add

backend/app.py

@@ -177,11 +177,11 @@ async def shutdown_event():
     # scheduler_service.stop() # This line is now commented out
 
 
-# Root redirect to React app (no authentication required - frontend handles login modal)
+# Root redirect to React app (requires authentication)
 @app.get("/")
-async def root(request: Request):
-    # Allow all users to access the main interface
-    # Authentication will be handled by frontend login modal
+async def root(request: Request, auth_check = Depends(require_auth_in_hf_spaces)):
+    # This endpoint is protected by dependency injection
+    # If user reaches here, they are authenticated (or in local dev)
     return RedirectResponse(url="/agentgraph")
 
 

backend/dependencies.py

@@ -115,7 +115,7 @@ def get_current_user_optional(request: Request) -> Optional[Dict[str, Any]]:
     try:
         user = request.session.get("user")
         if user:
-            logger.info(f"🔓 Found authenticated user in session: {user.get('username', 'unknown')}")
+            logger.info(f"🔓 Found authenticated user: {user.get('username', 'unknown')}")
             return user
         else:
             # Add detailed debugging for session contents
@@ -134,20 +134,6 @@ def get_current_user_optional(request: Request) -> Optional[Dict[str, Any]]:
                 session_data = dict(request.session) if hasattr(request.session, 'keys') else {}
                 logger.warning(f"🔍 HF Session data: {session_data}")
                 
-                # FALLBACK: Check for localStorage backup data via special header
-                # Frontend can send this as a custom header when localStorage is available
-                localStorage_user = request.headers.get("X-HF-User-Backup")
-                if localStorage_user:
-                    try:
-                        import json
-                        backup_user = json.loads(localStorage_user)
-                        logger.info(f"🔄 Using localStorage backup user: {backup_user.get('username', 'unknown')}")
-                        # Store back in session for next requests
-                        request.session["user"] = backup_user
-                        return backup_user
-                    except (json.JSONDecodeError, ValueError) as e:
-                        logger.warning(f"Could not parse localStorage backup user: {e}")
-                
                 # Check request headers that might affect session
                 relevant_headers = {
                     'host': request.headers.get('host'),

backend/middleware/usage_tracker.py

@@ -45,13 +45,8 @@ class UsageTrackingMiddleware(BaseHTTPMiddleware):
         """Track API usage and log user activity."""
         start_time = time.time()
         
-        # Get user info from request state (set by auth middleware) or session
+        # Get user info from request state (set by auth middleware)
         user = getattr(request.state, "user", None)
-        if not user:
-            try:
-                user = request.session.get("user")
-            except (AttributeError, AssertionError):
-                user = None
         user_id = user.get("username", "anonymous") if user else "anonymous"
         user_auth_method = user.get("auth_method", "none") if user else "none"
         

backend/routers/auth.py

@@ -7,7 +7,6 @@ These routes are only active when running in HF Spaces environment.
 import os
 import logging
 import secrets
-import json
 from typing import Optional
 from pathlib import Path
 from fastapi import APIRouter, Request, Response, HTTPException
@@ -30,14 +29,10 @@ async def auth_status(request: Request):
     """Get authentication status and configuration."""
     config = get_oauth_config()
     user = getattr(request.state, "user", None)
-    logger.info(f"🔍 Auth status check - user from request.state: {user}")
-    
     if not user:
         try:
             user = request.session.get("user")
-            logger.info(f"🔍 Auth status check - user from session: {user}")
-        except (AttributeError, AssertionError) as e:
-            logger.warning(f"🔍 Auth status check - session access failed: {e}")
+        except (AttributeError, AssertionError):
             user = None
     
     return {
@@ -47,12 +42,8 @@ async def auth_status(request: Request):
         "login_required": True,  # Mandatory for OpenAI API protection
         "user_authenticated": bool(user),
         "user_info": {
-            "id": user.get("id") if user else None,
-            "username": user.get("username") if user else None,
-            "name": user.get("name") if user else None,
-            "email": user.get("email") if user else None,
-            "avatar_url": user.get("avatar_url") if user else None,
             "auth_method": user.get("auth_method") if user else None,
+            "username": user.get("username") if user else None,
         } if user else None,
         "hf_sign_detected": bool(request.query_params.get("__sign")) if is_huggingface_space() else False,
     }
@@ -254,97 +245,8 @@ async def oauth_callback(request: Request, code: str, state: str):
     
     logger.info(f"User logged in: {user_info.get('name')} ({user_info.get('login')})")
     
-    # For HF Spaces, show a success page that notifies parent window and closes
-    if is_huggingface_space():
-        # Get user data to pass to parent window
-        user_data = request.session.get("user", {})
-        user_json = json.dumps(user_data)
-        
-        success_html = f"""
-        <!DOCTYPE html>
-        <html>
-        <head>
-            <title>Login Successful</title>
-            <style>
-                body {{ 
-                    font-family: Arial, sans-serif; 
-                    text-align: center; 
-                    padding: 50px; 
-                    background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
-                    color: white;
-                    margin: 0;
-                    min-height: 100vh;
-                    display: flex;
-                    align-items: center;
-                    justify-content: center;
-                    flex-direction: column;
-                }}
-                .success-card {{
-                    background: rgba(255,255,255,0.1);
-                    padding: 40px;
-                    border-radius: 20px;
-                    backdrop-filter: blur(10px);
-                    border: 1px solid rgba(255,255,255,0.2);
-                }}
-                .checkmark {{
-                    font-size: 60px;
-                    margin-bottom: 20px;
-                    color: #4CAF50;
-                }}
-            </style>
-        </head>
-        <body>
-            <div class="success-card">
-                <div class="checkmark">✅</div>
-                <h1>Login Successful!</h1>
-                <p>Welcome, {user_data.get('name', 'User')}!</p>
-                <p>You have successfully logged in with your Hugging Face account.</p>
-                <p>This tab will close automatically...</p>
-            </div>
-            
-            <script>
-                // Store user data in localStorage as backup (for iframe issues)
-                const userData = {user_json};
-                try {{
-                    localStorage.setItem('hf_user', JSON.stringify(userData));
-                    localStorage.setItem('hf_login_timestamp', Date.now().toString());
-                    console.log('✅ Stored user data in localStorage as backup');
-                }} catch (e) {{
-                    console.log('Could not store in localStorage:', e);
-                }}
-                
-                // Try to send message to parent window with user data
-                try {{
-                    if (window.opener) {{
-                        window.opener.postMessage({{
-                            type: 'HF_LOGIN_SUCCESS',
-                            userData: userData,
-                            timestamp: Date.now()
-                        }}, window.location.origin);
-                        console.log('✅ Sent login success message to parent window');
-                    }}
-                }} catch (e) {{
-                    console.log('Could not send message to parent:', e);
-                }}
-                
-                // Close this tab after a short delay
-                setTimeout(() => {{
-                    try {{
-                        window.close();
-                    }} catch (e) {{
-                        console.log('Could not close window:', e);
-                        // Redirect to main app if we can't close
-                        window.location.href = '/';
-                    }}
-                }}, 2000);
-            </script>
-        </body>
-        </html>
-        """
-        return HTMLResponse(content=success_html)
-    else:
-        # For local development, redirect normally
-        return RedirectResponse(url="/", status_code=302)
+    # Redirect to main application
+    return RedirectResponse(url="/", status_code=302)
 
 
 @router.get("/logout")

backend/routers/knowledge_graphs.py

@@ -23,7 +23,7 @@ import math
 # Add the project root to the Python path for proper imports
 sys.path.append(os.path.dirname(os.path.dirname(os.path.dirname(os.path.abspath(__file__)))))
 
-from backend.dependencies import get_db_session, get_current_user_optional
+from backend.dependencies import get_db_session
 from backend.services import KnowledgeGraphService
 from backend.models import KnowledgeGraphResponse, PlatformStatsResponse
 from backend.database import get_db

frontend/src/App.tsx

@@ -5,29 +5,14 @@ import { NotificationProvider } from "./context/NotificationContext";
 import { ModalProvider, useModal } from "./context/ModalContext";
 import { NavigationProvider } from "./context/NavigationContext";
 import { KGDisplayModeProvider } from "./context/KGDisplayModeContext";
-import { AuthProvider, useAuth } from "./context/AuthContext";
 import { MainLayout } from "./components/layout/MainLayout";
 import { ModalSystem } from "./components/shared/ModalSystem";
-import { LoginModal } from "./components/auth/LoginModal";
 import { Toaster } from "./components/ui/toaster";
 import { ErrorBoundary } from "./components/shared/ErrorBoundary";
 import "./styles/globals.css";
 
 function AppContent() {
   const { modalState, closeModal } = useModal();
-  const { showLoginModal, setShowLoginModal, isLoading } = useAuth();
-
-  // Show loading screen while checking auth status
-  if (isLoading) {
-    return (
-      <div className="h-screen bg-background text-foreground flex items-center justify-center">
-        <div className="text-center">
-          <div className="animate-spin rounded-full h-8 w-8 border-b-2 border-primary mx-auto mb-4"></div>
-          <p className="text-muted-foreground">Loading AgentGraph...</p>
-        </div>
-      </div>
-    );
-  }
 
   return (
     <div className="h-screen bg-background text-foreground flex flex-col">
@@ -36,10 +21,6 @@ function AppContent() {
       </ErrorBoundary>
       <Toaster />
       <ModalSystem modalState={modalState} onClose={closeModal} />
-      <LoginModal
-        isOpen={showLoginModal}
-        onClose={() => setShowLoginModal(false)}
-      />
     </div>
   );
 }
@@ -48,19 +29,17 @@ function App() {
   return (
     <ErrorBoundary>
       <ThemeProvider>
-        <AuthProvider>
-          <NotificationProvider>
-            <NavigationProvider>
-              <ModalProvider>
-                <KGDisplayModeProvider>
-                  <AgentGraphProvider>
-                    <AppContent />
-                  </AgentGraphProvider>
-                </KGDisplayModeProvider>
-              </ModalProvider>
-            </NavigationProvider>
-          </NotificationProvider>
-        </AuthProvider>
+        <NotificationProvider>
+          <NavigationProvider>
+            <ModalProvider>
+              <KGDisplayModeProvider>
+                <AgentGraphProvider>
+                  <AppContent />
+                </AgentGraphProvider>
+              </KGDisplayModeProvider>
+            </ModalProvider>
+          </NavigationProvider>
+        </NotificationProvider>
       </ThemeProvider>
     </ErrorBoundary>
   );

frontend/src/components/auth/LoginModal.tsx

@@ -1,141 +0,0 @@
-import React from "react";
-import { X, FileText, ExternalLink } from "lucide-react";
-import { useAuth } from "../../context/AuthContext";
-
-interface LoginModalProps {
-  isOpen: boolean;
-  onClose: () => void;
-}
-
-export function LoginModal({ isOpen, onClose }: LoginModalProps) {
-  const { login, isHFSpaces } = useAuth();
-
-  if (!isOpen) return null;
-
-  const handleLogin = () => {
-    login();
-  };
-
-  const handleOverlayClick = (e: React.MouseEvent) => {
-    if (e.target === e.currentTarget) {
-      onClose();
-    }
-  };
-
-  return (
-    <div
-      className="fixed inset-0 bg-black/50 backdrop-blur-sm z-50 flex items-center justify-center p-4"
-      onClick={handleOverlayClick}
-    >
-      <div className="bg-card border border-border rounded-2xl shadow-2xl max-w-4xl w-full max-h-[90vh] overflow-hidden">
-        {/* Header */}
-        <div className="flex justify-between items-center p-6 border-b border-border">
-          <h2 className="text-2xl font-bold text-foreground">
-            Welcome to AgentGraph
-          </h2>
-          <button
-            onClick={onClose}
-            className="p-2 hover:bg-muted rounded-lg transition-colors"
-          >
-            <X className="w-5 h-5" />
-          </button>
-        </div>
-
-        <div className="grid lg:grid-cols-2 gap-8 p-6">
-          {/* Content Section */}
-          <div className="space-y-6">
-            {/* Title */}
-            <div className="space-y-4">
-              <h1 className="text-3xl lg:text-4xl font-bold bg-gradient-to-r from-foreground to-primary bg-clip-text text-transparent">
-                AgentGraph
-              </h1>
-              <p className="text-lg text-muted-foreground">
-                Trace-to-Graph Platform for Interactive Analysis and Robustness
-                Testing in Agentic AI Systems
-              </p>
-            </div>
-
-            {/* Description */}
-            <p className="text-muted-foreground">
-              Convert execution logs into interactive knowledge graphs with
-              actionable insights for AI system analysis and robustness testing.
-            </p>
-
-            {/* CTA Section */}
-            <div className="space-y-4">
-              {isHFSpaces ? (
-                <a
-                  href="/auth/login"
-                  target="_blank"
-                  rel="noopener noreferrer"
-                  className="w-full bg-primary hover:bg-primary/90 text-primary-foreground font-semibold py-3 px-6 rounded-lg transition-colors flex items-center justify-center gap-2"
-                >
-                  Login with Hugging Face
-                  <ExternalLink className="w-4 h-4" />
-                </a>
-              ) : (
-                <button
-                  onClick={handleLogin}
-                  className="w-full bg-primary hover:bg-primary/90 text-primary-foreground font-semibold py-3 px-6 rounded-lg transition-colors flex items-center justify-center gap-2"
-                >
-                  Continue to Platform
-                </button>
-              )}
-
-              <div className="bg-muted/30 p-4 rounded-lg">
-                <p className="text-sm text-muted-foreground">
-                  {isHFSpaces
-                    ? "Authentication required for responsible AI resource usage"
-                    : "Local development mode - no authentication required"}
-                </p>
-              </div>
-            </div>
-          </div>
-
-          {/* Video and Paper Section */}
-          <div className="space-y-6">
-            {/* Demo Video */}
-            <div className="bg-muted/20 rounded-xl overflow-hidden">
-              <div className="relative aspect-video">
-                <iframe
-                  src="https://www.youtube.com/embed/btrS9pfDYJY?si=dDX4tIs-oS2O2d2p"
-                  title="AgentGraph: Interactive Analysis Platform Demo"
-                  allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture"
-                  allowFullScreen
-                  className="w-full h-full rounded-xl"
-                />
-              </div>
-            </div>
-
-            {/* Research Paper */}
-            <div className="bg-muted/20 p-4 rounded-xl">
-              <div className="flex items-center space-x-3">
-                <div className="flex-shrink-0">
-                  <FileText className="w-6 h-6 text-primary" />
-                </div>
-                <div className="flex-1">
-                  <h3 className="font-semibold text-foreground mb-1">
-                    Research Paper
-                  </h3>
-                  <p className="text-sm text-muted-foreground mb-2">
-                    AgentGraph: Trace-to-Graph Platform for Interactive Analysis
-                    and Robustness Testing in Agentic AI Systems
-                  </p>
-                  <a
-                    href="/static/papers/agentgraph_paper.pdf"
-                    target="_blank"
-                    rel="noopener noreferrer"
-                    className="inline-flex items-center text-primary hover:text-primary/80 transition-colors text-sm"
-                  >
-                    <FileText className="w-4 h-4 mr-1" />
-                    Download PDF
-                  </a>
-                </div>
-              </div>
-            </div>
-          </div>
-        </div>
-      </div>
-    </div>
-  );
-}

frontend/src/context/AuthContext.tsx

@@ -1,229 +0,0 @@
-import React, {
-  createContext,
-  useContext,
-  useState,
-  useEffect,
-  ReactNode,
-} from "react";
-
-export interface User {
-  id: string;
-  username: string;
-  name: string;
-  email?: string;
-  avatar_url?: string;
-  auth_method: string;
-}
-
-interface AuthState {
-  user: User | null;
-  isAuthenticated: boolean;
-  isLoading: boolean;
-  isHFSpaces: boolean;
-  authRequired: boolean;
-}
-
-interface AuthContextType extends AuthState {
-  login: () => void;
-  logout: () => void;
-  checkAuthStatus: () => Promise<void>;
-  showLoginModal: boolean;
-  setShowLoginModal: (show: boolean) => void;
-}
-
-const AuthContext = createContext<AuthContextType | undefined>(undefined);
-
-export function useAuth() {
-  const context = useContext(AuthContext);
-  if (context === undefined) {
-    throw new Error("useAuth must be used within an AuthProvider");
-  }
-  return context;
-}
-
-interface AuthProviderProps {
-  children: ReactNode;
-}
-
-export function AuthProvider({ children }: AuthProviderProps) {
-  const [user, setUser] = useState<User | null>(null);
-  const [isLoading, setIsLoading] = useState(true);
-  const [isHFSpaces, setIsHFSpaces] = useState(false);
-  const [authRequired, setAuthRequired] = useState(false);
-  const [showLoginModal, setShowLoginModal] = useState(false);
-
-  const isAuthenticated = user !== null;
-
-  const checkAuthStatus = async () => {
-    try {
-      setIsLoading(true);
-      console.log("🔍 Checking authentication status...");
-
-      // Prepare headers with localStorage backup if available
-      const headers: Record<string, string> = {};
-      try {
-        const localUser = localStorage.getItem('hf_user');
-        if (localUser) {
-          // Send localStorage backup as header for HF Spaces iframe issues
-          headers['X-HF-User-Backup'] = localUser;
-          console.log("📦 Sending localStorage backup with auth check");
-        }
-      } catch (e) {
-        console.warn("Could not access localStorage:", e);
-      }
-
-      const response = await fetch("/auth/status", { headers });
-      const data = await response.json();
-
-      console.log("📊 Auth status response:", data);
-
-      setIsHFSpaces(data.environment === "huggingface_spaces");
-      setAuthRequired(
-        data.login_required && data.environment === "huggingface_spaces"
-      );
-
-      if (data.user_authenticated && data.user_info) {
-        const userData = {
-          id: data.user_info.id || "unknown",
-          username: data.user_info.username || "Unknown User",
-          name:
-            data.user_info.name || data.user_info.username || "Unknown User",
-          email: data.user_info.email,
-          avatar_url: data.user_info.avatar_url,
-          auth_method: data.user_info.auth_method || "unknown",
-        };
-
-        setUser(userData);
-        setShowLoginModal(false);
-        console.log("✅ User authenticated successfully:", userData.username);
-      } else {
-        setUser(null);
-        console.log(
-          "❌ User not authenticated, environment:",
-          data.environment,
-          "auth required:",
-          data.login_required
-        );
-
-        // Only show login modal in HF Spaces when auth is required
-        if (data.environment === "huggingface_spaces" && data.login_required) {
-          console.log("🔐 Showing login modal for HF Spaces");
-          setShowLoginModal(true);
-        } else {
-          console.log("🏠 Local development - no login required");
-          setShowLoginModal(false);
-        }
-      }
-    } catch (error) {
-      console.error("❌ Failed to check auth status:", error);
-      setUser(null);
-      // Assume local development if fetch fails
-      setIsHFSpaces(false);
-      setAuthRequired(false);
-      setShowLoginModal(false);
-    } finally {
-      setIsLoading(false);
-    }
-  };
-
-  const login = () => {
-    if (isHFSpaces) {
-      // For HF Spaces, redirect to OAuth login
-      window.location.href = "/auth/login";
-    } else {
-      // For local development, just close the modal
-      setShowLoginModal(false);
-      setUser({
-        id: "local_dev",
-        username: "local_user",
-        name: "Local Development User",
-        auth_method: "local_dev",
-      });
-    }
-  };
-
-  const logout = async () => {
-    try {
-      if (isHFSpaces) {
-        await fetch("/auth/logout");
-        window.location.reload();
-      } else {
-        setUser(null);
-        setShowLoginModal(false);
-      }
-    } catch (error) {
-      console.error("Failed to logout:", error);
-    }
-  };
-
-  useEffect(() => {
-    // Initial auth check
-    checkAuthStatus();
-
-    // Listen for auth-required events from API calls
-    const handleAuthRequired = () => {
-      console.log("🔐 Auth required event received");
-      if (authRequired && !isAuthenticated) {
-        setShowLoginModal(true);
-      }
-    };
-
-    // Listen for messages from login popup/tab
-    const handleMessage = (event: MessageEvent) => {
-      if (event.origin !== window.location.origin) {
-        return; // Only accept messages from same origin
-      }
- 
-      if (event.data.type === "HF_LOGIN_SUCCESS") {
-        console.log("✅ Login success message received from popup");
-        
-        // If user data is provided, store it locally as backup
-        if (event.data.userData) {
-          try {
-            localStorage.setItem('hf_user', JSON.stringify(event.data.userData));
-            localStorage.setItem('hf_login_timestamp', Date.now().toString());
-            console.log("📦 Stored user data in localStorage as backup");
-          } catch (e) {
-            console.warn("Could not store user data in localStorage:", e);
-          }
-        }
-        
-        setShowLoginModal(false);
-        // Refresh auth status after successful login
-        setTimeout(() => checkAuthStatus(), 1000);
-      }
-    };
-
-    // Periodically check auth status while login modal is open (for new tab flow)
-    const interval = showLoginModal
-      ? setInterval(() => {
-          console.log("🔄 Periodic auth check while login modal is open");
-          checkAuthStatus();
-        }, 2000)
-      : null;
-
-    window.addEventListener("auth-required", handleAuthRequired);
-    window.addEventListener("message", handleMessage);
-
-    return () => {
-      window.removeEventListener("auth-required", handleAuthRequired);
-      window.removeEventListener("message", handleMessage);
-      if (interval) clearInterval(interval);
-    };
-  }, [showLoginModal]);
-
-  const value: AuthContextType = {
-    user,
-    isAuthenticated,
-    isLoading,
-    isHFSpaces,
-    authRequired,
-    login,
-    logout,
-    checkAuthStatus,
-    showLoginModal,
-    setShowLoginModal,
-  };
-
-  return <AuthContext.Provider value={value}>{children}</AuthContext.Provider>;
-}

frontend/src/lib/api.ts

@@ -33,22 +33,6 @@ async function fetchApi<T>(
   });
 
   if (!response.ok) {
-    // Handle 401 (Unauthorized) - trigger login modal
-    if (response.status === 401) {
-      // Check if running in browser environment
-      if (typeof window !== "undefined") {
-        // Dispatch a custom event to trigger login modal
-        window.dispatchEvent(
-          new CustomEvent("auth-required", {
-            detail: {
-              message: "Authentication required to access this feature",
-            },
-          })
-        );
-      }
-      throw new ApiError(response.status, "Authentication required");
-    }
-
     // Handle 429 (Too Many Requests) with exponential backoff
     if (response.status === 429 && retryCount < 3) {
       const backoffDelay = Math.pow(2, retryCount) * 1000; // 1s, 2s, 4s