KoreAI-API

Sleeping

App Files Files Community

rairo commited on Jul 5, 2025

Commit

acc58ac

verified ·

1 Parent(s): 02784e4

Update main.py

Browse files

Files changed (1) hide show

main.py +123 -1

main.py CHANGED Viewed

@@ -67,11 +67,133 @@ def is_valid_email(email):
     regex = r'^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$'
     return re.match(regex, email) is not None
 # -----------------------------------------------------------------------------
 # 3. AUTHENTICATION & USER MANAGEMENT
 # -----------------------------------------------------------------------------
-# (Your other authentication endpoints would go here)
 # -----------------------------------------------------------------------------

     regex = r'^[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}$'
     return re.match(regex, email) is not None
+# Helper functions
+def verify_token(token):
+    try:
+        decoded_token = auth.verify_id_token(token)
+        return decoded_token['uid']
+    except Exception as e:
+        return None
+def verify_admin(auth_header):
+    if not auth_header or not auth_header.startswith('Bearer '):
+        raise ValueError('Invalid token')
+    token = auth_header.split(' ')[1]
+    uid = verify_token(token)
+    if not uid:
+        raise PermissionError('Invalid user')
+    user_ref = db.reference(f'users/{uid}')
+    user_data = user_ref.get()
+    if not user_data or not user_data.get('is_admin', False):
+        raise PermissionError('Admin access required')
+    return uid
 # -----------------------------------------------------------------------------
 # 3. AUTHENTICATION & USER MANAGEMENT
 # -----------------------------------------------------------------------------
+# ---------- Authentication Endpoints ----------
+@app.route('/api/auth/signup', methods=['POST'])
+def signup():
+    try:
+        data = request.get_json()
+        email = data.get('email')
+        password = data.get('password')
+        if not email or not password:
+            return jsonify({'error': 'Email and password are required'}), 400
+        # Create user in Firebase Auth
+        user = auth.create_user(email=email, password=password)
+        # Set initial user data in the realtime database with 3 starting credits
+        user_ref = db.reference(f'users/{user.uid}')
+        user_data = {
+            'email': email,
+            'credits': 15,
+            'is_admin': False,
+            'created_at': datetime.utcnow().isoformat()
+        }
+        user_ref.set(user_data)
+        return jsonify({
+            'success': True,
+            'user': {
+                'uid': user.uid,
+                **user_data
+            }
+        }), 201
+    except Exception as e:
+        return jsonify({'error': str(e)}), 400
+# ---------- User Profile ----------
+@app.route('/api/user/profile', methods=['GET'])
+def get_user_profile():
+    try:
+        auth_header = request.headers.get('Authorization', '')
+        print("Received Auth Header (user):", auth_header)  # Debugging
+        if not auth_header.startswith('Bearer '):
+            return jsonify({'error': 'Missing or invalid token'}), 401
+        token = auth_header.split(' ')[1]
+        uid = verify_token(token)
+        if not uid:
+            return jsonify({'error': 'Invalid or expired token'}), 401
+        user_data = db.reference(f'users/{uid}').get()
+        print("Fetched User Data (user):", user_data)  # Debugging
+        if not user_data:
+            return jsonify({'error': 'User not found'}), 404
+        return jsonify({
+            'uid': uid,
+            'email': user_data.get('email'),
+            'credits': user_data.get('credits', 0),
+            'is_admin': user_data.get('is_admin', False)
+        })
+    except Exception as e:
+        print(f"Error fetching user profile: {str(e)}")
+        return jsonify({'error': str(e)}), 500
+@app.route('/api/auth/google-signin', methods=['POST'])
+def google_signin():
+    try:
+        auth_header = request.headers.get('Authorization', '')
+        if not auth_header.startswith('Bearer '):
+            return jsonify({'error': 'Missing or invalid token'}), 401
+        token = auth_header.split(' ')[1]
+        decoded_token = auth.verify_id_token(token)  # Verify the token
+        uid = decoded_token['uid']
+        email = decoded_token.get('email')
+        # Check if user already exists in database
+        user_ref = db.reference(f'users/{uid}')
+        user_data = user_ref.get()
+        if not user_data:
+            # New user, create an entry in the database
+            user_data = {
+                'email': email,
+                'credits': 15,  # Give new users initial credits
+                'is_admin': False,
+                'created_at': datetime.utcnow().isoformat(),
+            }
+            user_ref.set(user_data)
+        return jsonify({
+            'success': True,
+            'user': {
+                'uid': uid,
+                **user_data
+            }
+        }), 200
+    except Exception as e:
+        return jsonify({'error': str(e)}), 400
 # -----------------------------------------------------------------------------