KTVManager_Backend/ktvmanager/lib/auth.py

from functools import wraps
from flask import request, jsonify, Blueprint, make_response
from ktvmanager.lib.get_users import get_users

auth_blueprint = Blueprint("auth", __name__)

def check_auth(username, password):
    users = get_users()
    for user in users:
        if user['userName'] == username and user['password'] == password:
            return True
    return False

def requires_basic_auth(f):
    @wraps(f)
    def decorated(*args, **kwargs):
        auth = request.authorization
        if not auth or not check_auth(auth.username, auth.password):
            return jsonify({"message": "Could not verify"}), 401, {'WWW-Authenticate': 'Basic realm="Login Required"'}
        return f(auth.username,auth.password, *args, **kwargs)
    return decorated

def check_login(username, password):
    users = get_users()
    for user in users:
        if user['userName'] == username and user['password'] == password:
            response = make_response(jsonify({"auth": "Success"}))
            user_id = str(user.get('id'))
            if user_id:
                response.set_cookie(
                    'user',
                    user_id,
                    domain='tv-ui.k-world.me.uk',
                    path='/',
                    samesite=None
                )
            return response
    return jsonify({"auth": "Fail"})
feat(app): restructure as a modern Flask API This commit refactors the entire backend application into a more structured and maintainable Flask project. It introduces an application factory pattern, consolidates routes into a blueprint, and implements a robust authentication and database layer. - Introduces a Flask application factory (`create_app` in `main.py`) for better organization and testability. - Consolidates all API routes into a single blueprint (`routes/api.py`) for modularity. - Implements a new basic authentication system using a decorator (`@requires_basic_auth`) to secure all endpoints. - Refactors the database access layer with standardized query execution and connection handling. - Adds new modules for core logic, including an account checker (`checker.py`) and user retrieval (`get_users.py`). - Updates the VSCode launch configuration to support the new Flask application structure. BREAKING CHANGE: The application has been completely restructured. The old `server.py` entry point is removed. The application should now be run via the app factory in `main.py`. All API endpoints now require basic authentication. 2025-07-13 19:40:04 +01:00			`from functools import wraps`
working auth 2025-07-15 09:54:01 +01:00			`from flask import request, jsonify, Blueprint, make_response`
feat(app): restructure as a modern Flask API This commit refactors the entire backend application into a more structured and maintainable Flask project. It introduces an application factory pattern, consolidates routes into a blueprint, and implements a robust authentication and database layer. - Introduces a Flask application factory (`create_app` in `main.py`) for better organization and testability. - Consolidates all API routes into a single blueprint (`routes/api.py`) for modularity. - Implements a new basic authentication system using a decorator (`@requires_basic_auth`) to secure all endpoints. - Refactors the database access layer with standardized query execution and connection handling. - Adds new modules for core logic, including an account checker (`checker.py`) and user retrieval (`get_users.py`). - Updates the VSCode launch configuration to support the new Flask application structure. BREAKING CHANGE: The application has been completely restructured. The old `server.py` entry point is removed. The application should now be run via the app factory in `main.py`. All API endpoints now require basic authentication. 2025-07-13 19:40:04 +01:00			`from ktvmanager.lib.get_users import get_users`

			`auth_blueprint = Blueprint("auth", __name__)`

			`def check_auth(username, password):`
			`users = get_users()`
working auth 2025-07-15 09:54:01 +01:00			`for user in users:`
			`if user['userName'] == username and user['password'] == password:`
			`return True`
			`return False`
feat(app): restructure as a modern Flask API This commit refactors the entire backend application into a more structured and maintainable Flask project. It introduces an application factory pattern, consolidates routes into a blueprint, and implements a robust authentication and database layer. - Introduces a Flask application factory (`create_app` in `main.py`) for better organization and testability. - Consolidates all API routes into a single blueprint (`routes/api.py`) for modularity. - Implements a new basic authentication system using a decorator (`@requires_basic_auth`) to secure all endpoints. - Refactors the database access layer with standardized query execution and connection handling. - Adds new modules for core logic, including an account checker (`checker.py`) and user retrieval (`get_users.py`). - Updates the VSCode launch configuration to support the new Flask application structure. BREAKING CHANGE: The application has been completely restructured. The old `server.py` entry point is removed. The application should now be run via the app factory in `main.py`. All API endpoints now require basic authentication. 2025-07-13 19:40:04 +01:00
			`def requires_basic_auth(f):`
			`@wraps(f)`
			`def decorated(args, *kwargs):`
			`auth = request.authorization`
			`if not auth or not check_auth(auth.username, auth.password):`
			`return jsonify({"message": "Could not verify"}), 401, {'WWW-Authenticate': 'Basic realm="Login Required"'}`
fix login 2025-07-15 09:28:47 +01:00			`return f(auth.username,auth.password, args, *kwargs)`
feat(app): restructure as a modern Flask API This commit refactors the entire backend application into a more structured and maintainable Flask project. It introduces an application factory pattern, consolidates routes into a blueprint, and implements a robust authentication and database layer. - Introduces a Flask application factory (`create_app` in `main.py`) for better organization and testability. - Consolidates all API routes into a single blueprint (`routes/api.py`) for modularity. - Implements a new basic authentication system using a decorator (`@requires_basic_auth`) to secure all endpoints. - Refactors the database access layer with standardized query execution and connection handling. - Adds new modules for core logic, including an account checker (`checker.py`) and user retrieval (`get_users.py`). - Updates the VSCode launch configuration to support the new Flask application structure. BREAKING CHANGE: The application has been completely restructured. The old `server.py` entry point is removed. The application should now be run via the app factory in `main.py`. All API endpoints now require basic authentication. 2025-07-13 19:40:04 +01:00			`return decorated`
fix login 2025-07-15 09:28:47 +01:00
			`def check_login(username, password):`
			`users = get_users()`
working auth 2025-07-15 09:54:01 +01:00			`for user in users:`
			`if user['userName'] == username and user['password'] == password:`
			`response = make_response(jsonify({"auth": "Success"}))`
			`user_id = str(user.get('id'))`
			`if user_id:`
			`response.set_cookie(`
			`'user',`
			`user_id,`
			`domain='tv-ui.k-world.me.uk',`
			`path='/',`
			`samesite=None`
			`)`
			`return response`
			`return jsonify({"auth": "Fail"})`