Update main.py

main.py

@@ -54,6 +54,41 @@ except Exception as e:
 bucket = storage.bucket()
 db_ref = db.reference()
 
+# --- Create Dummy Admin Account on Startup ---
+# This block ensures the specified admin user exists with the correct privileges.
+# It's designed to run safely on every application start.
+try:
+    ADMIN_EMAIL = "rairorr@gmail.com"
+    print(f"Checking for admin user: {ADMIN_EMAIL}")
+    try:
+        # 1. Check if the user exists in Firebase Auth by email. [4]
+        user = auth.get_user_by_email(ADMIN_EMAIL)
+        # 2. If user exists, ensure their DB record is correct
+        user_ref = db_ref.child(f'users/{user.uid}')
+        user_ref.update({
+            'is_admin': True,
+            'credits': 9999
+        })
+        print(f"Admin user '{ADMIN_EMAIL}' found and privileges verified.")
+    except auth.UserNotFoundError:
+        # 3. If user does not exist in Auth, create them. [8]
+        print(f"Admin user '{ADMIN_EMAIL}' not found, creating a new one.")
+        user = auth.create_user(
+            email=ADMIN_EMAIL,
+            password="neo2025"
+        )
+        # 4. Create their record in the Realtime Database
+        db_ref.child(f'users/{user.uid}').set({
+            'email': ADMIN_EMAIL,
+            'credits': 9999,
+            'is_admin': True,
+            'createdAt': datetime.utcnow().isoformat()
+        })
+        print(f"Successfully created admin user '{ADMIN_EMAIL}'.")
+except Exception as e:
+    # Catch any other exceptions during the process
+    print(f"FATAL: An error occurred during admin account setup: {e}")
+
 
 # --- Google GenAI Client Initialization (as per Streamlit app) ---
 try:
@@ -182,6 +217,46 @@ def signup():
     except Exception as e:
         return jsonify({'error': str(e)}), 400
 
+@app.route('/api/auth/social-signin', methods=['POST'])
+def social_signin():
+    """
+    Ensures a user record exists in the Realtime Database after a social login
+    (like Google Sign-In). The client should call this endpoint immediately after
+    a successful Firebase authentication on their side, sending the
+    Firebase ID Token. This creates the user's profile in our database if it's
+    their first time.
+    """
+    uid = verify_token(request.headers.get('Authorization'))
+    if not uid:
+        return jsonify({'error': 'Invalid or expired token'}), 401
+
+    user_ref = db_ref.child(f'users/{uid}')
+    user_data = user_ref.get()
+
+    if user_data:
+        # User already has a profile in our DB, return it.
+        return jsonify({'uid': uid, **user_data}), 200
+    else:
+        # This is a new user (first social login), create their profile.
+        try:
+            # Get user details from Firebase Auth service. [8]
+            firebase_user = auth.get_user(uid)
+            
+            # Create the user profile in our Realtime Database
+            new_user_data = {
+                'email': firebase_user.email,
+                'credits': 15,  # Standard starting credits
+                'is_admin': False,
+                'createdAt': datetime.utcnow().isoformat()
+            }
+            user_ref.set(new_user_data)
+            
+            # Return the newly created profile
+            return jsonify({'success': True, 'uid': uid, **new_user_data}), 201
+        except Exception as e:
+            print(f"Error creating profile for new social user {uid}: {e}")
+            return jsonify({'error': f'Failed to create user profile: {str(e)}'}), 500
+
 @app.route('/api/user/profile', methods=['GET'])
 def get_user_profile():
     uid = verify_token(request.headers.get('Authorization'))