2025-11-04 21:02:56 +01:00
|
|
|
"""
|
|
|
|
|
Flask Authentication Routes
|
|
|
|
|
Provides REST API endpoints for authentication management
|
|
|
|
|
"""
|
|
|
|
|
|
2025-11-04 21:36:31 +01:00
|
|
|
from flask import Blueprint, jsonify, request
|
2025-11-04 21:02:56 +01:00
|
|
|
import auth_manager
|
|
|
|
|
|
2025-11-04 21:36:31 +01:00
|
|
|
auth_bp = Blueprint('auth', __name__)
|
2025-11-04 21:02:56 +01:00
|
|
|
|
2025-11-04 21:36:31 +01:00
|
|
|
@auth_bp.route('/api/auth/status', methods=['GET'])
|
|
|
|
|
def auth_status():
|
|
|
|
|
"""Get current authentication status"""
|
|
|
|
|
try:
|
|
|
|
|
status = auth_manager.get_auth_status()
|
2025-11-04 21:42:38 +01:00
|
|
|
|
|
|
|
|
token = request.headers.get('Authorization', '').replace('Bearer ', '')
|
|
|
|
|
if token:
|
|
|
|
|
username = auth_manager.verify_token(token)
|
|
|
|
|
if username:
|
|
|
|
|
status['authenticated'] = True
|
|
|
|
|
|
2025-11-04 21:36:31 +01:00
|
|
|
return jsonify(status)
|
|
|
|
|
except Exception as e:
|
|
|
|
|
return jsonify({"error": str(e)}), 500
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@auth_bp.route('/api/auth/setup', methods=['POST'])
|
|
|
|
|
def auth_setup():
|
|
|
|
|
"""Set up authentication with username and password"""
|
|
|
|
|
try:
|
|
|
|
|
data = request.json
|
|
|
|
|
username = data.get('username')
|
|
|
|
|
password = data.get('password')
|
|
|
|
|
|
|
|
|
|
success, message = auth_manager.setup_auth(username, password)
|
|
|
|
|
|
|
|
|
|
if success:
|
|
|
|
|
return jsonify({"success": True, "message": message})
|
|
|
|
|
else:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": message}), 400
|
2025-11-04 21:36:31 +01:00
|
|
|
except Exception as e:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": str(e)}), 500
|
2025-11-04 21:36:31 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@auth_bp.route('/api/auth/decline', methods=['POST'])
|
|
|
|
|
def auth_decline():
|
2025-11-07 20:05:29 +01:00
|
|
|
"""Decline authentication setup"""
|
2025-11-04 21:36:31 +01:00
|
|
|
try:
|
|
|
|
|
success, message = auth_manager.decline_auth()
|
|
|
|
|
|
|
|
|
|
if success:
|
|
|
|
|
return jsonify({"success": True, "message": message})
|
|
|
|
|
else:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": message}), 400
|
2025-11-04 21:36:31 +01:00
|
|
|
except Exception as e:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": str(e)}), 500
|
2025-11-04 21:36:31 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@auth_bp.route('/api/auth/login', methods=['POST'])
|
|
|
|
|
def auth_login():
|
|
|
|
|
"""Authenticate user and return JWT token"""
|
|
|
|
|
try:
|
|
|
|
|
data = request.json
|
|
|
|
|
username = data.get('username')
|
|
|
|
|
password = data.get('password')
|
|
|
|
|
|
2025-11-07 20:05:29 +01:00
|
|
|
success, token, message = auth_manager.authenticate(username, password)
|
2025-11-04 21:36:31 +01:00
|
|
|
|
|
|
|
|
if success:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": True, "token": token, "message": message})
|
2025-11-04 21:36:31 +01:00
|
|
|
else:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": message}), 401
|
2025-11-04 21:36:31 +01:00
|
|
|
except Exception as e:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": str(e)}), 500
|
2025-11-04 21:36:31 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@auth_bp.route('/api/auth/enable', methods=['POST'])
|
|
|
|
|
def auth_enable():
|
|
|
|
|
"""Enable authentication"""
|
|
|
|
|
try:
|
|
|
|
|
success, message = auth_manager.enable_auth()
|
|
|
|
|
|
|
|
|
|
if success:
|
|
|
|
|
return jsonify({"success": True, "message": message})
|
|
|
|
|
else:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": message}), 400
|
2025-11-04 21:36:31 +01:00
|
|
|
except Exception as e:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": str(e)}), 500
|
2025-11-04 21:36:31 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@auth_bp.route('/api/auth/disable', methods=['POST'])
|
|
|
|
|
def auth_disable():
|
|
|
|
|
"""Disable authentication"""
|
|
|
|
|
try:
|
2025-11-07 19:25:36 +01:00
|
|
|
token = request.headers.get('Authorization', '').replace('Bearer ', '')
|
2025-11-07 20:05:29 +01:00
|
|
|
if not token or not auth_manager.verify_token(token):
|
|
|
|
|
return jsonify({"success": False, "message": "Unauthorized"}), 401
|
|
|
|
|
|
2025-11-04 21:36:31 +01:00
|
|
|
success, message = auth_manager.disable_auth()
|
|
|
|
|
|
|
|
|
|
if success:
|
|
|
|
|
return jsonify({"success": True, "message": message})
|
|
|
|
|
else:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": message}), 400
|
2025-11-04 21:36:31 +01:00
|
|
|
except Exception as e:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": str(e)}), 500
|
2025-11-04 21:36:31 +01:00
|
|
|
|
|
|
|
|
|
|
|
|
|
@auth_bp.route('/api/auth/change-password', methods=['POST'])
|
|
|
|
|
def auth_change_password():
|
|
|
|
|
"""Change authentication password"""
|
|
|
|
|
try:
|
|
|
|
|
data = request.json
|
2025-11-07 20:05:29 +01:00
|
|
|
old_password = data.get('old_password')
|
2025-11-04 21:36:31 +01:00
|
|
|
new_password = data.get('new_password')
|
|
|
|
|
|
2025-11-07 20:05:29 +01:00
|
|
|
success, message = auth_manager.change_password(old_password, new_password)
|
2025-11-07 19:25:36 +01:00
|
|
|
|
2025-11-07 20:05:29 +01:00
|
|
|
if success:
|
|
|
|
|
return jsonify({"success": True, "message": message})
|
|
|
|
|
else:
|
|
|
|
|
return jsonify({"success": False, "message": message}), 400
|
|
|
|
|
except Exception as e:
|
|
|
|
|
return jsonify({"success": False, "message": str(e)}), 500
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
@auth_bp.route('/api/auth/skip', methods=['POST'])
|
|
|
|
|
def auth_skip():
|
|
|
|
|
"""Skip authentication setup (same as decline)"""
|
|
|
|
|
try:
|
|
|
|
|
success, message = auth_manager.decline_auth()
|
2025-11-04 21:36:31 +01:00
|
|
|
|
|
|
|
|
if success:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": True, "message": message})
|
2025-11-04 21:36:31 +01:00
|
|
|
else:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": message}), 400
|
2025-11-04 21:36:31 +01:00
|
|
|
except Exception as e:
|
2025-11-07 20:05:29 +01:00
|
|
|
return jsonify({"success": False, "message": str(e)}), 500
|
