Update app.py

app.py

@@ -1,6 +1,6 @@
-from fastapi import FastAPI, Request, HTTPException, Response
+from fastapi import FastAPI, Request, HTTPException
 from fastapi.middleware.cors import CORSMiddleware
-from fastapi.responses import RedirectResponse, HTMLResponse
+from fastapi.responses import RedirectResponse
 from pydantic import BaseModel
 import gradio as gr
 import aiohttp
@@ -22,10 +22,10 @@ logger.debug("Initializing application")
 # FastAPI app
 app = FastAPI()
 
-# CORS Configuration (restrict in production)
+# CORS Configuration (broadened for Hugging Face Spaces)
 app.add_middleware(
     CORSMiddleware,
-    allow_origins=["http://localhost:7860", "https://rocketfarmstudios-cps-api.hf.space"],
+    allow_origins=["http://localhost:7860", "https://*.hf.space"],
     allow_credentials=True,
     allow_methods=["*"],
     allow_headers=["*"],
@@ -65,12 +65,13 @@ class TokenManager:
         try:
             async with aiohttp.ClientSession() as session:
                 payload = LoginPayload(username=ADMIN_EMAIL, password=ADMIN_PASSWORD)
-                login_url = f"{BACKEND_URL}/auth/login"
+                login_url = f"{BACKEND_URL.rstrip('/')}/auth/login"
                 logger.debug(f"Sending login request to {login_url} with payload: {payload.dict()}")
                 async with session.post(
                     login_url,
                     json=payload.dict(),
-                    timeout=10
+                    timeout=15,
+                    headers={"Content-Type": "application/json"}
                 ) as response:
                     logger.debug(f"Login response status: {response.status}, URL: {response.url}")
                     if response.status == 200:
@@ -143,21 +144,15 @@ async def handle_local_auth_login(request: Request):
 async def test_backend():
     try:
         async with aiohttp.ClientSession() as session:
-            async with session.get(BACKEND_URL, timeout=5) as response:
+            test_url = f"{BACKEND_URL.rstrip('/')}/"
+            logger.debug(f"Testing backend connectivity to {test_url}")
+            async with session.get(test_url, timeout=5) as response:
                 logger.debug(f"Test backend response status: {response.status}, URL: {response.url}")
                 return {"status": response.status, "url": str(response.url), "message": await response.text()}
     except aiohttp.ClientError as e:
         logger.error(f"Test backend error: {str(e)}")
         return {"status": "error", "message": str(e)}
 
-def authenticate_admin(email: str = None, password: str = None):
-    if email != ADMIN_EMAIL or password != ADMIN_PASSWORD:
-        logger.warning(f"Failed admin login attempt with email: {email}")
-        raise HTTPException(status_code=401, detail="Unauthorized: Invalid email or password")
-    
-    logger.info(f"Admin authenticated successfully: {email}")
-    return True
-
 async def async_create_doctor(full_name: str, email: str, license_number: str, specialty: str, password: str):
     try:
         # Validate inputs
@@ -179,14 +174,14 @@ async def async_create_doctor(full_name: str, email: str, license_number: str, s
             "Content-Type": "application/json"
         }
         
-        doctor_url = f"{BACKEND_URL}/auth/admin/doctors"
+        doctor_url = f"{BACKEND_URL.rstrip('/')}/auth/admin/doctors"
         logger.debug(f"Sending doctor creation request to {doctor_url} with payload: {payload.dict()}")
         async with aiohttp.ClientSession() as session:
             async with session.post(
                 doctor_url,
                 json=payload.dict(),
                 headers=headers,
-                timeout=10
+                timeout=15
             ) as response:
                 logger.debug(f"Doctor creation response status: {response.status}, URL: {response.url}")
                 if response.status == 201:
@@ -199,7 +194,7 @@ async def async_create_doctor(full_name: str, email: str, license_number: str, s
                         doctor_url,
                         json=payload.dict(),
                         headers=headers,
-                        timeout=10
+                        timeout=15
                     ) as retry_response:
                         logger.debug(f"Retry doctor creation response status: {retry_response.status}, URL: {retry_response.url}")
                         if retry_response.status == 201:
@@ -220,6 +215,18 @@ async def async_create_doctor(full_name: str, email: str, license_number: str, s
 def sync_create_doctor(full_name: str, email: str, license_number: str, specialty: str, password: str):
     return asyncio.run(async_create_doctor(full_name, email, license_number, specialty, password))
 
+# New endpoint for public doctor creation
+@app.post("/create-doctor")
+async def create_doctor(payload: DoctorPayload):
+    result = await async_create_doctor(
+        full_name=payload.full_name,
+        email=payload.email,
+        license_number=payload.license_number,
+        specialty=payload.specialty,
+        password=payload.password
+    )
+    return {"result": result}
+
 # Gradio UI
 admin_ui = gr.Blocks(
     css="""
@@ -273,18 +280,11 @@ with admin_ui:
 
 app = gr.mount_gradio_app(app, admin_ui, path="/admin-auth")
 
+# Modified admin dashboard (no authentication)
 @app.get("/admin")
-async def admin_dashboard(email: str = None, password: str = None, response: Response = None):
+async def admin_dashboard():
     logger.debug("Admin dashboard accessed")
-    try:
-        authenticate_admin(email, password)
-        return RedirectResponse(url="/admin-auth", status_code=307)
-    except HTTPException as e:
-        response.status_code = 401
-        return HTMLResponse(content="""
-            <h1>401 Unauthorized</h1>
-            <p>Invalid admin credentials</p>
-        """)
+    return RedirectResponse(url="/admin-auth", status_code=307)
 
 @app.get("/admin-auth/gradio_api/queue/data")
 async def gradio_queue_data(session_hash: str):