
              } else {
                  console.error("Modal elements not found!");
              }
-
-            // TON Connect UI Initialization
-            // The manifest an absolute URL to the manifest.json
-            const manifestUrl = new URL('/tonconnect-manifest.json', window.location.origin).toString();
-            tonConnectUI = new TON_CONNECT_UI.TonConnectUI({
-                manifestUrl: manifestUrl,
-                buttonRootId: 'ton-connect-button-container', // Optional: if you want SDK to render button
-                actionsConfiguration: {
-                    twaReturnUrl: `https://t.me/${tg.WebApp. Gastgeberanwendung}/${tg.WebApp.Startparam}` // Optional
-                }
-            });
-            
-            // Handle TON Connect button click manually if not using buttonRootId or want custom button
-            const tonConnectBtnManual = document.getElementById('ton-connect-btn');
-            if (tonConnectBtnManual) {
-                 tonConnectBtnManual.addEventListener('click', async () => {
-                    try {
-                        const connectedWallet = await tonConnectUI.connectWallet();
-                        if (connectedWallet && connectedWallet.account && connectedWallet.account.address) {
-                            const rawAddress = TON_CONNECT_UI.Address.parse(connectedWallet.account.address).toString({ testOnly: false }); // mainnet address
-                            console.log('TON Wallet connected:', rawAddress);
-                            await connectTonWalletBackend(rawAddress);
-                        } else {
-                           console.warn('TON Wallet connection cancelled or failed.');
-                        }
-                    } catch (error) {
-                        console.error('Error during TON wallet connection process:', error);
-                        tg.showAlert('Не удалось подключить TON кошелек.');
-                    }
-                });
-            }
-            
-            // Subscribe to connection status changes (optional, good for advanced UI updates)
-            tonConnectUI.onStatusChange(walletAndAccount => {
-                if (walletAndAccount && walletAndAccount.account) {
-                    const rawAddress = TON_CONNECT_UI.Address.parse(walletAndAccount.account.address).toString({ testOnly: false });
-                    console.log('TON Connect status change, connected:', rawAddress);
-                    // connectTonWalletBackend(rawAddress); // Potentially connect here too, or rely on button click
-                    updateTonWalletUI(rawAddress);
-                } else {
-                    console.log('TON Connect status change, disconnected.');
-                    updateTonWalletUI(null);
-                }
-            });
-
+             
+             setupTonConnect();
 
              document.body.style.visibility = 'visible';
          }
@@ -782,6 +769,7 @@ TEMPLATE = """
                   }
              }, 3500);
         }
+
     </script>
 </body>
 </html>
@@ -825,7 +813,7 @@ ADMIN_TEMPLATE = """
         h1 { text-align: center; color: var(--admin-secondary); margin-bottom: var(--padding); font-weight: 600; }
         .user-grid {
             display: grid;
-            grid-template-columns: repeat(auto-fill, minmax(320px, 1fr)); /* Wider cards */
+            grid-template-columns: repeat(auto-fill, minmax(280px, 1fr));
             gap: var(--padding);
             margin-top: var(--padding);
         }
@@ -853,8 +841,8 @@ ADMIN_TEMPLATE = """
         }
         .user-card .name { font-weight: 600; font-size: 1.2em; margin-bottom: 0.3rem; color: var(--admin-primary); }
         .user-card .username { color: var(--admin-secondary); margin-bottom: 0.8rem; font-size: 0.95em; }
-        .user-card .details { font-size: 0.9em; color: #495057; word-break: break-all; width:100%; } /* break-all */
-        .user-card .detail-item { margin-bottom: 0.3rem; text-align: left; padding-left: 10px; }
+        .user-card .details { font-size: 0.9em; color: #495057; word-break: break-word; }
+        .user-card .detail-item { margin-bottom: 0.3rem; }
         .user-card .detail-item strong { color: var(--admin-text); }
         .user-card .timestamp { font-size: 0.8em; color: var(--admin-secondary); margin-top: 1rem; }
         .no-users { text-align: center; color: var(--admin-secondary); margin-top: 2rem; font-size: 1.1em; }
@@ -942,7 +930,6 @@ ADMIN_TEMPLATE = """
                            <div class="detail-item"><strong>Язык:</strong> {{ user.language_code or 'N/A' }}</div>
                            <div class="detail-item"><strong>Premium:</strong> {{ 'Да' if user.is_premium else 'Нет' }}</div>
                            <div class="detail-item"><strong>Телефон:</strong> {{ user.phone_number or 'Недоступен' }}</div>
-                           <div class="detail-item"><strong>TON Wallet:</strong> {{ user.ton_wallet_address or 'N/A' }}</div>
                         </div>
                          <div class="timestamp">Визит: {{ user.visited_at_str }}</div>
                     </div>
@@ -981,8 +968,14 @@ ADMIN_TEMPLATE = """
                 loader.style.display = 'none';
             }
         }
-        function triggerDownload() { handleFetch('/admin/download_data', 'скачивание'); }
-        function triggerUpload() { handleFetch('/admin/upload_data', 'загрузка'); }
+
+        function triggerDownload() {
+            handleFetch('/admin/download_data', 'скачивание');
+        }
+
+        function triggerUpload() {
+            handleFetch('/admin/upload_data', 'загрузка');
+        }
     </script>
 </body>
 </html>
@@ -993,24 +986,6 @@ def index():
     theme_params = {}
     return render_template_string(TEMPLATE, theme=theme_params)
 
-@app.route('/tonconnect-manifest.json')
-def ton_manifest():
-    # Ensure this URL is correctly pointing to your app's domain
-    # For local dev, request.host_url should work. For production, ensure HOST is correct.
-    app_url = request.host_url.strip('/') 
-    # Use a publicly accessible icon URL
-    icon_url = "https://huggingface.co/spaces/Aleksmorshen/Telemap8/resolve/main/morshengroup.jpg"
-    
-    manifest = {
-        "url": app_url,
-        "name": "Morshen Group Mini App",
-        "iconUrl": icon_url,
-        "termsOfUseUrl": f"{app_url}/terms-of-use", # Placeholder
-        "privacyPolicyUrl": f"{app_url}/privacy-policy" # Placeholder
-    }
-    return jsonify(manifest)
-
-
 @app.route('/verify', methods=['POST'])
 def verify_data():
     try:
@@ -1020,6 +995,7 @@ def verify_data():
             return jsonify({"status": "error", "message": "Missing initData"}), 400
 
         user_data_parsed, is_valid = verify_telegram_data(init_data_str)
+
         user_info_dict = {}
         if user_data_parsed and 'user' in user_data_parsed:
             try:
@@ -1027,107 +1003,36 @@ def verify_data():
                 user_info_dict = json.loads(user_json_str)
             except Exception as e:
                 logging.error(f"Could not parse user JSON: {e}")
-
-        if is_valid and user_info_dict.get('id'):
-            user_id = user_info_dict['id']
-            user_id_str = str(user_id)
-            now = time.time()
-            
-            new_telegram_data = {
-                'id': user_id,
-                'first_name': user_info_dict.get('first_name'),
-                'last_name': user_info_dict.get('last_name'),
-                'username': user_info_dict.get('username'),
-                'photo_url': user_info_dict.get('photo_url'),
-                'language_code': user_info_dict.get('language_code'),
-                'is_premium': user_info_dict.get('is_premium', False),
-                'phone_number': user_info_dict.get('phone_number'),
-                'visited_at': now,
-                'visited_at_str': datetime.fromtimestamp(now).strftime('%Y-%m-%d %H:%M:%S')
-            }
-
-            ton_wallet_address_to_return = None
-            with _data_lock:
-                current_user_data = visitor_data_cache.get(user_id_str, {})
-                current_user_data.update(new_telegram_data)
-                visitor_data_cache[user_id_str] = current_user_data
-                ton_wallet_address_to_return = current_user_data.get('ton_wallet_address')
-            
-            save_visitor_data({user_id_str: current_user_data})
-            
-            return jsonify({
-                "status": "ok", 
-                "verified": True, 
-                "user": user_info_dict,
-                "ton_wallet_address": ton_wallet_address_to_return
-            }), 200
+                user_info_dict = {}
+
+        if is_valid:
+            user_id = user_info_dict.get('id')
+            if user_id:
+                now = time.time()
+                user_entry = {
+                    str(user_id): {
+                        'id': user_id,
+                        'first_name': user_info_dict.get('first_name'),
+                        'last_name': user_info_dict.get('last_name'),
+                        'username': user_info_dict.get('username'),
+                        'photo_url': user_info_dict.get('photo_url'),
+                        'language_code': user_info_dict.get('language_code'),
+                        'is_premium': user_info_dict.get('is_premium', False),
+                        'phone_number': user_info_dict.get('phone_number'),
+                        'visited_at': now,
+                        'visited_at_str': datetime.fromtimestamp(now).strftime('%Y-%m-%d %H:%M:%S')
+                    }
+                }
+                save_visitor_data(user_entry)
+            return jsonify({"status": "ok", "verified": True, "user": user_info_dict}), 200
         else:
-            logging.warning(f"Verification failed for user: {user_info_dict.get('id') if user_info_dict else 'Unknown'}")
+            logging.warning(f"Verification failed for user: {user_info_dict.get('id')}")
             return jsonify({"status": "error", "verified": False, "message": "Invalid data"}), 403
 
     except Exception as e:
         logging.exception("Error in /verify endpoint")
         return jsonify({"status": "error", "message": "Internal server error"}), 500
 
-@app.route('/connect_ton_wallet', methods=['POST'])
-def connect_ton_wallet():
-    try:
-        req_data = request.get_json()
-        init_data_str = req_data.get('initData')
-        wallet_address = req_data.get('walletAddress')
-
-        if not init_data_str or not wallet_address:
-            return jsonify({"status": "error", "message": "Missing initData or walletAddress"}), 400
-
-        user_data_parsed, is_valid = verify_telegram_data(init_data_str)
-        if not is_valid:
-            return jsonify({"status": "error", "message": "Invalid Telegram data"}), 403
-
-        user_info_dict = {}
-        if user_data_parsed and 'user' in user_data_parsed:
-            try:
-                user_json_str = unquote(user_data_parsed['user'][0])
-                user_info_dict = json.loads(user_json_str)
-            except Exception as e:
-                logging.error(f"Could not parse user JSON during TON connect: {e}")
-                return jsonify({"status": "error", "message": "Failed to parse user data"}), 400
-        
-        user_id = user_info_dict.get('id')
-        if not user_id:
-            return jsonify({"status": "error", "message": "User ID not found in Telegram data"}), 400
-        
-        user_id_str = str(user_id)
-        now = time.time()
-
-        with _data_lock:
-            user_record = visitor_data_cache.get(user_id_str)
-            if not user_record:
-                logging.info(f"User {user_id_str} not in cache, creating basic entry for TON connect.")
-                user_record = {
-                    'id': user_id,
-                    'first_name': user_info_dict.get('first_name'),
-                    'last_name': user_info_dict.get('last_name'),
-                    'username': user_info_dict.get('username'),
-                    'visited_at': now, # Or use a specific 'created_at'
-                    'visited_at_str': datetime.fromtimestamp(now).strftime('%Y-%m-%d %H:%M:%S')
-                }
-            
-            user_record['ton_wallet_address'] = wallet_address
-            user_record['ton_wallet_connected_at'] = now
-            user_record['ton_wallet_connected_at_str'] = datetime.fromtimestamp(now).strftime('%Y-%m-%d %H:%M:%S')
-            
-            visitor_data_cache[user_id_str] = user_record
-            data_to_save = {user_id_str: user_record}
-        
-        save_visitor_data(data_to_save)
-        
-        return jsonify({"status": "ok", "message": "TON wallet connected and saved successfully."}), 200
-
-    except Exception as e:
-        logging.exception("Error in /connect_ton_wallet endpoint")
-        return jsonify({"status": "error", "message": "Internal server error"}), 500
-
-
 @app.route('/admin')
 def admin_panel():
     current_data = load_visitor_data()
@@ -1149,28 +1054,66 @@ def admin_trigger_upload():
     upload_data_to_hf_async()
     return jsonify({"status": "ok", "message": "Загрузка данных на Hugging Face запущена в фоновом режиме."})
 
-# Placeholder routes for terms and privacy for tonconnect-manifest.json
-@app.route('/terms-of-use')
-def terms_of_use():
-    return "Terms of Use: To be defined.", 200
-
-@app.route('/privacy-policy')
-def privacy_policy():
-    return "Privacy Policy: To be defined.", 200
-
+@app.route('/tonconnect-manifest.json')
+def tonconnect_manifest():
+    return jsonify({
+        "url": request.host_url.rstrip('/'),
+        "name": "Morshen Group App",
+        "iconUrl": "https://huggingface.co/spaces/Aleksmorshen/Telemap8/resolve/main/morshengroup.jpg"
+    })
+
+@app.route('/ton_balance', methods=['POST'])
+def get_ton_balance():
+    req_data = request.get_json()
+    address = req_data.get('address')
+    if not address:
+        return jsonify({"status": "error", "message": "Address is required"}), 400
+    
+    try:
+        api_url = f"https://toncenter.com/api/v2/getWalletInformation?address={address}"
+        response = requests.get(api_url)
+        response.raise_for_status()
+        data = response.json()
+
+        if data.get("ok"):
+            balance_nanotons = int(data["result"]["balance"])
+            balance_ton = balance_nanotons / 1_000_000_000
+            return jsonify({"status": "ok", "balance": f"{balance_ton:.4f}"})
+        else:
+            return jsonify({"status": "error", "message": "Failed to get balance from API"}), 500
+    except requests.exceptions.RequestException as e:
+        logging.error(f"Error fetching TON balance from Toncenter: {e}")
+        return jsonify({"status": "error", "message": "Could not connect to TON API"}), 503
+    except (KeyError, ValueError) as e:
+        logging.error(f"Error parsing Toncenter response: {e}")
+        return jsonify({"status": "error", "message": "Invalid API response from Toncenter"}), 500
 
 if __name__ == '__main__':
+    print("---")
     print("--- MORSHEN GROUP MINI APP SERVER ---")
+    print("---")
     print(f"Flask server starting on http://{HOST}:{PORT}")
     print(f"Using Bot Token ID: {BOT_TOKEN.split(':')[0]}")
+    print(f"Visitor data file: {DATA_FILE}")
+    print(f"Hugging Face Repo: {REPO_ID}")
+    print(f"HF Data Path: {HF_DATA_FILE_PATH}")
     if not HF_TOKEN_READ or not HF_TOKEN_WRITE:
-         print("--- WARNING: HUGGING FACE TOKEN(S) NOT SET. Backup/restore limited. ---")
+         print("---")
+         print("--- WARNING: HUGGING FACE TOKEN(S) NOT SET ---")
+         print("--- Backup/restore functionality will be limited. Set HF_TOKEN_READ and HF_TOKEN_WRITE environment variables.")
+         print("---")
     else:
-         print("--- Hugging Face tokens found. Attempting initial data download...")
+         print("--- Hugging Face tokens found.")
+         print("--- Attempting initial data download from Hugging Face...")
          download_data_from_hf()
 
     load_visitor_data()
-    print("--- SECURITY WARNING: /admin route and sub-routes are NOT protected. ---")
+
+    print("---")
+    print("--- SECURITY WARNING ---")
+    print("--- The /admin route and its sub-routes are NOT protected.")
+    print("--- Implement proper authentication before deploying.")
+    print("---")
 
     if HF_TOKEN_WRITE:
         backup_thread = threading.Thread(target=periodic_backup, daemon=True)