Update app.py

app.py

@@ -29,6 +29,10 @@ COLORS = {"pred": "#1f77b4", "actual": "#f2b702", "ref": "#5a5a5a"}
 # Page / Theme
 # =========================
 st.set_page_config(page_title="ST_GeoMech_UCS", page_icon="logo.png", layout="wide")
+# … your CSS …
+# 🔒 Password gate
+add_password_gate()
+# from here on, only authenticated users proceed
 st.markdown("<style>header, footer{visibility:hidden !important;}</style>", unsafe_allow_html=True)
 st.markdown(
     """
@@ -47,27 +51,49 @@ st.markdown(
     """,
     unsafe_allow_html=True
 )
-# --- Password gate (branded) ---
+# =========================
+# Password
+# =========================
+# --- Password gate (branded, strict) ---
 def add_password_gate() -> bool:
     """
     Shows a branded access screen until the correct password is entered.
-    Returns True when access is granted (or no password is configured).
+    Returns True when access is granted.
+    Blocks (shows admin instructions) if APP_PASSWORD is not configured.
     """
-    # Where the password is stored
+    # 1) Read password from Secrets or Env
+    required = ""
     try:
         required = st.secrets.get("APP_PASSWORD", "")
     except Exception:
         required = os.environ.get("APP_PASSWORD", "")
 
-    # If no password configured, don't block access
+    # 2) If not configured, BLOCK with admin message (no accidental bypass)
     if not required:
-        return True
+        st.markdown(
+            f"""
+            <div style="display:flex;align-items:center;gap:14px;margin:8px 0 6px 0;">
+              <img src="{inline_logo()}" style="width:56px;height:56px;object-fit:contain"/>
+              <div>
+                <div style="font-size:1.9rem;font-weight:800;">ST_GeoMech_UCS</div>
+                <div style="color:#667085;">Smart Thinking • Secure Access</div>
+              </div>
+            </div>
+            <div style="font-size:1.25rem;font-weight:700;margin:8px 0 4px 0;">Protected Area</div>
+            <div style="color:#6b7280;margin-bottom:14px;">
+              Admin action required: set <code>APP_PASSWORD</code> in <b>Settings → Secrets</b> (or as an
+              environment variable) and restart the Space.
+            </div>
+            """,
+            unsafe_allow_html=True,
+        )
+        st.stop()
 
-    # Already authenticated?
+    # 3) Already authenticated?
     if st.session_state.get("auth_ok", False):
         return True
 
-    # --- Branded header -------------------------------------------------------
+    # 4) Branded prompt
     st.markdown(
         f"""
         <div style="display:flex;align-items:center;gap:14px;margin:8px 0 6px 0;">
@@ -77,7 +103,7 @@ def add_password_gate() -> bool:
             <div style="color:#667085;">Smart Thinking • Secure Access</div>
           </div>
         </div>
-        <div style="font-size:1.25rem;font-weight:700;margin:8px 0 4px 0;">Protected Area</div>
+        <div style="font-size:1.25rem;font-weight:700;margin:8px 0 4px 0;">Protected</div>
         <div style="color:#6b7280;margin-bottom:14px;">
           Please enter your access key to continue.
         </div>
@@ -85,7 +111,6 @@ def add_password_gate() -> bool:
         unsafe_allow_html=True
     )
 
-    # Input + action
     pwd = st.text_input("Access key", type="password", placeholder="••••••••")
     col1, _ = st.columns([1, 3])
     with col1:
@@ -95,6 +120,8 @@ def add_password_gate() -> bool:
                 st.rerun()
             else:
                 st.error("Incorrect key. Please try again.")
+
+    # Don’t proceed until correct
     st.stop()
 
 # =========================