modification of code and loggger apply and changes of update from.

2026-02-18 18:00:20 +05:30
parent 0ba78a0bd1
commit 63bcbeb9a2
12 changed files with 361 additions and 138 deletions
--- a/AppCode/LoginAuth.py
+++ b/AppCode/LoginAuth.py
@@ -1,4 +1,5 @@
 from flask import Blueprint, render_template, request, redirect, url_for, flash, session
+import os
 from functools import wraps
 from ldap3 import Server, Connection, ALL
 from ldap3.core.exceptions import LDAPException
@@ -9,76 +10,51 @@ class LoginAuth:
        # Create Blueprint
        self.bp = Blueprint("auth", __name__)

-        # -------------------------------
-        # LDAP CONFIGURATION
-        # -------------------------------
-        self.LDAP_SERVER = "ldap://localhost:389"
- 
-        self.BASE_DN = "ou=users,dc=lcepl,dc=org"        # LDAP Users DN
+        # LDAP CONFIG
+        self.LDAP_SERVER = os.getenv("LDAP_SERVER", "ldap://host.docker.internal:389")
+        self.BASE_DN = "ou=users,dc=lcepl,dc=org"

-        # -------------------------------
-        # LOGIN ROUTE
-        # -------------------------------
-        # @self.bp.route('/login', methods=['GET', 'POST'])
-        # def login():
-        #     if request.method == 'POST':
-        #         username = request.form.get("username")
-        #         password = request.form.get("password")
-        #         if not username or not password:
-        #             flash("Username and password are required!", "danger")
-        #             return render_template("login.html")
-        #         user_dn = f"uid={username},{self.BASE_DN}"
-        #         server = Server(self.LDAP_SERVER, get_info=ALL)
-        #         try:
-        #             # Attempt LDAP bind
-        #             conn = Connection(server, user=user_dn, password=password, auto_bind=True)
-        #             if conn.bound:
-        #                 session['user'] = username
-        #                 flash(f"Login successful! Welcome {username}", "success")
-        #                 return redirect(url_for('welcome'))
-        #             else:
-        #                 flash("Invalid username or password!", "danger")
-        #         except LDAPException as e:
-        #             flash(f"LDAP login failed: {str(e)}", "danger")
-        #         finally:
-        #             if 'conn' in locals():
-        #                 conn.unbind()
-        #     # GET request: show login form
-        #     return render_template("login.html")
+        # Register Routes
+        self.bp.add_url_rule("/login", view_func=self.login, methods=["GET", "POST"])
+        self.bp.add_url_rule("/logout", view_func=self.logout)

+    # ================= LOGIN =================
+    def login(self):
+        if request.method == "POST":
+            username = request.form.get("username")
+            password = request.form.get("password")

-        # LOGIN ROUTE
-        @self.bp.route('/login', methods=['GET', 'POST'])
-        def login():
-            if request.method == 'POST':
-                username = request.form.get("username")
-                password = request.form.get("password")
-                # Dummy validation — REPLACE with DB check later
-                if username == "admin" and password == "admin123":
-                    session['user'] = username
-                    flash("Login successful!", "success")
-                    return redirect(url_for('welcome'))
+            if not username or not password:
+                flash("Username and password are required!", "danger")
+                return render_template("login.html")
+
+            user_dn = f"uid={username},{self.BASE_DN}"
+            server = Server(self.LDAP_SERVER, get_info=ALL)
+
+            try:
+                conn = Connection(server, user=user_dn, password=password, auto_bind=True)
+
+                if conn.bound:
+                    session["user"] = username
+                    flash(f"Login successful! Welcome {username}", "success")
+                    conn.unbind()
+                    return redirect(url_for("welcome"))
                else:
                    flash("Invalid username or password!", "danger")
-            return render_template("login.html")
-        
-        
-        # -------------------------------
-        # LOGOUT ROUTE
-        # -------------------------------
-        @self.bp.route('/logout')
-        def logout():
-            session.clear()
-            flash("Logged out successfully!", "success")
-            return redirect(url_for('auth.login'))

-    # ===================================================
-    # LOGIN REQUIRED DECORATOR INSIDE CLASS
-    # ===================================================
+            except LDAPException as e:
+                flash(f"LDAP login failed: {str(e)}", "danger")
+
+        return render_template("login.html")
+
+    # ================= LOGOUT =================
+    def logout(self):
+        session.clear()
+        flash("Logged out successfully!", "success")
+        return redirect(url_for("auth.login"))
+
+    # ================= LOGIN REQUIRED =================
    def login_required(self, f):
-        """
-        Protect routes: redirect to login if user not authenticated.
-        """
        @wraps(f)
        def wrapper(*args, **kwargs):
            if "user" not in session: