Spaces:

NHMUK
/

Oauth_test

Sleeping

App Files Files Community

Chris Addis commited on May 6, 2025

Commit

a10d489

1 Parent(s): a1fd37a

test

Browse files

Files changed (3) hide show

.ipynb_checkpoints/README-checkpoint.md +13 -0
README.md +1 -0
app.py +29 -271

.ipynb_checkpoints/README-checkpoint.md ADDED Viewed

	@@ -0,0 +1,13 @@

+---
+title: Oauth Test
+emoji: 💻
+colorFrom: blue
+colorTo: yellow
+sdk: gradio
+sdk_version: 5.29.0
+app_file: app.py
+pinned: false
+license: mit
+---
+Check out the configuration reference at https://huggingface.co/docs/hub/spaces-config-reference

README.md CHANGED Viewed

@@ -7,6 +7,7 @@ sdk: gradio
 sdk_version: 5.29.0
 app_file: app.py
 pinned: false
 license: mit
 ---

 sdk_version: 5.29.0
 app_file: app.py
 pinned: false
+hf_oauth: true
 license: mit
 ---

app.py CHANGED Viewed

@@ -1,6 +1,6 @@
 import gradio as gr
 import os
-from huggingface_hub import HfApi, hf_hub_url
 import json
 # IMPORTANT: Debug prints to verify environment variables
@@ -9,276 +9,34 @@ print(f"Environment variables available: {list(os.environ.keys())}")
 # Get authorized users from environment variable/secret
 authorized_users_str = os.environ.get("AUTHORIZED_USER_IDS", "")
-print(f"Raw AUTHORIZED_USER_IDS value: '{authorized_users_str}'")
-# Parse the comma-separated list into a set
 AUTHORIZED_USER_IDS = set(authorized_users_str.split(',') if authorized_users_str and authorized_users_str.strip() else [])
 print(f"Parsed authorized users: {AUTHORIZED_USER_IDS}")
-print("=================================")
-# Function to determine if the current user has full access
-def check_user_access():
-    """Check if the current user has full access based on their Hugging Face identity."""
-    try:
-        # Get username from Gradio's authentication context
-        # In Hugging Face Spaces, this will provide the logged-in username
-        username = None
-        # First, check if we're running in a Hugging Face Space
-        if hasattr(gr, "me") and callable(gr.me):
-            try:
-                # gr.me() returns user information when authenticated in Spaces
-                user_info = gr.me()
-                if user_info:
-                    username = user_info.get("username")
-                    print(f"Detected username via gr.me(): {username}")
-            except Exception as e:
-                print(f"Error using gr.me(): {e}")
-        # Fallback methods to get username
-        if not username:
-            # Try USER environment variable (as mentioned in your code)
-            username = os.environ.get("USER")
-            if username:
-                print(f"Using USER env var: {username}")
-            # Try SPACE_AUTHOR (might contain space owner's username)
-            if not username:
-                space_author = os.environ.get("SPACE_AUTHOR")
-                if space_author:
-                    username = space_author
-                    print(f"Using SPACE_AUTHOR: {username}")
-        # For local development/testing, you can set a mock username
-        if not username and os.environ.get("DEVELOPMENT_MODE"):
-            username = os.environ.get("MOCK_USERNAME", "test_user")
-            print(f"Using mock username: {username}")
-        # Debug output
-        print(f"Detected username: {username}")
-        print(f"Authorized users: {AUTHORIZED_USER_IDS}")
-        # If still no username, user is not logged in
-        if not username:
-            print("No username detected, assuming not logged in")
-            return False, None
-        # Check if user is in the authorized list
-        has_full_access = username in AUTHORIZED_USER_IDS
-        print(f"Full access granted: {has_full_access}")
-        return has_full_access, username
-    except Exception as e:
-        print(f"Error checking user access: {e}")
-        return False, None
-# Function to add the current user to the authorized list (admin function)
-def add_current_user_to_authorized():
-    _, username = check_user_access()
-    if not username:
-        return "Not logged in - can't add user", False
-    global AUTHORIZED_USER_IDS
-    if username not in AUTHORIZED_USER_IDS:
-        AUTHORIZED_USER_IDS.add(username)
-        print(f"Added {username} to authorized users. New list: {AUTHORIZED_USER_IDS}")
-        return f"Added {username} to authorized users!", True
-    else:
-        return f"{username} is already an authorized user", True
-# Example data processing function (limited functionality)
-def process_data_limited(input_text):
-    """Process data with limited functionality."""
-    return f"Limited processing: {input_text.upper()}"
-# Example data processing function (full functionality)
-def process_data_full(input_text):
-    """Process data with full functionality."""
-    word_count = len(input_text.split())
-    char_count = len(input_text)
-    analysis = {
-        "Original text": input_text,
-        "Word count": word_count,
-        "Character count": char_count,
-        "Uppercase version": input_text.upper(),
-        "Lowercase version": input_text.lower(),
-        "Reversed text": input_text[::-1]
-    }
-    return json.dumps(analysis, indent=2)
-# Function to handle form submission and apply the appropriate access level
-def handle_submission(input_text):
-    has_full_access, username = check_user_access()
-    if has_full_access:
-        return process_data_full(input_text), f"Full access granted for {username}", True
-    else:
-        limited_user_display = f"Limited access for {username}" if username else "Limited access (not logged in)"
-        return process_data_limited(input_text), limited_user_display, False
-# Function to get the current login status display
-def get_login_status():
-    has_full_access, username = check_user_access()
-    status_text = f"Full access for {username}" if has_full_access else \
-                  f"Limited access for {username}" if username else \
-                  "Limited access (not logged in)"
-    # Return username or empty string if not detected
-    user_id = username if username else ""
-    return status_text, has_full_access, user_id
-# Create the Gradio interface
-with gr.Blocks(title="Access Control Demo") as demo:
-    gr.Markdown("# Hugging Face Spaces Access Control Demo")
-    gr.Markdown("""
-    This demo shows how to implement access control in a Gradio app on Hugging Face Spaces.
-    - **Limited access**: Basic functionality only (uppercase conversion)
-    - **Full access**: Complete text analysis suite (for authorized users only)
-    To test different access levels, log in with different Hugging Face accounts.
-    """)
-    # Display current user and access level
-    with gr.Row():
-        status_display = gr.Textbox(
-            label="Current Access Status",
-            interactive=False
-        )
-        access_indicator = gr.Checkbox(
-            label="Full Access",
-            interactive=False
-        )
-# Create the Gradio interface
-with gr.Blocks(title="Access Control Demo") as demo:
-    gr.Markdown("# Hugging Face Spaces Access Control Demo")
-    gr.Markdown("""
-    This demo shows how to implement access control in a Gradio app on Hugging Face Spaces.
-    - **Limited access**: Basic functionality only (uppercase conversion)
-    - **Full access**: Complete text analysis suite (for authorized users only)
-    Access is controlled via the AUTHORIZED_USER_IDS environment variable/secret.
-    """)
-    # Display current user ID in a dedicated textbox
-    user_id_display = gr.Textbox(
-        label="Current User ID",
-        interactive=False
-    )
-    # Display current user and access level
-    with gr.Row():
-        status_display = gr.Textbox(
-            label="Current Access Status",
-            interactive=False
-        )
-        access_indicator = gr.Checkbox(
-            label="Full Access",
-            interactive=False
-        )
-    # Add refresh button
-    refresh_btn = gr.Button("Refresh Login Status")
-    # Input form
-    with gr.Row():
-        input_text = gr.Textbox(
-            label="Enter text to process",
-            placeholder="Type something here...",
-            lines=5
-        )
-    # Submit button
-    submit_btn = gr.Button("Process Text")
-    # Output display
-    output_text = gr.Textbox(
-        label="Processing Result",
-        lines=10
-    )
-    # Connect the submit button to the handler function
-    submit_btn.click(
-        fn=handle_submission,
-        inputs=[input_text],
-        outputs=[output_text, status_display, access_indicator]
-    )
-    # Connect the refresh button to update login status
-    refresh_btn.click(
-        fn=get_login_status,
-        inputs=[],
-        outputs=[status_display, access_indicator, user_id_display]
-    )
-    # Initialize the status display
-    demo.load(
-        fn=get_login_status,
-        inputs=[],
-        outputs=[status_display, access_indicator, user_id_display]
-    )
-    # Input form
-    with gr.Row():
-        input_text = gr.Textbox(
-            label="Enter text to process",
-            placeholder="Type something here...",
-            lines=5
-        )
-    # Submit button
-    submit_btn = gr.Button("Process Text")
-    # Output display
-    output_text = gr.Textbox(
-        label="Processing Result",
-        lines=10
-    )
-    # Connect the submit button to the handler function
-    submit_btn.click(
-        fn=handle_submission,
-        inputs=[input_text],
-        outputs=[output_text, status_display, access_indicator]
-    )
-    # Connect the refresh button to update login status
-    refresh_btn.click(
-        fn=get_login_status,
-        inputs=[],
-        outputs=[status_display, access_indicator]
-    )
-    # Initialize the status display
-    demo.load(
-        fn=get_login_status,
-        inputs=[],
-        outputs=[status_display, access_indicator]
-    )
-    # Additional information section
-    gr.Markdown("""
-    ## How This Works
-    1. When a user accesses this Gradio app on Hugging Face Spaces, their login identity is available
-    2. The app checks if the username is in the list of authorized users
-    3. Different functionality is provided based on the user's access level
-    4. Full access users get the complete set of features
-    5. Limited access users (or users who aren't logged in) get basic functionality only
-    This pattern can be extended to implement more complex access control scenarios.
-    """)
-# Launch the app
-if __name__ == "__main__":
-    # For local development, set an environment variable to mock user identities
-    if os.environ.get("DEVELOPMENT_MODE"):
-        print("Running in development mode with mock username")
-    demo.launch()

 import gradio as gr
 import os
+from huggingface_hub import HfApi, hf_hub_url, whoami
 import json
 # IMPORTANT: Debug prints to verify environment variables
 # Get authorized users from environment variable/secret
 authorized_users_str = os.environ.get("AUTHORIZED_USER_IDS", "")
 AUTHORIZED_USER_IDS = set(authorized_users_str.split(',') if authorized_users_str and authorized_users_str.strip() else [])
 print(f"Parsed authorized users: {AUTHORIZED_USER_IDS}")
+def hello(profile: gr.OAuthProfile | None) -> str:
+    if profile is None:
+        return "I don't know you."
+    return f"Hello {profile.name}"
+def list_organizations(oauth_token: gr.OAuthToken | None) -> str:
+    if oauth_token is None:
+        return "Please log in to list organizations."
+    org_names = [org["name"] for org in whoami(oauth_token.token)["orgs"]]
+    return f"You belong to {', '.join(org_names)}."
+# New function to display authorized user IDs
+def display_authorized_users() -> str:
+    if not AUTHORIZED_USER_IDS:
+        return "No authorized users configured."
+    return f"Authorized User IDs: {', '.join(AUTHORIZED_USER_IDS)}"
+with gr.Blocks() as demo:
+    gr.LoginButton()
+    m1 = gr.Markdown()
+    m2 = gr.Markdown()
+    m3 = gr.Markdown()  # New markdown component for authorized users
+    demo.load(hello, inputs=None, outputs=m1)
+    demo.load(list_organizations, inputs=None, outputs=m2)
+    demo.load(display_authorized_users, inputs=None, outputs=m3)  # Load the authorized users display
+demo.launch()