Update app.py

app.py

@@ -1,34 +1,73 @@
-import sqlite3
+from flask import Flask, request, redirect, url_for, make_response, render_template
+from flask_sqlalchemy import SQLAlchemy
 from werkzeug.security import generate_password_hash, check_password_hash
 
-# Create a database connection
-conn = sqlite3.connect("users.db")
-cursor = conn.cursor()
-
-# Create the users table (run this once)
-cursor.execute('''
-CREATE TABLE IF NOT EXISTS users (
-    id INTEGER PRIMARY KEY,
-    username TEXT UNIQUE,
-    password TEXT
-)
-''')
-conn.commit()
-
-# Insert a user (run this once to populate the database)
-hashed_password = generate_password_hash("1234")  # Hash the password
-cursor.execute("INSERT INTO users (username, password) VALUES (?, ?)", ("admin", hashed_password))
-conn.commit()
+app = Flask(__name__)
 
+# Configure SQLite database
+app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///users.db'
+app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False
+
+# Initialize the database
+db = SQLAlchemy(app)
+
+# Define the User model
+class User(db.Model):
+    id = db.Column(db.Integer, primary_key=True)
+    username = db.Column(db.String(80), unique=True, nullable=False)
+    password = db.Column(db.String(200), nullable=False)
+
+# Create the database tables
+@app.before_first_request
+def create_tables():
+    db.create_all()
+
+# Route for landing page
+@app.route('/')
+def landing_page():
+    return render_template('index.html')
+
+# Route for user registration
+@app.route('/register', methods=['POST'])
+def register():
+    username = request.form.get('username')
+    password = request.form.get('password')
+
+    # Check if the user already exists
+    if User.query.filter_by(username=username).first():
+        return "Username already exists. Please choose another."
+
+    # Hash the password and save the user to the database
+    hashed_password = generate_password_hash(password)
+    new_user = User(username=username, password=hashed_password)
+    db.session.add(new_user)
+    db.session.commit()
+
+    return "User registered successfully!"
+
+# Route for login
 @app.route('/login', methods=['POST'])
 def login():
     username = request.form.get('username')
     password = request.form.get('password')
 
-    # Check if the user exists in the database
-    cursor.execute("SELECT password FROM users WHERE username = ?", (username,))
-    result = cursor.fetchone()
+    # Look up the user in the database
+    user = User.query.filter_by(username=username).first()
+    if user and check_password_hash(user.password, password):  # Check hashed password
+        response = make_response(redirect(url_for('landing_page')))
+        response.set_cookie('logged_in', 'true', max_age=3600)
+        response.set_cookie('username', username, max_age=3600)
+        return response
 
-    if result and check_password_hash(result[0], password):  # Compare hashed passwords
-        return "Login successful!"
     return "Invalid username or password!"
+
+# Route for logout
+@app.route('/logout')
+def logout():
+    response = make_response(redirect(url_for('landing_page')))
+    response.delete_cookie('logged_in')
+    response.delete_cookie('username')
+    return response
+
+if __name__ == '__main__':
+    app.run(debug=True)