Spaces:

channelcorp
/

Ko-TTS-Arena

Running on CPU Upgrade

App Files Files Community

Ko-TTS-Arena Contributors commited on 10 days ago

Commit

c741502

1 Parent(s): 8878a7e

feat: Remove login requirement - allow anonymous TTS generation and voting

Browse files

Files changed (3) hide show

app.py +6 -12
security.py +2 -1
templates/arena.html +2 -70

app.py CHANGED Viewed

@@ -587,10 +587,6 @@ def generate_tts():
     if app.config["TURNSTILE_ENABLED"] and not session.get("turnstile_verified"):
         return jsonify({"error": "Turnstile verification required"}), 403
-    # Require user to be logged in to generate audio
-    if not current_user.is_authenticated:
-        return jsonify({"error": "You must be logged in to generate audio"}), 401
     data = request.json
     text = data.get("text", "").strip() # Ensure text is stripped
@@ -776,16 +772,14 @@ def submit_vote():
     if app.config["TURNSTILE_ENABLED"] and not session.get("turnstile_verified"):
         return jsonify({"error": "Turnstile verification required"}), 403
-    # Require user to be logged in to vote
-    if not current_user.is_authenticated:
-        return jsonify({"error": "You must be logged in to vote"}), 401
     # Security checks for vote manipulation prevention
     client_ip = get_client_ip()
-    vote_allowed, security_reason, security_score = is_vote_allowed(current_user.id, client_ip)
     if not vote_allowed:
-        app.logger.warning(f"Vote blocked for user {current_user.username} (ID: {current_user.id}): {security_reason} (Score: {security_score})")
         return jsonify({"error": f"Vote not allowed: {security_reason}"}), 403
     data = request.json
@@ -832,7 +826,7 @@ def submit_vote():
     # Record vote in database with analytics data
     vote, error = record_vote(
-        current_user.id,
         session_data["text"],
         chosen_id,
         rejected_id,
@@ -871,7 +865,7 @@ def submit_vote():
             "rejected_model_id": rejected_model_obj.id if rejected_model_obj else "Unknown",
             "session_id": session_id,
             "timestamp": datetime.utcnow().isoformat(),
-            "username": current_user.username,
             "model_type": "TTS"
         }
         with open(os.path.join(vote_dir, "metadata.json"), "w") as f:

     if app.config["TURNSTILE_ENABLED"] and not session.get("turnstile_verified"):
         return jsonify({"error": "Turnstile verification required"}), 403
     data = request.json
     text = data.get("text", "").strip() # Ensure text is stripped
     if app.config["TURNSTILE_ENABLED"] and not session.get("turnstile_verified"):
         return jsonify({"error": "Turnstile verification required"}), 403
     # Security checks for vote manipulation prevention
     client_ip = get_client_ip()
+    user_id = current_user.id if current_user.is_authenticated else None
+    vote_allowed, security_reason, security_score = is_vote_allowed(user_id, client_ip)
     if not vote_allowed:
+        username = current_user.username if current_user.is_authenticated else "anonymous"
+        app.logger.warning(f"Vote blocked for user {username} (ID: {user_id}): {security_reason} (Score: {security_score})")
         return jsonify({"error": f"Vote not allowed: {security_reason}"}), 403
     data = request.json
     # Record vote in database with analytics data
     vote, error = record_vote(
+        user_id,
         session_data["text"],
         chosen_id,
         rejected_id,
             "rejected_model_id": rejected_model_obj.id if rejected_model_obj else "Unknown",
             "session_id": session_id,
             "timestamp": datetime.utcnow().isoformat(),
+            "username": current_user.username if current_user.is_authenticated else "anonymous",
             "model_type": "TTS"
         }
         with open(os.path.join(vote_dir, "metadata.json"), "w") as f:

security.py CHANGED Viewed

@@ -406,8 +406,9 @@ def is_vote_allowed(user_id, ip_address=None):
     Check if a vote should be allowed based on security factors.
     Returns (allowed, reason, security_score)
     """
     if not user_id:
-        return False, "User not authenticated", 0
     # Check if user is currently timed out
     try:

     Check if a vote should be allowed based on security factors.
     Returns (allowed, reason, security_score)
     """
+    # Allow anonymous voting when user is not authenticated
     if not user_id:
+        return True, "Anonymous vote allowed", 50
     # Check if user is currently timed out
     try:

templates/arena.html CHANGED Viewed

@@ -5,23 +5,6 @@
 {% block current_page %}Arena{% endblock %}
 {% block content %}
-<!-- Authentication status for JavaScript -->
-<div id="auth-status" data-authenticated="{% if current_user.is_authenticated %}true{% else %}false{% endif %}" style="display: none;"></div>
-{% if not current_user.is_authenticated %}
-<!-- Login prompt overlay -->
-<div id="login-prompt-overlay" class="login-prompt-overlay" style="display: none;">
-    <div class="login-prompt-content">
-        <h3>로그인 필요</h3>
-        <p>TTS Arena를 사용하려면 로그인이 필요합니다. 로그인하여 음성을 생성하고 투표하세요!</p>
-        <div class="login-prompt-actions">
-            <button class="login-prompt-close">나중에</button>
-            <a href="{{ url_for('auth.login', next=request.path) }}" class="login-prompt-btn">Hugging Face로 로그인</a>
-        </div>
-    </div>
-</div>
-{% endif %}
 <div id="tts-tab" class="tab-content active">
     <form class="input-container">
         <div class="input-group">
@@ -691,40 +674,6 @@
 <script src="{{ url_for('static', filename='js/waveplayer.js') }}"></script>
 <script>
     document.addEventListener('DOMContentLoaded', function() {
-        // Check authentication status
-        const authStatus = document.getElementById('auth-status');
-        const isAuthenticated = authStatus ? authStatus.dataset.authenticated === 'true' : false;
-        const loginPromptOverlay = document.getElementById('login-prompt-overlay');
-        const loginPromptClose = document.querySelector('.login-prompt-close');
-        // Function to show login prompt
-        function showLoginPrompt() {
-            if (loginPromptOverlay) {
-                loginPromptOverlay.style.display = 'flex';
-            }
-        }
-        // Function to hide login prompt
-        function hideLoginPrompt() {
-            if (loginPromptOverlay) {
-                loginPromptOverlay.style.display = 'none';
-            }
-        }
-        // Add event listener to close button
-        if (loginPromptClose) {
-            loginPromptClose.addEventListener('click', hideLoginPrompt);
-        }
-        // Close prompt when clicking outside
-        if (loginPromptOverlay) {
-            loginPromptOverlay.addEventListener('click', function(e) {
-                if (e.target === loginPromptOverlay) {
-                    hideLoginPrompt();
-                }
-            });
-        }
         const synthForm = document.querySelector('.input-container');
         const synthBtn = document.querySelector('.synth-btn');
         const mobileSynthBtn = document.querySelector('.mobile-synth-btn');
@@ -786,12 +735,6 @@
                 e.preventDefault();
             }
-            // Check authentication first
-            if (!isAuthenticated) {
-                showLoginPrompt();
-                return;
-            }
             const text = textInput.value.trim();
             if (!text) {
                 openToast("텍스트를 입력해주세요", "warning");
@@ -883,13 +826,7 @@
             })
             .catch(error => {
                 loadingContainer.style.display = 'none';
-                // Handle authentication errors specially
-                if (error.message.includes('logged in to generate') || error.message.includes('logged in to vote')) {
-                    openToast("로그인이 필요합니다. <a href='{{ url_for('auth.login', next=request.path) }}' style='color: white; text-decoration: underline;'>지금 로그인</a>", "error");
-                } else {
-                    openToast(error.message, "error");
-                }
                 console.error('Error:', error);
             });
         }
@@ -962,12 +899,7 @@
                     btn.querySelector('.vote-loader').style.display = 'none';
                 });
-                // Handle authentication errors specially
-                if (error.message.includes('logged in to vote')) {
-                    openToast("로그인이 필요합니다. <a href='{{ url_for('auth.login', next=request.path) }}' style='color: white; text-decoration: underline;'>지금 로그인</a>", "error");
-                } else {
-                    openToast(error.message, "error");
-                }
                 console.error('Error:', error);
             });
         }

 {% block current_page %}Arena{% endblock %}
 {% block content %}
 <div id="tts-tab" class="tab-content active">
     <form class="input-container">
         <div class="input-group">
 <script src="{{ url_for('static', filename='js/waveplayer.js') }}"></script>
 <script>
     document.addEventListener('DOMContentLoaded', function() {
         const synthForm = document.querySelector('.input-container');
         const synthBtn = document.querySelector('.synth-btn');
         const mobileSynthBtn = document.querySelector('.mobile-synth-btn');
                 e.preventDefault();
             }
             const text = textInput.value.trim();
             if (!text) {
                 openToast("텍스트를 입력해주세요", "warning");
             })
             .catch(error => {
                 loadingContainer.style.display = 'none';
+                openToast(error.message, "error");
                 console.error('Error:', error);
             });
         }
                     btn.querySelector('.vote-loader').style.display = 'none';
                 });
+                openToast(error.message, "error");
                 console.error('Error:', error);
             });
         }