Update app.py

app.py

@@ -2,7 +2,7 @@ from flask import Flask, render_template, request, redirect, url_for, jsonify, s
 import requests
 import os
 from datetime import timedelta
-from urllib.parse import urlparse
+from urllib.parse import urlparse, urljoin
 
 app = Flask(__name__)
 app.secret_key = os.urandom(24)  # Session encryption key
@@ -55,6 +55,15 @@ def extract_model_info(url):
     
     return None
 
+# Extract direct embed URL
+def get_embed_url(url):
+    model_info = extract_model_info(url)
+    if not model_info or model_info['type'] != 'spaces':
+        return url
+    
+    # For spaces, use the embedded version
+    return f"https://huggingface.co/spaces/{model_info['owner']}/{model_info['repo']}/embed"
+
 # Extract title from the last part of URL
 def extract_title(url):
     parts = url.split("/")
@@ -83,40 +92,6 @@ def validate_token(token):
     
     return False, None
 
-# Proxy route to bypass X-Frame-Options
-@app.route('/proxy/<path:url>')
-def proxy(url):
-    # Authorization header if user is logged in
-    headers = {}
-    if 'token' in session:
-        headers["Authorization"] = f"Bearer {session['token']}"
-
-    try:
-        # Parse URL to ensure it's safe
-        parsed_url = urlparse(url)
-        if not parsed_url.netloc.endswith('huggingface.co'):
-            return "Only Huggingface URLs are allowed", 403
-
-        # Make request to the target URL
-        response = requests.get(url, headers=headers, stream=True)
-        
-        # Create response
-        resp = Response(
-            response.iter_content(chunk_size=10*1024),
-            content_type=response.headers.get('Content-Type')
-        )
-        
-        # Remove headers that prevent iframe embedding
-        if 'X-Frame-Options' in resp.headers:
-            resp.headers.remove('X-Frame-Options')
-        if 'Content-Security-Policy' in resp.headers:
-            resp.headers.remove('Content-Security-Policy')
-        
-        return resp
-    except Exception as e:
-        print(f"Proxy error: {e}")
-        return f"Error: {str(e)}", 500
-
 # Homepage route
 @app.route('/')
 def home():
@@ -128,12 +103,12 @@ def login():
     token = request.form.get('token', '')
     
     if not token:
-        return jsonify({'success': False, 'message': 'Please enter a token.'})
+        return jsonify({'success': False, 'message': '토큰을 입력해주세요.'})
     
     is_valid, user_info = validate_token(token)
     
     if not is_valid or not user_info:
-        return jsonify({'success': False, 'message': 'Invalid token.'})
+        return jsonify({'success': False, 'message': '유효하지 않은 토큰입니다.'})
     
     # Find username
     username = None
@@ -144,7 +119,7 @@ def login():
     elif 'username' in user_info:
         username = user_info['username']
     else:
-        username = 'Authenticated User'
+        username = '인증된 사용자'
     
     # Save to session
     session['token'] = token
@@ -180,6 +155,7 @@ def get_urls():
         
         results.append({
             'url': url,
+            'embedUrl': get_embed_url(url),
             'title': title,
             'model_info': model_info
         })
@@ -206,7 +182,7 @@ if __name__ == '__main__':
 <head>
   <meta charset="UTF-8">
   <meta name="viewport" content="width=device-width, initial-scale=1.0">
-  <title>Huggingface Spaces Grid</title>
+  <title>허깅페이스 스페이스 그리드</title>
   <style>
     body {
       font-family: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif;
@@ -296,7 +272,7 @@ if __name__ == '__main__':
     
     .grid-container {
       display: grid;
-      grid-template-columns: repeat(auto-fill, minmax(500px, 1fr));
+      grid-template-columns: repeat(auto-fill, minmax(480px, 1fr));
       gap: 1.5rem;
     }
     
@@ -307,7 +283,7 @@ if __name__ == '__main__':
       box-shadow: 0 4px 15px rgba(0,0,0,0.1);
       display: flex;
       flex-direction: column;
-      height: 600px;
+      height: 650px;
     }
     
     .grid-header {
@@ -500,7 +476,7 @@ if __name__ == '__main__':
     async function handleApiResponse(response) {
       if (!response.ok) {
         const errorText = await response.text();
-        throw new Error(`API error (${response.status}): ${errorText}`);
+        throw new Error(`API 오류 (${response.status}): ${errorText}`);
       }
       return response.json();
     }
@@ -521,14 +497,14 @@ if __name__ == '__main__':
           loadUrls();
         }
       } catch (error) {
-        console.error('Session status check error:', error);
+        console.error('세션 상태 확인 오류:', error);
       }
     }
     
     // Login process
     async function login(token) {
       if (!token.trim()) {
-        showMessage('Please enter a token.', true);
+        showMessage('토큰을 입력해주세요.', true);
         return;
       }
       
@@ -552,16 +528,16 @@ if __name__ == '__main__':
           elements.loginSection.style.display = 'none';
           elements.loggedInSection.style.display = 'block';
           
-          showMessage(`Logged in as ${state.username}.`);
+          showMessage(`${state.username}님으로 로그인되었습니다.`);
           
           // Load URL list
           loadUrls();
         } else {
-          showMessage(data.message || 'Login failed.', true);
+          showMessage(data.message || '로그인에 실패했습니다.', true);
         }
       } catch (error) {
-        console.error('Login error:', error);
-        showMessage(`Login error: ${error.message}`, true);
+        console.error('로그인 오류:', error);
+        showMessage(`로그인 오류: ${error.message}`, true);
       } finally {
         setLoading(false);
       }
@@ -586,14 +562,14 @@ if __name__ == '__main__':
           elements.loginSection.style.display = 'block';
           elements.loggedInSection.style.display = 'none';
           
-          showMessage('Logged out successfully.');
+          showMessage('로그아웃되었습니다.');
           
           // Clear grid
           elements.gridContainer.innerHTML = '';
         }
       } catch (error) {
-        console.error('Logout error:', error);
-        showMessage(`Logout error: ${error.message}`, true);
+        console.error('로그아웃 오류:', error);
+        showMessage(`로그아웃 오류: ${error.message}`, true);
       } finally {
         setLoading(false);
       }
@@ -611,8 +587,8 @@ if __name__ == '__main__':
         
         renderGrid(urls);
       } catch (error) {
-        console.error('URL list loading error:', error);
-        showMessage(`URL loading error: ${error.message}`, true);
+        console.error('URL 목록 로드 오류:', error);
+        showMessage(`URL 로드 오류: ${error.message}`, true);
       } finally {
         setLoading(false);
       }
@@ -632,10 +608,7 @@ if __name__ == '__main__':
       }
       
       urls.forEach(item => {
-        const { url, title } = item;
-        
-        // Create proxy URL
-        const proxyUrl = `/proxy/${encodeURIComponent(url)}`;
+        const { url, embedUrl, title } = item;
         
         // Create grid item
         const gridItem = document.createElement('div');
@@ -663,12 +636,13 @@ if __name__ == '__main__':
         const content = document.createElement('div');
         content.className = 'grid-content';
         
-        // Create iframe to display the actual content via proxy
+        // Create iframe to display the content
         const iframe = document.createElement('iframe');
-        iframe.src = proxyUrl;
+        iframe.src = embedUrl; // Use the embed URL directly
         iframe.title = title;
-        iframe.sandbox = 'allow-same-origin allow-scripts allow-popups allow-forms';
         iframe.allow = 'accelerometer; camera; encrypted-media; geolocation; gyroscope; microphone; midi';
+        iframe.setAttribute('allowfullscreen', '');
+        iframe.setAttribute('frameborder', '0');
         iframe.loading = 'lazy'; // Lazy load iframes for better performance
         
         content.appendChild(iframe);