techmonger · imvickykumar999 · Feb 20, 2022 · Feb 20, 2022 · Feb 20, 2022 · Feb 20, 2022
diff --git a/Procfile b/Procfile
@@ -0,0 +1 @@
+web: gunicorn --worker-class eventlet -w 1 app:app
diff --git a/README.md b/README.md
@@ -0,0 +1,34 @@
+## Flask Simple Login without Extensions
+
+### [https://techmonger.github.io/10/flask-simple-authentication/](https://techmonger.github.io/10/flask-simple-authentication/)
+
+----------------------------------
+
+[![image](https://user-images.githubusercontent.com/50515418/155890748-ba122dba-7104-4983-88db-8770e00d828d.png)](https://vixtest.herokuapp.com/signup/)
+
+## Getting Started
+
+- Install required packages `pip -r install requirements.txt`
+- Run below command, To create new Database...
+
+```
+python
+    >>> from app import create_db
+    >>> create_db()
+```
+
+- or,  `python create_db.py`
+
+-------------------------------------------------
+
+## Run application 
+`python app.py`
+
+- Create new account  http://127.0.0.1:5000/signup
+- Login account  http://127.0.0.1:5000/login
+- 🔥 Then Send Money to other Accounts.
+
+## For Automate Login
+
+    cd vicks
+    python cracker.py
diff --git a/__pycache__/app.cpython-39.pyc b/__pycache__/app.cpython-39.pyc
diff --git a/app.py b/app.py
@@ -0,0 +1,259 @@
+"""
+Simple login mechanism implemented with Flask and Flask-Sqlalchemy
+Makes use of werkzeug.security for password hashing.
+
+1. Create new user with signup form.
+2. Authenticate user with Login form
+3. Send authorized user to home page
+
+https://techmonger.github.io/10/flask-simple-authentication/
+"""
+
+from flask import Flask, render_template, request, url_for, redirect, flash, \
+session, abort, send_from_directory
+from flask_sqlalchemy import sqlalchemy, SQLAlchemy
+from werkzeug.security import generate_password_hash, check_password_hash
+from werkzeug.utils import secure_filename
+import os
+
+# Change dbname here
+db_name = "auth.db"
+
+app = Flask(__name__)
+app.config['SQLALCHEMY_DATABASE_URI'] = f'sqlite:///{db_name}'
+app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False
+
+UPLOAD_FOLDER = 'static'
+app.config['UPLOAD_FOLDER'] = UPLOAD_FOLDER
+
+# SECRET_KEY required for session, flash and Flask Sqlalchemy to work
+app.config['SECRET_KEY'] = 'configure strong secret key here'
+
+db = SQLAlchemy(app)
+# db.create_all()
+
+class User(db.Model):
+    uid = db.Column(db.Integer, primary_key=True)
+    username = db.Column(db.String(100), unique=True, nullable=False)
+    bio = db.Column(db.String(500), nullable=True)
+    dp_url = db.Column(db.String(600), nullable=True)
+    pass_hash = db.Column(db.String(100), nullable=False)
+
+    def __repr__(self):
+        return '' % self.username
+
+
+def create_db():
+    """ # Execute this first time to create new db in current directory. """
+    db.create_all()
+
+
+@app.route('/static/<filename>')
+def send_reels(filename):
+    return send_from_directory("static", filename)
+
+
+@app.route("/signup/", methods=["GET", "POST"])
+def signup():
+    # when someone signup, set amount as 0 in firebase
+
+    """
+    Implements signup functionality. Allows username and password for new user.
+    Hashes password with salt using werkzeug.security.
+    Stores username and hashed password inside database.
+
+    Username should to be unique else raises sqlalchemy.exc.IntegrityError.
+    """
+
+    if request.method == "POST":
+        username = request.form['username'].strip()
+        password = request.form['password'].strip()
+
+        bio = request.form['bio']
+        print('=====>>> ', type(bio))
+        if bio is None:
+            bio = 'hey...'
+
+# --------------------------------------
+
+        # dp_url = request.form['dp_url'].strip()
+
+        file = request.files['files[]']        
+        filename = secure_filename(file.filename)
+        print('********--> ', (file.filename))
+
+        if filename == '':
+            loc = 'static/Profile_NULL.png'
+        else:
+            loc = os.path.join(app.config['UPLOAD_FOLDER'], filename)
+            file.save(loc)
+
+        # saving image in firebase as binary base64
+        from vicks import image_upload as fire
+        print('---------> ', loc)
+        obj = fire.Upload(username, loc)
+        obj.img2txt()
+
+# --------------------------------------
+
+        if not (username and password):
+            flash("Username or Password cannot be empty")
+            return redirect(url_for('signup'))
+        else:
+            username = username.strip()
+            password = password.strip()
+
+        # Returns salted pwd hash in format : method$salt$hashedvalue
+        hashed_pwd = generate_password_hash(password, 'sha256')
+        # print(hashed_pwd)
+
+        new_user = User(username=username, bio=bio, pass_hash=hashed_pwd, dp_url=loc)
+        db.session.add(new_user)
+
+        try:
+            db.session.commit()
+        except sqlalchemy.exc.IntegrityError:
+            flash("Username {u} is not available.".format(u=username))
+            return redirect(url_for('signup'))
+
+        flash("User account has been created.")
+        return redirect(url_for("login"))
+
+    return render_template("signup.html")
+
+
+# @app.route("/", methods=["GET", "POST"])
+@app.route("/login/", methods=["GET", "POST"])
+def login():
+    """
+    Provides login functionality by rendering login form on get request.
+    On post checks password hash from db for given input username and password.
+    If hash matches redirects authorized user to home page else redirect to
+    login page with error message.
+    """
+
+    if request.method == "POST":
+        username = request.form['username']
+        password = request.form['password']
+
+        if not (username and password):
+            flash("Username or Password cannot be empty.")
+            return redirect(url_for('login'))
+        else:
+            username = username.strip()
+            password = password.strip()
+
+        user = User.query.filter_by(username=username).first()
+
+        if user and check_password_hash(user.pass_hash, password):
+            session[username] = True
+            return redirect(url_for("user_home", username=username))
+        else:
+            flash("Invalid username or password.")
+
+            flash('''If your account has lost,
+            please signup again with same username, 
+            your money has not lost yet.''')
+
+    return render_template("login_form.html")
+
+
+@app.route("/user/<username>")
+def user_home(username):
+    """
+    Home page for validated users.
+
+    """
+    if not session.get(username):
+        abort(401)
+
+    from vicks import image_upload as fire
+    obj = fire.Bank_Account(username)
+
+    user = User.query.filter_by(username=username).first()
+    print('======>>> ', user.dp_url)
+    up_obj = fire.Upload(username, user.dp_url)
+    up_obj.txt2img()
+
+    friend_list = fire.friends().keys()
+    return render_template("user_home.html", 
+                            username=username,
+                            bio=user.bio,
+                            friend_list=friend_list,
+                            dp_url=user.dp_url,
+                            disp = obj.display()
+                            )
+
+
+@app.route("/account/<username>", methods=["GET", "POST"])
+def user_account(username):
+    """
+    Home page for validated users.
+
+    """
+    if not session.get(username):
+        abort(401)
+
+    money = float(request.form['money'])
+    from vicks import image_upload as fire
+
+    '''
+    # flower as fire
+
+    flower samjhi kya ?
+    fire hai mai... XD
+
+    (firebase chatting feature will be add soon...)
+    '''
+
+    obj = fire.Bank_Account(username)
+    pay = request.form['pay']
+    obj_pay = fire.Bank_Account(pay)
+
+    if money>0:
+        obj_pay.deposit(money)
+        disp = obj.withdraw(money)
+
+        flash(f'''
+        Paid Successfully
+        ''')
+
+    else:
+        disp = obj.display()
+        flash("Amount should NOT be Negative number.")
+
+    user = User.query.filter_by(username=username).first()
+    obj = fire.Upload(username, user.dp_url)
+    obj.txt2img()
+
+    friend_list = fire.friends().keys()
+    return render_template("user_home.html", 
+                            username=username,
+                            bio=user.bio,
+                            friend_list=friend_list,
+                            dp_url=user.dp_url,
+                            disp = disp,
+                            )
+
+
+@app.route("/logout/<username>")
+def logout(username):
+    """ Logout user and redirect to login page with success message."""
+    session.pop(username, None)
+    flash("successfully logged out.")
+    return redirect(url_for('login'))
+
+
+@app.route("/")
+def index():
+    return render_template('index.html')
+
+
+@app.errorhandler(404)
+def page_not_found(e):
+    e = 'Error 404, Page not Found'
+    return ( render_template('404.html', e=e), 404 )
+
+
+if __name__ == "__main__":
+    app.run(port=5000, debug=True)
diff --git a/auth.db b/auth.db
diff --git a/create_db.py b/create_db.py
@@ -0,0 +1,5 @@
+
+# to create `auth.db` file
+
+from app import create_db
+create_db()
diff --git a/fireson.json b/fireson.json
@@ -0,0 +1,12 @@
+{
+  "type": "service_account",
+  "project_id": "ideationology-4c639",
+  "private_key_id": "5806b97f02b35ecef648d4684bfd3436a7e114c8",
+  "private_key": "-----BEGIN PRIVATE KEY-----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\ncWvuO5yA7LjT7fbcGyPyFAQ=\n-----END PRIVATE KEY-----\n",
+  "client_email": "firebase-adminsdk-5hfwu@ideationology-4c639.iam.gserviceaccount.com",
+  "client_id": "109034743683577347554",
+  "auth_uri": "https://accounts.google.com/o/oauth2/auth",
+  "token_uri": "https://oauth2.googleapis.com/token",
+  "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
+  "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/firebase-adminsdk-5hfwu%40ideationology-4c639.iam.gserviceaccount.com"
+}
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		web: gunicorn --worker-class eventlet -w 1 app:app