Hugging Face's logo

Spaces:
chariscait
/
EmoSphere
Running

App Files Community
EmoSphere / auth.py
chariscait's picture
chariscait
Fix auth: Brevo HTTP API + hardcoded creds
cdf0a2e verified
raw
history blame contribute delete
9.3 kB
"""EmoSphere Trial Authentication β€” Email-gated demo with time limits.
Handles:
 - Email registration with 6-digit code
 - One-use-per-email enforcement (stored in JSON)
 - Session timer (60s trial window)
 - SMTP email delivery (or on-screen fallback for testing)
"""
from __future__ import annotations
import json
import os
import random
import smtplib
import time
from email.mime.text import MIMEText
from email.mime.multipart import MIMEMultipart
from pathlib import Path
from typing import Optional
# ── Configuration ───────────────────────────────────────────────────
SMTP_HOST = os.environ.get("SMTP_HOST", "smtp-relay.brevo.com")
SMTP_PORT = int(os.environ.get("SMTP_PORT", "587"))
SMTP_USER = os.environ.get("SMTP_USER", "a7fb01001@smtp-brevo.com")
SMTP_PASS = os.environ.get("SMTP_PASS", "xsmtpsib-95d4419e874210d694181e185f1a19f0a13d14f09176441701adfbcc2ceab161-gfhZ4hNblHSUa6CM")
SMTP_FROM = os.environ.get("SMTP_FROM", "info@caitcore.com")
BREVO_API_KEY = os.environ.get("BREVO_API_KEY", "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")
TRIAL_DURATION_SECONDS = 60
VIDEO_MAX_DURATION_SECONDS = 60
CAMERA_MAX_DURATION_SECONDS = 60
USED_EMAILS_FILE = Path(__file__).parent / "used_emails.json"
def smtp_configured() -> bool:
 """Check whether SMTP credentials are set."""
 print(f"[Auth] SMTP check: HOST={SMTP_HOST}, USER={SMTP_USER[:10]}..., PASS={'set' if SMTP_PASS else 'empty'}, FROM={SMTP_FROM}")
 return bool(SMTP_HOST and SMTP_USER and SMTP_PASS)
# ── Email Storage ───────────────────────────────────────────────────
def _load_used_emails() -> dict:
 """Load used emails registry from JSON file."""
 if USED_EMAILS_FILE.exists():
 try:
 data = json.loads(USED_EMAILS_FILE.read_text(encoding="utf-8"))
 if isinstance(data, dict):
 return data
 except (json.JSONDecodeError, OSError):
 pass
 return {}
def _save_used_emails(data: dict) -> None:
 """Persist used emails registry to JSON file."""
 try:
 USED_EMAILS_FILE.write_text(
 json.dumps(data, indent=2, default=str),
 encoding="utf-8",
 )
 except OSError as e:
 print(f"[Auth] Warning: could not save used emails: {e}")
def is_email_used(email: str) -> bool:
 """Check if an email has already been used for a trial."""
 emails = _load_used_emails()
 return email.lower().strip() in emails
def mark_email_used(email: str) -> None:
 """Record an email as having used its trial."""
 emails = _load_used_emails()
 emails[email.lower().strip()] = {
 "used_at": time.strftime("%Y-%m-%dT%H:%M:%SZ", time.gmtime()),
 }
 _save_used_emails(emails)
# ── Code Generation & Sending ──────────────────────────────────────
def generate_code() -> str:
 """Generate a random 6-digit verification code."""
 return f"{random.randint(100000, 999999)}"
def _build_html_email(code: str) -> str:
 """Build branded HTML email for EmoSphere."""
 return f"""
 <html><body style="font-family: -apple-system, sans-serif; background: #0A0A1A; color: #B0BCD0; padding: 40px;">
 <div style="max-width: 520px; margin: 0 auto; background: linear-gradient(135deg, #161640, #1E1E52);
 border: 1px solid rgba(255,255,255,0.1); border-radius: 16px; padding: 40px;">
 <div style="text-align: center; margin-bottom: 24px;">
 <img src="https://caitcore.com/images/emosphere-logo.png" alt="EmoSphere" style="width: 80px; height: 80px; border-radius: 16px;" />
 </div>
 <h1 style="background: linear-gradient(90deg, #E948A0, #9B6FCE, #00D4FF);
 -webkit-background-clip: text; -webkit-text-fill-color: transparent;
 font-size: 26px; text-align: center; margin: 0 0 8px 0;">
 EmoSphere
 </h1>
 <p style="text-align: center; color: #6B7B9D; font-size: 13px; margin: 0 0 24px 0;">Multimodal Emotion Recognition</p>
 <p style="text-align: center; color: #8899AA; font-size: 14px;">Your demo access code:</p>
 <div style="text-align: center; font-size: 36px; font-weight: 800; letter-spacing: 8px;
 color: #00D4FF; padding: 20px; background: rgba(0,212,255,0.08);
 border-radius: 12px; margin: 16px 0;">
 {code}
 </div>
 <p style="text-align: center; color: #6B7B9D; font-size: 12px; margin-top: 24px;">
 One-time code &bull; Session lasts {TRIAL_DURATION_SECONDS}s &bull; No data stored
 </p>
 <hr style="border: none; border-top: 1px solid rgba(255,255,255,0.08); margin: 28px 0 16px;" />
 <div style="text-align: center;">
 <img src="https://caitcore.com/images/cait-logo.png" alt="CAIT" style="width: 32px; height: 32px; vertical-align: middle; border-radius: 6px;" />
 <span style="color: #556677; font-size: 11px; vertical-align: middle; margin-left: 8px;">Powered by CAIT &mdash; Computational &amp; AI Technologies</span>
 </div>
 </div>
 </body></html>
 """
def _send_via_http(to_email: str, code: str) -> tuple[bool, str]:
 """Send email via Brevo HTTP API (works even if SMTP port is blocked)."""
 import urllib.request
 import urllib.error
html_body = _build_html_email(code)
 payload = json.dumps({
 "sender": {"name": "CAIT", "email": SMTP_FROM},
 "to": [{"email": to_email}],
 "subject": f"EmoSphere Demo Access Code: {code}",
 "htmlContent": html_body,
 })
req = urllib.request.Request(
 "https://api.brevo.com/v3/smtp/email",
 data=payload.encode("utf-8"),
 headers={
 "accept": "application/json",
 "content-type": "application/json",
 "api-key": BREVO_API_KEY,
 },
 method="POST",
 )
 try:
 with urllib.request.urlopen(req, timeout=10) as resp:
 print(f"[Auth] HTTP API response: {resp.status} {resp.read().decode()}")
 return True, "Code sent to your email"
 except urllib.error.HTTPError as e:
 body = e.read().decode() if e.fp else ""
 print(f"[Auth] HTTP API error: {e.code} {body}")
 return False, f"HTTP API error: {e.code}"
 except Exception as e:
 print(f"[Auth] HTTP API exception: {e}")
 return False, str(e)
def _send_via_smtp(to_email: str, code: str) -> tuple[bool, str]:
 """Send email via SMTP (fallback)."""
 html_body = _build_html_email(code)
 text_body = (
 f"Your EmoSphere demo access code is: {code}\n\n"
 f"This code is valid for one use only.\n"
 f"The demo session lasts {TRIAL_DURATION_SECONDS} seconds.\n\n"
 f"-- EmoSphere by CAIT"
 )
msg = MIMEMultipart("alternative")
 msg["Subject"] = f"EmoSphere Demo Access Code: {code}"
 msg["From"] = SMTP_FROM
 msg["To"] = to_email
 msg.attach(MIMEText(text_body, "plain"))
 msg.attach(MIMEText(html_body, "html"))
with smtplib.SMTP(SMTP_HOST, SMTP_PORT, timeout=10) as server:
 server.ehlo()
 server.starttls()
 server.ehlo()
 server.login(SMTP_USER, SMTP_PASS)
 server.sendmail(SMTP_FROM, to_email, msg.as_string())
return True, "Code sent to your email"
def send_code_email(to_email: str, code: str) -> tuple[bool, str]:
 """Send verification code β€” tries HTTP API first, falls back to SMTP.
 Returns (success, message).
 """
 if not smtp_configured():
 return False, "SMTP not configured"
# Try HTTP API first (works on HF Spaces where SMTP port may be blocked)
 try:
 ok, msg = _send_via_http(to_email, code)
 if ok:
 return ok, msg
 print(f"[Auth] HTTP API failed ({msg}), trying SMTP...")
 except Exception as e:
 print(f"[Auth] HTTP API exception: {e}, trying SMTP...")
# Fallback to SMTP
 try:
 return _send_via_smtp(to_email, code)
 except Exception as e:
 print(f"[Auth] SMTP send FAILED: {e}")
 return False, f"Failed to send email: {e}"
# ── Session Timer ───────────────────────────────────────────────────
def get_remaining_seconds(start_time: float) -> float:
 """Return remaining trial seconds (0 if expired)."""
 elapsed = time.time() - start_time
 remaining = TRIAL_DURATION_SECONDS - elapsed
 return max(0.0, remaining)
def is_trial_expired(start_time: float) -> bool:
 """Check if the trial window has ended."""
 return get_remaining_seconds(start_time) <= 0
# ── Email Validation (basic) ───────────────────────────────────────
def validate_email(email: str) -> bool:
 """Basic email format check."""
 import re
 pattern = r"^[a-zA-Z0-9._%+\-]+@[a-zA-Z0-9.\-]+\.[a-zA-Z]{2,}$"
 return bool(re.match(pattern, email.strip()))