Update app.py

app.py

@@ -1,453 +1,423 @@
-# app.py
-"""
-Flask Face-Gate + Chatbot demo
-Dependencies:
-  pip install flask itsdangerous pillow python-multipart transformers torch gradio aiofiles
-(If you won't run ASR locally, you can skip installing transformers/torch and use an external ASR endpoint.)
-
-How to run:
-  python app.py
-Then open http://127.0.0.1:5000/
-"""
-
-import io
-import os
-import time
-import json
-import base64
-import secrets
-from typing import Tuple
-from datetime import datetime, timedelta
-
-from flask import Flask, request, redirect, make_response, send_file, jsonify, abort, url_for
-from itsdangerous import URLSafeTimedSerializer
-from PIL import Image
-
-# Optional: for sending real emails (if configured)
-import smtplib
-from email.message import EmailMessage
-
-# Optional: for local ASR or face model (uncomment if available)
-# from transformers import pipeline
-
-# ===== CONFIG =====
-PARTNER_URL = "https://your-partner-system.example.com/entry"  # change
+from flask import Flask, request, redirect, make_response, session, jsonify, url_for
+import html, json, os, io, time, datetime, functools
+import numpy as np
+
+# ======== CONFIG ========
 TITLE = "Face Verify Gate"
 CAPTION = "Verify your identity to continue"
 BACKGROUND_GIF = "https://i.pinimg.com/originals/d9/09/57/d90957d7462b87ba8171fce62d2bf816.gif"
-
 SECRET_KEY = os.environ.get("SECRET_KEY", "dev-secret-change-me")
-COOKIE_NAME = "emmys_access"
-COOKIE_MAX_AGE = 60 * 60 * 2  # 2 hours
 
-# Optional SMTP (for real email delivery). If empty, notifications are stored/logged only.
-SMTP_HOST = os.environ.get("SMTP_HOST", "")
-SMTP_PORT = int(os.environ.get("SMTP_PORT", "587") or 0)
-SMTP_USER = os.environ.get("SMTP_USER", "")
-SMTP_PASS = os.environ.get("SMTP_PASS", "")
+MODEL_DIR = os.environ.get("MODEL_DIR", "models")            # where gallery/labels/threshold live
+LABELS_PATH = os.path.join(MODEL_DIR, "labels.json")         # ["Alice","Bob",...]
+GALLERY_PATH = os.path.join(MODEL_DIR, "gallery_mean.npy")   # shape (N,D), L2-normalized mean embeddings
+THRESH_PATH = os.path.join(MODEL_DIR, "threshold.json")      # {"cosine_threshold": 0.42}
+
+# Demo mapping: name -> email to notify if a mismatch happens
+REGISTERED = {
+    "alice": "alice@emmys.local",
+    "bob":   "bob@emmys.local",
+    "banan": "banan@emmys.local",     # add your legit users here (lowercase)
+}
 
-# Demo admin email to receive alerts (if SMTP configured)
-ADMIN_EMAIL = os.environ.get("ADMIN_EMAIL", "admin@example.com")
-# ===================
+# Where to “send” fake emails (local store + admin UI)
+OUTBOX_PATH = os.environ.get("OUTBOX_PATH", "outbox.json")
+
+# Optional partner URL if you want to deep-link elsewhere after verify
+PARTNER_URL = os.environ.get("PARTNER_URL", "")  # leave blank to go to /chat
+# ========================
 
 app = Flask(__name__)
 app.secret_key = SECRET_KEY
-signer = URLSafeTimedSerializer(SECRET_KEY, salt="emmys-access")
-
-# In-memory stores (for demo)
-SENT_NOTIFICATIONS = []   # list of dicts {to, subject, body, when}
-ACCESS_LOGS = []          # records of attempts
-SENT_EMAIL_FILES_DIR = "/tmp/emmys_notifications"
-os.makedirs(SENT_EMAIL_FILES_DIR, exist_ok=True)
-
-# Uncomment & configure a local ASR model if desired
-# asr_pipeline = pipeline("automatic-speech-recognition", model="openai/whisper-small")
-
-# -------------------------
-# Hook: integrate your face model here.
-# face_verify should return (ok: bool, confidence: float, matched_username: str|None)
-# - ok True means we consider the image to match the user `name` (or the stored encoding for that name)
-# - If you have a DB of users, compare the incoming image to the stored profile of `name`.
-# For now this is a stub that accepts if the filename contains 'ok' or always fails for others.
-# Replace contents with your model invocation; the function receives raw image bytes in `image_bytes`.
-# -------------------------
-def face_verify(name: str, image_bytes: bytes) -> Tuple[bool, float, str]:
-    """
-    Replace this with your real recognition call.
-    Example:
-      - load image_bytes into your model
-      - compute similarity to stored embedding for `name`
-      - return (similarity >= threshold, similarity, matched_username)
-    """
-    # Demo heuristics (replace):
-    lower = name.strip().lower()
-    if not image_bytes:
-        return False, 0.0, None
-
-    # quick PIL check (ensures it's a valid image)
+
+# ------- Load gallery + threshold once -------
+def _load_assets():
+    if not (os.path.exists(LABELS_PATH) and os.path.exists(GALLERY_PATH) and os.path.exists(THRESH_PATH)):
+        raise RuntimeError(
+            f"Missing model assets. Expect {LABELS_PATH}, {GALLERY_PATH}, {THRESH_PATH} "
+            "generated by your training notebook."
+        )
+    labels = json.load(open(LABELS_PATH, "r", encoding="utf-8"))
+    G = np.load(GALLERY_PATH).astype("float32")  # NxD, L2-normalized
+    thr = json.load(open(THRESH_PATH, "r", encoding="utf-8")).get("cosine_threshold", 0.35)
+    name_to_idx = {str(n).strip().lower(): i for i, n in enumerate(labels)}
+    return labels, G, float(thr), name_to_idx
+
+LABELS, GALLERY, COSINE_THR, NAME2IDX = _load_assets()
+
+# ------- InsightFace embedder (same family as in your notebook) -------
+# (cosine of L2-normalized embeddings; choose biggest detected face)
+try:
+    from insightface.app import FaceAnalysis
+    _fa = FaceAnalysis(name='buffalo_l', providers=['CPUExecutionProvider'])
+    _fa.prepare(ctx_id=-1, det_size=(640,640))
+except Exception as e:
+    raise RuntimeError(
+        "Failed to initialize InsightFace. Install deps:\n"
+        "  pip install insightface onnxruntime opencv-python pillow\n"
+        f"Original error: {e}"
+    )
+
+def embed_bytes(img_bytes: bytes) -> np.ndarray | None:
+    import cv2
+    arr = np.frombuffer(img_bytes, dtype=np.uint8)
+    bgr = cv2.imdecode(arr, cv2.IMREAD_COLOR)
+    if bgr is None:
+        return None
+    rgb = cv2.cvtColor(bgr, cv2.COLOR_BGR2RGB)
+    faces = _fa.get(rgb)
+    if not faces:
+        return None
+    f = max(faces, key=lambda z: (z.bbox[2]-z.bbox[0])*(z.bbox[3]-z.bbox[1]))
+    e = f.normed_embedding.astype("float32")  # already L2-normalized
+    return e
+
+# ------- Fake email outbox helpers -------
+def _load_outbox():
+    if not os.path.exists(OUTBOX_PATH):
+        return []
     try:
-        img = Image.open(io.BytesIO(image_bytes))
-        img.verify()
+        return json.load(open(OUTBOX_PATH, "r", encoding="utf-8"))
     except Exception:
-        return False, 0.0, None
-
-    # Demo acceptance rule: if name contains 'grant' or 'ok' -> allow
-    if "grant" in lower or "ok" in lower:
-        return True, 0.98, name
-    # If filename bytes happen to include ascii 'match' -> accept (just a demo hack)
-    if b"match" in image_bytes[:1024].lower()[:1024]:
-        return True, 0.92, name
-    return False, 0.12, None
-
-# -------------------------
-# Notification helper: create a "fake" owner email and either send it via SMTP (if configured)
-# or store it to disk and in-memory list for viewing. This satisfies your request for "fake emails".
-# -------------------------
-def make_fake_owner_email(name: str) -> str:
-    local = name.strip().lower().replace(" ", ".")
-    if not local:
-        local = "user"
-    # If it's the same name used by real people, you should map to actual email in production.
-    return f"{local}@example-portal.com"
-
-def notify_owner_of_attempt(target_name: str, attempt_info: dict):
-    to_addr = make_fake_owner_email(target_name)
-    subject = f"[ALERT] Unauthorized access attempt to {target_name}'s account"
-    body = (
-        f"Hello {target_name},\n\n"
-        "We detected a failed access attempt to your Emmys portal profile.\n\n"
-        "Details:\n"
-        f"- Time: {attempt_info.get('when')}\n"
-        f"- IP: {attempt_info.get('ip')}\n"
-        f"- Provided name: {attempt_info.get('provided_name')}\n"
-        f"- Confidence: {attempt_info.get('confidence')}\n\n"
-        "If this wasn't you, please consider rotating your access credentials.\n\n"
-        "— Emmys Portal Security Bot (simulated)"
-    )
-    record = {"to": to_addr, "subject": subject, "body": body, "when": attempt_info.get("when")}
-    SENT_NOTIFICATIONS.append(record)
-
-    # Save to file for demo/inspection
-    ts = int(time.time() * 1000)
-    fname = os.path.join(SENT_EMAIL_FILES_DIR, f"notif_{local_stub(target_name)}_{ts}.txt")
-    with open(fname, "w", encoding="utf-8") as f:
-        f.write(f"To: {to_addr}\nSubject: {subject}\n\n{body}")
-
-    # If SMTP configured, attempt to actually send
-    if SMTP_HOST and SMTP_USER and SMTP_PASS and SMTP_PORT:
-        try:
-            msg = EmailMessage()
-            msg["Subject"] = subject
-            msg["From"] = SMTP_USER
-            msg["To"] = to_addr
-            msg.set_content(body)
-            with smtplib.SMTP(SMTP_HOST, SMTP_PORT) as server:
-                server.starttls()
-                server.login(SMTP_USER, SMTP_PASS)
-                server.send_message(msg)
-            record["sent_via_smtp"] = True
-        except Exception as e:
-            record["smtp_error"] = str(e)
-
-    print(f"[NOTIFY] {to_addr} | saved: {fname}")
-    return record
-
-def local_stub(name:str)->str:
-    return name.strip().lower().replace(" ", "_") or "unknown"
-
-# -------------------------
-# Templates (login page and chat page)
-# -------------------------
-def login_page(status_msg=""):
-    status_msg = (status_msg or "")
-    return f"""<!doctype html>
+        return []
+
+def _save_outbox(messages):
+    with open(OUTBOX_PATH, "w", encoding="utf-8") as f:
+        json.dump(messages, f, indent=2, ensure_ascii=False)
+
+def send_fake_email(to_addr: str, subject: str, body: str):
+    messages = _load_outbox()
+    messages.append({
+        "to": to_addr,
+        "subject": subject,
+        "body": body,
+        "ts": datetime.datetime.utcnow().isoformat() + "Z"
+    })
+    _save_outbox(messages)
+
+# ------- UI (Jarvis glass look) -------
+def page(status_msg=""):
+    status_msg = html.escape(status_msg or "")
+    html_page = f"""<!DOCTYPE html>
 <html lang="en">
 <head>
-<meta charset="utf-8"/>
-<meta name="viewport" content="width=device-width,initial-scale=1"/>
+<meta charset="UTF-8" />
+<meta name="viewport" content="width=device-width,initial-scale=1" />
 <title>{TITLE}</title>
 <style>
-:root {{ --glass: rgba(10,16,24,0.55); --border: rgba(62,231,255,0.35); --accent: #3ee7ff; --accent2: #7bf5c8; --text: #e8f3ff; --muted: #a9c2d0; }}
-*{{box-sizing:border-box}} html,body{{height:100%;margin:0;font-family:ui-sans-serif,system-ui,-apple-system,Segoe UI,Roboto,Helvetica,Arial;color:var(--text);}}
-body{{background:#000 center/cover no-repeat fixed; background-image: url('{BACKGROUND_GIF}');}}
-.shade{{position:fixed;inset:0;background:radial-gradient(60% 60% at 50% 40%, rgba(0,0,32,0.10) 0%, rgba(0,0,0,0.65) 100%);}}
-.card{{position:relative;max-width:520px;margin:min(10vh,8rem) auto 0;padding:1.75rem 1.75rem 1.25rem;background:linear-gradient(180deg, rgba(10,16,24,0.72), var(--glass));backdrop-filter: blur(10px) saturate(130%);border:1px solid var(--border);border-radius:16px;box-shadow:0 20px 60px rgba(0,0,0,0.6), inset 0 0 40px rgba(62,231,255,0.12);}}
-h1{{margin:0 0 .25rem 0;font-weight:800;letter-spacing:.5px}} .caption{{margin:0 0 1rem 0;color:var(--muted)}}
-label{{display:block;margin:.6rem 0 .35rem;color:var(--muted);font-weight:600}}
-input[type="text"], input[type="file"]{{width:100%;padding:.7rem .85rem;border-radius:10px;border:1px solid rgba(255,255,255,0.18);background:rgba(255,255,255,0.08);color:var(--text);outline:none}}
-button{{margin-top:1rem;padding:.8rem 1rem;width:100%;border-radius:10px;border:none;background:linear-gradient(90deg,var(--accent),var(--accent2));color:#0a0f18;font-weight:800;cursor:pointer}}
-#status{{min-height:1.25rem;margin-top:.6rem;color:#ffd166}} #status.err{{color:#ff7b7b}} #status.ok{{color:#7bf5c8}}
-.stub{{margin-top:.6rem;color:var(--muted);font-size:.9rem}} @media(max-width:520px){{.card{{margin:8vh 1rem 0}}}}
+  :root {{
+    --glass: rgba(10,16,24,0.55);
+    --border: rgba(62,231,255,0.35);
+    --accent: #3ee7ff;
+    --accent2: #7bf5c8;
+    --text: #e8f3ff;
+    --muted: #a9c2d0;
+  }}
+  * {{ box-sizing: border-box; }}
+  html, body {{
+    height: 100%; margin: 0;
+    font-family: ui-sans-serif, system-ui, -apple-system, Segoe UI, Roboto, Helvetica, Arial;
+    color: var(--text);
+  }}
+  body {{
+    background: #000 center/cover no-repeat fixed;
+    background-image: url('{BACKGROUND_GIF}');
+  }}
+  .shade {{ position: fixed; inset:0; background: radial-gradient(60% 60% at 50% 40%, rgba(0,0,32,0.10) 0%, rgba(0,0,0,0.65) 100%); }}
+  .card {{
+    position: relative; max-width: 520px; margin: min(10vh, 8rem) auto 0;
+    padding: 1.75rem 1.75rem 1.25rem; background: linear-gradient(180deg, rgba(10,16,24,0.72), var(--glass));
+    backdrop-filter: blur(10px) saturate(130%); border: 1px solid var(--border); border-radius: 16px;
+    box-shadow: 0 20px 60px rgba(0,0,0,0.6), inset 0 0 40px rgba(62,231,255,0.12);
+  }}
+  h1 {{ margin: 0 0 .25rem 0; font-weight: 800; letter-spacing: .5px; }}
+  .caption {{ margin: 0 0 1rem 0; color: var(--muted); }}
+  label {{ display:block; margin:.6rem 0 .35rem; color: var(--muted); font-weight:600; }}
+  input[type="text"], input[type="file"] {{
+    width: 100%; padding: .7rem .85rem; border-radius: 10px; border: 1px solid rgba(255,255,255,0.18);
+    background: rgba(255,255,255,0.08); color: var(--text); outline: none;
+  }}
+  input[type="text"]:focus {{ border-color: var(--accent); box-shadow: 0 0 0 3px rgba(62,231,255,0.25); }}
+  button {{
+    margin-top: 1rem; padding: .8rem 1rem; width: 100%; border-radius: 10px; border: none;
+    background: linear-gradient(90deg, var(--accent), var(--accent2)); color: #0a0f18; font-weight: 800; cursor: pointer;
+  }}
+  #status {{ min-height: 1.25rem; margin-top: .6rem; color: #ffd166; }}
+  #status.err {{ color: #ff7b7b; }} #status.ok {{ color: #7bf5c8; }}
+  .stub {{ margin-top: .6rem; color: var(--muted); font-size:.9rem; }}
+  .foot {{ margin-top: 1rem; text-align:center; font-size:.9rem; color: var(--muted); }}
+  .foot a {{ color: var(--accent); text-decoration: none; }}
+  @media (max-width: 520px) {{ .card {{ margin: 8vh 1rem 0; }} }}
 </style>
-</head><body><div class="shade"></div>
+</head>
+<body>
+<div class="shade"></div>
 <main class="card">
   <h1>{TITLE}</h1>
   <p class="caption">{CAPTION}</p>
+
   <form method="POST" action="/verify" enctype="multipart/form-data" onsubmit="onSubmit()">
     <label for="name">Name</label>
-    <input id="name" name="name" type="text" placeholder="Enter your name" required />
+    <input id="name" name="name" type="text" placeholder="Type your registered name" required />
+
     <label for="photo">Photo</label>
     <input id="photo" name="photo" type="file" accept="image/*" required />
+
     <button type="submit">Verify &amp; Enter</button>
     <p id="status" aria-live="polite">{status_msg}</p>
   </form>
-  <p class="stub">This demo uses a face recognition model you will plug into <code>face_verify()</code>.</p>
-  <p class="stub">If verification fails, the real profile owner will be notified (simulated).</p>
+
+  <p class="stub">Face & name are verified against a secure gallery. If a mismatch occurs, the rightful user is notified.</p>
+  <div class="foot">
+    <a href="/admin/outbox" target="_blank">Admin · Outbox</a>
+  </div>
 </main>
 <script>
-function onSubmit(){ document.getElementById('status').textContent='Verifying…'; }
+  function onSubmit() {{
+    const s = document.getElementById('status');
+    s.textContent = 'Verifying…';
+    s.className = '';
+  }}
 </script>
-</body></html>
-"""
-
-def chat_page(username: str):
-    # Small chat UI with voice-to-text
-    # The JS records audio, posts to /api/asr, fills input and sends to /api/chat
-    username_escaped = username.replace('"', '\\"')
-    return f"""<!doctype html>
-<html>
-<head>
-<meta charset="utf-8"/>
-<meta name="viewport" content="width=device-width,initial-scale=1"/>
-<title>Emmys Chat — {username_escaped}</title>
-<style>
-body{{font-family:system-ui,Segoe UI,Roboto,Arial;background:#05060a;color:#fff;padding:1rem}}
-.container{{max-width:900px;margin:0 auto}}
-.header{{display:flex;align-items:center;justify-content:space-between}}
-.chatbox{{border-radius:12px;padding:1rem;background:linear-gradient(180deg,#081018,#0b1119);height:60vh;overflow:auto}}
-.row{{display:flex;gap:.5rem;margin-top:.6rem}}
-.msg{{
-  padding:.6rem .8rem;border-radius:10px;max-width:75%;line-height:1.25rem
-}}
-.msg.me{{background:#e6fffa;color:#001;align-self:flex-end}}
-.msg.bot{{background:#0b3b2e;color:#bff;align-self:flex-start}}
-.input-area{{display:flex;gap:.5rem;margin-top:.6rem}}
-input[type="text"]{{flex:1;padding:.6rem;border-radius:8px;border:1px solid rgba(255,255,255,0.06);background:transparent;color:#fff}}
-button{{padding:.55rem .8rem;border-radius:8px;border:none;background:#3ee7ff;color:#002;font-weight:700;cursor:pointer}}
-.recording{{outline:2px solid #ffcb05}}
-.note{{color:#9fb; font-size:.9rem;margin-top:.6rem}}
-</style>
-</head><body>
-<div class="container">
-  <div class="header"><h2>Emmys Assistant</h2><div>Signed in as <strong>{username_escaped}</strong></div></div>
-  <div id="chat" class="chatbox" role="log" aria-live="polite"></div>
-
-  <div class="input-area">
-    <input id="text" placeholder="Type or press mic…" />
-    <button id="mic">🎤</button>
-    <button id="send">Send</button>
-  </div>
-  <div class="note">Tip: Speak, let the transcript appear, then press Send. You can also edit the transcript before sending.</div>
-  <div style="margin-top:1rem">
-    <button id="logout" style="background:#ff7b7b;color:#fff;padding:.6rem .9rem;border-radius:8px;border:none;cursor:pointer">Sign out</button>
-  </div>
-</div>
-
-<script>
-const chat = document.getElementById('chat');
-const txt = document.getElementById('text');
-const micBtn = document.getElementById('mic');
-const sendBtn = document.getElementById('send');
-const logoutBtn = document.getElementById('logout');
-
-function append(msg, who='bot'){
-  const d = document.createElement('div');
-  d.className = 'row';
-  const m = document.createElement('div');
-  m.className = 'msg ' + (who==='me' ? 'me' : 'bot');
-  m.textContent = msg;
-  d.appendChild(m);
-  chat.appendChild(d);
-  chat.scrollTop = chat.scrollHeight;
-}
-
-// send text to chat endpoint
-async function sendText(text){
-  append(text, 'me');
-  txt.value='';
-  const res = await fetch('/api/chat', {method:'POST', headers:{'Content-Type':'application/json'}, body: JSON.stringify({message: text})});
-  const j = await res.json();
-  append(j.reply || '(no reply)', 'bot');
-}
+</body>
+</html>"""
+    resp = make_response(html_page)
+    resp.headers["Content-Type"] = "text/html; charset=utf-8"
+    return resp
 
-sendBtn.addEventListener('click', ()=>{ if (txt.value.trim()) sendText(txt.value.trim()); });
-
-logoutBtn.addEventListener('click', async ()=>{
-  await fetch('/logout', {method:'POST'});
-  location.href = '/';
-});
-
-// Voice recording using MediaRecorder
-let mediaRecorder = null, audioChunks = [];
-micBtn.addEventListener('click', async ()=>{
-  if (!mediaRecorder || mediaRecorder.state === 'inactive') {
-    // start
-    try {
-      const stream = await navigator.mediaDevices.getUserMedia({audio:true});
-      mediaRecorder = new MediaRecorder(stream);
-      audioChunks = [];
-      mediaRecorder.ondataavailable = e => audioChunks.push(e.data);
-      mediaRecorder.onstop = async ()=>{
-        const blob = new Blob(audioChunks, {type:'audio/webm'});
-        const fd = new FormData();
-        fd.append('file', blob, 'record.webm');
-        // show temporary
-        micBtn.textContent = '⏳';
-        const r = await fetch('/api/asr', {method:'POST', body: fd});
-        const j = await r.json();
-        micBtn.textContent = '🎤';
-        if (j.text) {
-          txt.value = j.text;
-        } else {
-          txt.value = '';
-          alert('No transcript: ' + (j.error || 'Unknown'));
-        }
-      };
-      mediaRecorder.start();
-      micBtn.classList.add('recording');
-      micBtn.textContent = '⏹️';
-    } catch(e){
-      alert('Microphone access denied or unavailable.');
-    }
-  } else {
-    // stop
-    mediaRecorder.stop();
-    micBtn.classList.remove('recording');
-    micBtn.textContent = '🎤';
-  }
-});
-</script>
-</body></html>
-"""
+# ------- Small helpers -------
+def norm_name(s: str) -> str:
+    return " ".join((s or "").strip().lower().split())
+
+def require_login(fn):
+    @functools.wraps(fn)
+    def _inner(*args, **kwargs):
+        if not session.get("user"):
+            return redirect(url_for("index"))
+        return fn(*args, **kwargs)
+    return _inner
+
+# ------- Verification logic -------
+def verify_face_and_name(name: str, img_bytes: bytes):
+    uname = norm_name(name)
+    idx = NAME2IDX.get(uname)
+    if idx is None:
+        # name not in gallery at all
+        return {"ok": False, "reason": "name_not_found", "score": None, "uname": uname}
+
+    q = embed_bytes(img_bytes)
+    if q is None or not np.isfinite(q).all():
+        return {"ok": False, "reason": "no_face_or_bad_image", "score": None, "uname": uname}
+
+    # cosine for normalized vectors == dot product
+    score = float(np.dot(GALLERY[idx], q))
+    ok = score >= COSINE_THR
+    return {"ok": ok, "reason": None if ok else "below_threshold", "score": score, "uname": uname}
+
+def notify_rightful_user_if_needed(typed_name: str, requester_ip: str, score: float | None, reason: str):
+    uname = norm_name(typed_name)
+    to_addr = REGISTERED.get(uname)
+    if not to_addr:
+        return
+    subj = f"[ALERT] Suspicious access attempt for '{uname}'"
+    body = (
+        f"Hello {uname},\n\n"
+        f"We detected a failed access attempt to your account.\n\n"
+        f"Details:\n"
+        f"  • Time (UTC): {datetime.datetime.utcnow().isoformat()}Z\n"
+        f"  • From IP: {requester_ip}\n"
+        f"  • Reason: {reason}\n"
+        f"  • Similarity score: {score if score is not None else 'N/A'}\n\n"
+        f"If this was you and you’re having trouble, please re-try with a clearer image.\n"
+        f"If this wasn’t you, no action is required—your access remains protected.\n\n"
+        f"— EMMYS Security Bot"
+    )
+    send_fake_email(to_addr, subj, body)
 
-# -------------------------
-# Routes
-# -------------------------
+# ------- Routes -------
 @app.get("/")
 def index():
-    return login_page("")
+    return page("")
 
 @app.post("/verify")
 def verify():
     name = (request.form.get("name") or "").strip()
     file = request.files.get("photo")
-    ip = request.remote_addr or "unknown"
 
     if not name or not file or not file.filename.strip():
-        return login_page("Please enter your name and select a photo."), 400
-
-    # read image bytes
-    image_bytes = file.read()
-    ok, confidence, matched_username = face_verify(name, image_bytes)
-
-    # audit log
-    attempt = {
-        "when": datetime.utcnow().isoformat() + "Z",
-        "ip": ip,
-        "provided_name": name,
-        "confidence": float(confidence),
-        "ok": bool(ok)
-    }
-    ACCESS_LOGS.append(attempt)
-
-    if ok:
-        # create signed token cookie
-        token = signer.dumps({"user": name, "ts": int(time.time())})
-        resp = make_response(redirect("/chat"))
-        resp.set_cookie(COOKIE_NAME, token, max_age=COOKIE_MAX_AGE, httponly=True, samesite="Lax")
-        return resp
-
-    # notify owner (simulated or real if SMTP configured)
-    notif = notify_owner_of_attempt(name, attempt)
-
-    msg = "Verification failed. Owner has been notified."
-    return login_page(msg), 401
+        return page("Please enter your name and select a photo."), 400
+
+    img_bytes = file.read()
+    result = verify_face_and_name(name, img_bytes)
+
+    if not result["ok"]:
+        # notify rightful user if we know an email for this name
+        notify_rightful_user_if_needed(
+            typed_name=name,
+            requester_ip=request.headers.get("X-Forwarded-For", request.remote_addr or "?"),
+            score=result.get("score"),
+            reason=result.get("reason") or "unknown"
+        )
+        msg = {
+            "name_not_found":"Name not found in gallery.",
+            "no_face_or_bad_image":"No face detected or unreadable image.",
+            "below_threshold":"Verification failed. (face/name mismatch)",
+        }.get(result.get("reason"), "Verification failed.")
+        return page(msg), 401
+
+    # Success: start session + go to partner URL or /chat
+    session["user"] = norm_name(name)
+    if PARTNER_URL:
+        return redirect(PARTNER_URL, code=302)
+    return redirect(url_for("chat"), code=302)
 
 @app.get("/chat")
+@require_login
 def chat():
-    token = request.cookies.get(COOKIE_NAME)
-    if not token:
-        return redirect("/", 302)
-    try:
-        data = signer.loads(token, max_age=COOKIE_MAX_AGE)
-        username = data.get("user", "Guest")
-    except Exception:
-        return redirect("/", 302)
-    return chat_page(username)
+    user = session.get("user")
+    html_page = f"""<!DOCTYPE html>
+<html lang="en"><head>
+<meta charset="UTF-8" />
+<meta name="viewport" content="width=device-width,initial-scale=1" />
+<title>EMMYS · Jarvis Chat</title>
+<style>
+  body {{
+    margin: 0; background: #0a1018; color: #e8f3ff; font-family: ui-sans-serif, system-ui;
+    background-image: radial-gradient(800px 400px at 20% 0%, rgba(62,231,255,.07), transparent 60%),
+                      radial-gradient(800px 400px at 80% 0%, rgba(123,245,200,.07), transparent 60%);
+  }}
+  .shell {{ max-width: 900px; margin: 0 auto; padding: 24px; }}
+  .bar {{ display:flex; align-items:center; gap:12px; margin-bottom:16px; }}
+  .tag {{ padding:6px 10px; border:1px solid rgba(62,231,255,.35); border-radius:10px; font-weight:700; }}
+  .box {{ border:1px solid rgba(255,255,255,.1); background: rgba(255,255,255,.03); border-radius:16px; padding:16px; height: 60vh; overflow:auto; }}
+  .msg {{ padding:10px 12px; margin:8px 0; border-radius:12px; max-width: 80%; }}
+  .me {{ background: rgba(62,231,255,.12); margin-left:auto; border:1px solid rgba(62,231,255,.25); }}
+  .ai {{ background: rgba(123,245,200,.10); border:1px solid rgba(123,245,200,.25); }}
+  form {{ display:flex; gap:8px; margin-top:12px; }}
+  input[type="text"] {{ flex:1; padding:12px; border-radius:12px; border:1px solid rgba(255,255,255,.2); background: rgba(255,255,255,.06); color:#e8f3ff; outline:none; }}
+  button {{ padding:12px 14px; border:none; border-radius:12px; background:linear-gradient(90deg,#3ee7ff,#7bf5c8); color:#0a1018; font-weight:800; cursor:pointer; }}
+  .top {{ display:flex; justify-content:space-between; align-items:center; margin-bottom:8px; }}
+  a.link {{ color:#3ee7ff; text-decoration:none; }}
+</style>
+</head>
+<body>
+<div class="shell">
+  <div class="top">
+    <div class="bar">
+      <div class="tag">JARVIS</div>
+      <div>Welcome, <strong>{html.escape(user)}</strong></div>
+    </div>
+    <div><a class="link" href="/logout">Logout</a></div>
+  </div>
 
-@app.post("/logout")
-def logout():
-    resp = make_response(redirect("/"))
-    resp.delete_cookie(COOKIE_NAME)
-    return resp
+  <div id="box" class="box"></div>
+
+  <form id="chatForm">
+    <input id="msg" type="text" placeholder="Ask me anything about the EMMYS portal…" autofocus />
+    <button type="submit">Send</button>
+  </form>
+</div>
 
-# Small endpoint to view sent notifications (demo only; in prod restrict access)
-@app.get("/_notifications")
-def view_notifications():
-    # return the in-memory notifications and file list
-    files = os.listdir(SENT_EMAIL_FILES_DIR)
-    return jsonify({"sent_notifications": SENT_NOTIFICATIONS, "files": files})
+<script>
+  const box = document.getElementById('box');
+  const form = document.getElementById('chatForm');
+  const msg  = document.getElementById('msg');
+
+  const push = (who, text) => {{
+    const div = document.createElement('div');
+    div.className = 'msg ' + (who === 'me' ? 'me' : 'ai');
+    div.textContent = text;
+    box.appendChild(div);
+    box.scrollTop = box.scrollHeight;
+  }};
+
+  push('ai', "Systems online. How can I help, {html.escape(user)}?");
+
+  form.addEventListener('submit', async (e) => {{
+    e.preventDefault();
+    const t = msg.value.trim(); if(!t) return;
+    push('me', t);
+    msg.value = '';
+    const r = await fetch('/api/chat', {{
+      method:'POST',
+      headers: {{ 'Content-Type':'application/json' }},
+      body: JSON.stringify({{ message: t }})
+    }});
+    const j = await r.json();
+    push('ai', j.reply);
+  }});
+</script>
+</body></html>"""
+    resp = make_response(html_page)
+    resp.headers["Content-Type"] = "text/html; charset=utf-8"
+    return resp
 
-# Simple chat endpoint: replace body with real LM call
 @app.post("/api/chat")
+@require_login
 def api_chat():
-    data = request.get_json(force=True)
-    message = (data.get("message") or "").strip()
-    if not message:
-        return jsonify({"reply": ""})
-
-    # Demo reply generation: be creative & contextual
-    # Replace this with an actual LM call (OpenAI, HF Inference, or your local model).
-    reply = demo_chatbot_reply(message)
-    return jsonify({"reply": reply})
-
-def demo_chatbot_reply(message: str) -> str:
-    # Some creative, Emmys-themed behavior:
-    lower = message.lower()
-    if "nominee" in lower or "who" in lower:
-        return "Looking through the nominees… I can fetch categories, trivia, or gossip. Try: 'Tell me nominees for Outstanding Drama.'"
-    if "hello" in lower or "hi" in lower:
-        return "Hello! I'm the Emmys Assistant — I can tell you schedules, nominees, or accept voice notes. What would you like?"
-    # short "persona" reply
-    return "I hear you. (demo reply) — In production, this response comes from your chosen language model."
-
-# ASR endpoint: accepts multipart/form-data with 'file'. Return {"text": "..."}
-@app.post("/api/asr")
-def api_asr():
-    # If you have a local ASR pipeline uncomment and use asr_pipeline
-    f = request.files.get("file")
-    if not f:
-        return jsonify({"error": "no file provided"}), 400
-    audio_bytes = f.read()
-    # placeholder: pretend we transcribed it
-    # If you installed transformers+torch and configured asr_pipeline, you could do:
-    # with open('/tmp/rec.webm','wb') as out: out.write(audio_bytes)
-    # text = asr_pipeline('/tmp/rec.webm')["text"]
-    # return jsonify({"text": text})
-    # For demo, we'll use a naive heuristic
-    demo_text = heuristic_transcribe(audio_bytes)
-    return jsonify({"text": demo_text})
-
-def heuristic_transcribe(audio_bytes: bytes) -> str:
-    # Very small heuristic: if audio contains keyword in bytes, return it.
-    sample = audio_bytes[:1200].lower()
-    if b"hello" in sample or b"hi" in sample:
-        return "Hello Emmys, show me the nominees."
-    if b"nominee" in sample:
-        return "Who are the nominees for outstanding drama?"
-    # fallback
-    return "Demo transcript (no ASR model configured)."
-
-# -------------------------
-# Admin/simple debug endpoints
-# -------------------------
-@app.get("/_logs")
-def logs():
-    # Danger: In production lock this down
-    return jsonify({"access_logs": ACCESS_LOGS, "notifications": SENT_NOTIFICATIONS})
-
-# -------------------------
-# Run server
-# -------------------------
+    data = request.get_json(silent=True) or {}
+    user_msg = (data.get("message") or "").strip()
+    u = session.get("user", "user")
+
+    # Minimal rule-based “assistant” (no external API)
+    reply = ""
+    lm = user_msg.lower()
+    if not user_msg:
+        reply = "Say something and I’ll help."
+    elif "help" in lm:
+        reply = "You can ask about access logs, last alerts, or say 'status'."
+    elif "status" in lm:
+        reply = f"Access control nominal. Threshold={COSINE_THR:.3f}. Gallery identities={len(LABELS)}."
+    elif "alerts" in lm or "outbox" in lm:
+        msgs = _load_outbox()
+        recent = [m for m in msgs if m.get("to") == REGISTERED.get(u)]
+        if not recent:
+            reply = "No recent alerts for your account."
+        else:
+            latest = recent[-1]
+            reply = f"Latest alert → {latest['subject']} at {latest['ts']}."
+    else:
+        reply = f"Echo: {user_msg}"
+    return jsonify({"ok": True, "reply": reply})
+
+@app.get("/admin/outbox")
+def admin_outbox():
+    messages = _load_outbox()
+    rows = ""
+    for m in reversed(messages):
+        rows += f"""
+        <tr>
+          <td>{html.escape(m.get('ts',''))}</td>
+          <td>{html.escape(m.get('to',''))}</td>
+          <td>{html.escape(m.get('subject',''))}</td>
+          <td><pre style='white-space:pre-wrap;margin:0'>{html.escape(m.get('body',''))}</pre></td>
+        </tr>"""
+    html_page = f"""<!doctype html><html><head>
+<meta charset="utf-8" />
+<title>Outbox</title>
+<style>
+ body {{ background:#0a1018; color:#e8f3ff; font-family: ui-sans-serif, system-ui; }}
+ table {{ width:100%; border-collapse: collapse; }}
+ th, td {{ border:1px solid rgba(255,255,255,.15); padding:8px; vertical-align: top; }}
+ th {{ background: rgba(62,231,255,.12); }}
+ a {{ color:#3ee7ff; }}
+</style>
+</head><body>
+<h2>Fake Email Outbox</h2>
+<p>Total: {len(messages)} &nbsp;|&nbsp; <a href="/">Back to Gate</a></p>
+<table>
+  <tr><th>UTC Time</th><th>To</th><th>Subject</th><th>Body</th></tr>
+  {rows or "<tr><td colspan='4'>Empty</td></tr>"}
+</table>
+</body></html>"""
+    return html_page
+
+@app.get("/logout")
+def logout():
+    session.clear()
+    return redirect(url_for("index"))
+
+# Dev entry
 if __name__ == "__main__":
-    app.run(host="0.0.0.0", port=5000, debug=True)
+    # Tip: set FLASK_ENV=development for auto-reload
+    app.run(host="127.0.0.1", port=5000, debug=True)