Spaces:

RocketFarmStudios
/

CPS-API

Sleeping

App Files Files Community

Ali2206 commited on May 25, 2025

Commit

d6f5ab3

verified ·

1 Parent(s): e92bd62

Update app.py

Browse files

Files changed (1) hide show

app.py +35 -4

app.py CHANGED Viewed

@@ -1,6 +1,7 @@
-from fastapi import FastAPI, Request
 from fastapi.middleware.cors import CORSMiddleware
 from fastapi.responses import RedirectResponse
 from api import api_router
 import gradio as gr
 import requests
@@ -34,6 +35,31 @@ async def redirect_login(request: Request):
     logger.info("Redirecting /login to /auth/login")
     return RedirectResponse(url="/auth/login", status_code=307)
 # Gradio doctor creation logic
 BACKEND_URL = "https://rocketfarmstudios-cps-api.hf.space"
@@ -70,7 +96,7 @@ with gr.Blocks(css="""
     .output-box textarea { background-color: transparent !important; border: none; color: #90CDF4; font-size: 14px; margin-top: 1rem; }
 """) as admin_ui:
     gr.Markdown("<div class='title-text'>👨‍⚕️ Doctor Account Creator</div>")
-    gr.Markdown("<div class='description-text'>Admins can register new doctors using this secure panel. Generated at 03:43 PM CET on Saturday, May 17, 2025.</div>")
     with gr.Column():
         full_name = gr.Textbox(label="Full Name", placeholder="e.g. Dr. Sarah Hopkins")
@@ -91,8 +117,13 @@ with gr.Blocks(css="""
             outputs=output
         )
-# Mount Gradio interface to FastAPI app
-app = gr.mount_gradio_app(app, admin_ui, path="/admin")
 if __name__ == "__main__":
     logger.debug("Running main block")

+from fastapi import FastAPI, Request, Depends, HTTPException
 from fastapi.middleware.cors import CORSMiddleware
 from fastapi.responses import RedirectResponse
+from fastapi.security import OAuth2PasswordBearer
 from api import api_router
 import gradio as gr
 import requests
     logger.info("Redirecting /login to /auth/login")
     return RedirectResponse(url="/auth/login", status_code=307)
+# Admin authentication dependency
+def authenticate_admin(email: str = None, password: str = None):
+    """
+    Authenticate admin user with predefined email and password.
+    In a production environment, this should use secure password hashing and a database.
+    """
+    ADMIN_EMAIL = "yakdhanali97@gmail.com"
+    ADMIN_PASSWORD = "123456"  # In production, hash this password and compare securely
+    if email != ADMIN_EMAIL or password != ADMIN_PASSWORD:
+        logger.warning(f"Failed admin login attempt with email: {email}")
+        raise HTTPException(status_code=401, detail="Unauthorized: Invalid email or password")
+    logger.info(f"Admin authenticated successfully: {email}")
+    return {"email": email, "is_admin": True}
+async def get_admin_user(email: str = Depends(lambda: None), password: str = Depends(lambda: None)):
+    """
+    Dependency to extract email and password from headers or query params.
+    For Gradio, we'll use query params since Gradio doesn't easily support custom headers.
+    """
+    if not email or not password:
+        raise HTTPException(status_code=401, detail="Email and password are required")
+    return authenticate_admin(email, password)
 # Gradio doctor creation logic
 BACKEND_URL = "https://rocketfarmstudios-cps-api.hf.space"
     .output-box textarea { background-color: transparent !important; border: none; color: #90CDF4; font-size: 14px; margin-top: 1rem; }
 """) as admin_ui:
     gr.Markdown("<div class='title-text'>👨‍⚕️ Doctor Account Creator</div>")
+    gr.Markdown("<div class='description-text'>Admins can register new doctors using this secure panel. Generated at 09:45 PM CET on Sunday, May 25, 2025.</div>")
     with gr.Column():
         full_name = gr.Textbox(label="Full Name", placeholder="e.g. Dr. Sarah Hopkins")
             outputs=output
         )
+# Mount Gradio interface to FastAPI app with authentication
+app = gr.mount_gradio_app(
+    app,
+    admin_ui,
+    path="/admin",
+    dependencies=[Depends(get_admin_user)]
+)
 if __name__ == "__main__":
     logger.debug("Running main block")