72 lines
2.6 KiB
Python
Executable File
72 lines
2.6 KiB
Python
Executable File
from flask import Flask, request, jsonify, session
|
|
from flask_sqlalchemy import SQLAlchemy
|
|
from flask_bcrypt import Bcrypt
|
|
from flask_login import LoginManager, UserMixin, login_user, login_required, logout_user, current_user
|
|
|
|
app = Flask(__name__)
|
|
app.config['SECRET_KEY'] = '25de5592bf94c2ca18e27baa0ae2d4ee22a63012f32e1be719d31f530c215a387b9ec0c9d96be38e80a7ccdd859e04408facefff8fd9119e7f5a2d987d85abb7' # Troque isso!
|
|
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///users_mmpSearch.db' # O arquivo do banco
|
|
db = SQLAlchemy(app)
|
|
bcrypt = Bcrypt(app)
|
|
login_manager = LoginManager(app)
|
|
|
|
# --- Modelo do Banco de Dados ---
|
|
class User(UserMixin, db.Model):
|
|
id = db.Column(db.Integer, primary_key=True)
|
|
username = db.Column(db.String(150), unique=True, nullable=False)
|
|
password = db.Column(db.String(150), nullable=False)
|
|
|
|
# Cria o banco na primeira execução
|
|
with app.app_context():
|
|
db.create_all()
|
|
|
|
@login_manager.user_loader
|
|
def load_user(user_id):
|
|
return User.query.get(int(user_id))
|
|
|
|
# --- Rotas ---
|
|
|
|
@app.route('/api/register', methods=['POST'])
|
|
def register():
|
|
data = request.json
|
|
hashed_password = bcrypt.generate_password_hash(data['password']).decode('utf-8')
|
|
new_user = User(username=data['username'], password=hashed_password)
|
|
try:
|
|
db.session.add(new_user)
|
|
db.session.commit()
|
|
return jsonify({"message": "Usuário criado com sucesso!"}), 201
|
|
except:
|
|
return jsonify({"message": "Usuário já existe"}), 400
|
|
|
|
@app.route('/api/login', methods=['POST'])
|
|
def login():
|
|
data = request.json
|
|
user = User.query.filter_by(username=data['username']).first()
|
|
if user and bcrypt.check_password_hash(user.password, data['password']):
|
|
login_user(user)
|
|
return jsonify({"message": "Login realizado", "user": user.username}), 200
|
|
return jsonify({"message": "Credenciais inválidas"}), 401
|
|
|
|
@app.route('/api/logout', methods=['POST'])
|
|
@login_required
|
|
def logout():
|
|
logout_user()
|
|
return jsonify({"message": "Logout realizado"}), 200
|
|
|
|
@app.route('/api/check_auth', methods=['GET'])
|
|
def check_auth():
|
|
if current_user.is_authenticated:
|
|
return jsonify({"logged_in": True, "user": current_user.username})
|
|
return jsonify({"logged_in": False})
|
|
|
|
# Rota para seus uploads (exemplo de como proteger)
|
|
@app.route('/api/upload_seguro', methods=['POST'])
|
|
@login_required
|
|
def upload_seguro():
|
|
# Aqui entraria sua lógica de salvar o arquivo
|
|
# Como você já tem a lógica pronta, você pode chamar ela aqui
|
|
# ou mover o código para cá.
|
|
return jsonify({"message": f"Upload recebido de {current_user.username}"})
|
|
|
|
if __name__ == '__main__':
|
|
app.run(port=33005) |