o g~@s ddlmZmZmZmZmZmZmZmZddl m Z m Z m Z ddl mZddlmZddlmZmZddlmZddlmZddlmZmZmZmZmZmZmZm Z m!Z!dd l"m#Z#dd l$m%Z%m&Z&m'Z'dd l(m)Z)dd l*m+Z+m,Z,m-Z-m.Z.m/Z/dd l0m0Z0m1Z1ddl2m3Z3m4Z4m5Z5ddl6Z6ddl7Z7ddl8Z8ddl9Z9ddl:Z:ddl;me7?e>Z@Wdn1swYde@dde@dde@dde@dZAeeAddddddZBe%ddeBd ZCe#ZDGd!d"d"eDZEGd#d$d$eDZFGd%d&d&eDZGeDjHjIeBd'Gd(d)d)e3ZJGd*d+d+eJZKGd,d-d-e3ZLGd.d/d/eJZMGd0d1d1e3ZNGd2d3d3e3ZOGd4d5d5e3ZPGd6d7d7ePZQGd8d9d9ePZRGd:d;d;e3ZSGdd?d?eSZUeeZdZUeed<eed<dZeeed<dZeeed<dS)UserBaserXrYNr[r\) rSrTrUstr__annotations__r)r[r!r\rbrbrbrcrsVs rsc@eZdZUeed<eed<dS) UserCreaterZconfirm_passwordNrSrTrUrtrurbrbrbrcrw\  rwc@rv) UserLoginrXrZNryrbrbrbrcr{`rzr{c@s4eZdZUeed<eed<eed<GdddZdS) UserResponserWr]r_c@eZdZdZdS)zUserResponse.ConfigTNrSrTrUfrom_attributesrbrbrbrcConfigirN)rSrTrUintrurtr&rrbrbrbrcr|ds r|c@s&eZdZUeed<eed<eed<dS) TokenDatarXrqr]N)rSrTrUrtrurrbrbrbrcrls  rc@rv)Token access_token token_typeNryrbrbrbrcrqrzrc@s.eZdZUeed<eed<dZeeed<dS) BlogPostBaserhriNrk)rSrTrUrtrurkr!rbrbrbrcrus rc@ eZdZdS)BlogPostCreateNrSrTrUrbrbrbrcrzrc@<eZdZUeed<eed<eed<eed<GdddZdS)BlogPostResponserWrjr_rlc@r})zBlogPostResponse.ConfigTNr~rbrbrbrcrrrNrSrTrUrrur&rrbrbrbrcr} rc@s2eZdZUeed<dZeed<eeefed<dS)QuestionnaireBaserhrmrrrN)rSrTrUrtrurr#r$rbrbrbrcrs  rc@r)QuestionnaireCreateNrrbrbrbrcrrrc@r)QuestionnaireResponserWrqr_rlc@r})zQuestionnaireResponse.ConfigTNr~rbrbrbrcrrrNrrbrbrbrcrrrbcryptauto)schemes deprecated SECRET_KEYHS256<c csd}d}d}||kr_z t}|dWnItyZ}z9|r#|||dkrEtd|d|dd|dd d |d7}tdn td |d d d WYd}~nd}~ww||ks z[z|VWnJty}z>td |d d t|trdt|vsdt|vsdt|vsdt|vrtdd d |t}|VnWYd}~nd}~wwW|r|dSdS|r|ww)NrzSELECT 1zDatabase connection error: z. Retrying... (r1)Tflushz(Failed to connect to the database after z attemptszDatabase operation error: 20132006zMySQL server has gone awayzLost connectionz1MySQL connection lost. Attempting to reconnect...) SessionLocalexecute Exceptioncloseprinttimesleep isinstancert)db max_retries retry_counterbrbrcget_dbsZ  $            rcCs t||SN) pwd_contextverify)plain_passwordhashed_passwordrbrbrcverify_passwords rcCs t|Sr)rhash)rZrbrbrcget_password_hash rrr expires_deltacCsN|}|r t|}n tttd}|d|itj|tt d}|S)Nminutesexp) algorithm) copyr&utcnowr'ACCESS_TOKEN_EXPIRE_MINUTESupdatejwtencoder ALGORITHM)rrr to_encodeexpire encoded_jwtrbrbrccreate_access_tokensrtoken)tokenUrlrequestcs|jd}|r|dr|dd}tddd|S|jd}|r,tddd|S|jd }|rzPasswords do not match)rerrorr^z Username or email already exists)rXrYrZr[r\z/login?success=registrationi/)urlr)rrr&r^rr=rrXrYrraddcommitr ) rrXrYrZrxr[r\r existing_userrnew_userrbrbrcregister2s6    rGz/loginsuccesscs*d}|dkr d}td||tdS)N registrationz+Registration successful! You can now login.zauth/login.html)rmessager^r?)rrHrJrbrbrc login_form]srKz/client/dashboardc srtdddtd|jdd|ttj|jk}tdt|dt d|||t |j jdS) NzClient dashboard accessedTrz#Client dashboard accessed by user: zFound z questionnaires for userclient/dashboard.htmlrrarRr^r)rrXrrQrrqrWrlenrrr&r^rrrrrrarbrbrcclient_dashboardis$   rPz/client/questionnairecs td||t|jjdS)Nclient/questionnaire.html)rrRr^r)rrr&r^rrrrrbrbrcquestionnaire_formsrSz/client/questionnaire/savec s|IdH}t|}|ddtd}|dd}t|}|d}|rT|t  t j t |kt j |j k} | sJtddd id S|| _|| _|| _nt |j |||d } || ||| d d | j dS)NrhzQuestionnaire z%Y-%m-%drrmquestionnaire_idr)rAQuestionnaire not found)rri)rqrhrrrTz Questionnaire saved successfully)rHrJrT)formdictrr&r^strftimejsondumpsrrQrrWrrqrr rhrrrrCrDrefresh) rrrr+rrrhr json_datarT questionnairerbrbrcsave_questionnairesF        r^z(/client/questionnaire/{questionnaire_id}rTc sV|ttj|ktj|jk}|stdddtd|||t |j j dS)Nr)rUrrQ)rr]rRr^r) rrQrrWrqrrrrr&r^rr)rrTrrr]rbrbrcload_questionnaires$   r_z/admin/dashboardc s|ttjdk}|t}|t}|ttjtj ttj dk tj d}td||||||t|jjdS)NrFrnadmin/dashboard.html)rrR user_count post_countquestionnaire_countrecent_submissionsr^r)rr=rr]countrMrQr[r\rrrr_rrrrrr&r^rr)rrrrbrcrdrerbrbrcadmin_dashboards0 rgz/admin/blog/newadmin_blog_post_new)r rJcsN|r|jdkr tddS|ttjddg}td|||dS)'Admin page for creating new blog posts.rG /auth/loginrBadvisoradmin/admin_blog_post_new.html)rrRauthors) r]r rr=rin_rrrrrrrnrbrbrcrhs  z/admin/questionnairesadmin_questionnairescsJ|r|jdkr tddS|ttjtjt}t d|||dS)'Admin page for managing questionnaires.rGrjrkadmin/questionnaires.html)rrRra) r]r rrQr=r[r\rrrrrOrbrbrcrqs   z /admin/users admin_userscs<|r|jdkr tddS|t}td|||dS)Admin page for managing users.rGrjrkadmin/users.html)rrRr>)r]r rr=rrrrrrr>rbrbrcrt$s z/admin/users/newadmin_user_newcs,|r|jdkr tddStd||dS)#Admin page for creating a new user.rGrjrkadmin/user-form.html)rrRr]r rrrRrbrbrcrx6s z/admin/users/{user_id}admin_user_viewrqcX|r|jdkr tddS|ttj|k}|s"tdddt d|||dS) 'Admin page for viewing a specific user.rGrjrkr)User not foundradmin/user-view.html)rrR viewed_user r]r rr=rrWrrrrrqrrrrRrbrbrcr|E  z/admin/users/{user_id}/editadmin_user_editcr}) Admin page for editing a user.rGrjrkr)rrrz)rrrRrrrbrbrcr\rz /debug/authc sft|j}td|dd|dd}td|ddd}|dr+|dd }d|v||du|d }|rz[tj|tt gd }d|d <|d |d|d|dd|d<|dt t |drx|dt t nd|dr|dt t kndd|d<W|Sty}zd|d <t||d<WYd}~|Sd}~ww|S)z.Debug endpoint to check authentication headerszDEBUG AUTH - Request headers: Trrz Not foundz#DEBUG AUTH - Authorization header: Nrr)auth_header_exists auth_headertoken_extracted all_headersr token_validrrqr]r)rrqr]r token_payload) exp_timestampcurrent_timestampexpires_in_seconds is_expiredtoken_expirationF token_error)rWrrrrrrrrrrr&r^ timestamprrt)rrrrresultrrrbrbrc debug_authsF     &&  rz/client/templates/dashboardc s6tdtd|gddddtddd gd S) zGDebug endpoint that renders the client dashboard without authenticationz6Accessing client dashboard template directly (no auth)rL debug_userDebugr=)rXr[r\z+This is a debug view without authenticationwarningrrM)rrrr&r^rrbrbrcclient_templates_dashboards  rz/admin/blog-postsadmin_blog_postsc sh|r|jdkr tddS|tjtjtjtjtjt j t j  t  tj}td|||dS)#Admin page for managing blog posts.rGrjrkadmin/blog-posts.html)rrRr)r]r rrMrWrhrirkr_r=r[r\rrrrrrrrrrrbrbrcrs   z /admin/blog-posts/{post_id}/editadmin_blog_post_editcsz|r|jdkr tddS|ttj|k}|s"tddd|ttj ddg }t d||||d S) #Admin page for editing a blog post.rGrjrkr)Blog post not foundrrladmin/blog-editor.html)rrRrrn) r]r rrMrrWrrr=rorrrr(rrrrrnrbrbrcrs   z'/admin/questionnaire/{questionnaire_id}admin_questionnaire_viewcj|r|jdkr tddS|ttjtjttj |k }|s)t dddt d||||jdS) 0Admin page for viewing a specific questionnaire.rGrjrkr)rUradmin/questionnaire-view.htmlrrRr]rrr]r rrQr=r[r\rrrWrrrrrrrTrrrr]rbrbrcr$   z./admin/questionnaire/{questionnaire_id}/reviewadmin_questionnaire_reviewcr) CAdmin page for reviewing and providing feedback on a questionnaire.rGrjrkr)rUradmin/questionnaire-review.htmlrrrrbrbrcr7rz/admin/analyticsadmin_analyticsc s|r|jdkr tddSdddddd d d d }d dddddddddddddddg}ddddddd d!d"d#d$dd%d&d'd(d)dg}td*|||||d+S),Admin analytics dashboard.rGrjrk-)@皙 @ffffff.@4@ new_usersuser_growth_trendrdquestionnaire_trend page_viewspage_views_trend blog_viewsblog_views_trendr12m 15srBviewsavg_timer%E3m 45sr!2m 30sr#1m 30sRetirement Planning Basics 5m 20s Apr 15, 2023rhrcomments avg_read_time published_at#Investment Strategies for Beginners4m 45s May 2, 2023Tax Planning Tipsn3m 30s Jun 10, 2023admin/analytics.html)rrRstats popular_pagestop_blog_postsr{rrrrrrbrbrcrQs<    z./admin/questionnaire/{questionnaire_id}/reportadmin_generate_reportcsb|r|jdkr tddS|tttj|k}|s%t dddt d||||j dS) DAdmin page for generating a financial report based on questionnaire.rGrjrkr)rUradmin/report-generator.htmlr) r]r rrQrr=rrWrrrrrrrrbrbrcr|s   z/adminc s|r|jdkr tddS|t}|t}|t}|ttjdk}|tt ttjdk tj  d}|t tj  d}td||||||||td S)zAdmin dashboard page.rGrjrkrnr`ra) rrRrbrdrcpending_review_countre recent_usersr^)r]r rr=rfrQrMrrrrrlrrrr_rrr&r^) rrrrbrdrcrrerrbrbrcrgs4  csN|r|jdkr tddS|tttj}t d|||t dS)rurGrjrkrv)rrRr>r^) r]r rr=options joinedloadrarrrr&r^rwrbrbrcrts   csj|r|jdkr tddS|tttjtj|k }|s(t dddt d|||t dS) r~rGrjrkr)rrr)rrRrr^)r]r rr=rrrarrWrrrrr&r^)rqrrrrrbrbrcr|s$   cs^|r|jdkr tddS|ttj|k}|s"tdddt d|||t dS) rrGrjrkr)rrrz)rrrRr^) r]r rr=rrWrrrrr&r^rrbrbrcrs  cs2|r|jdkr tddStd||tdS)ryrGrjrkrz)rrRr^r]r rrr&r^rRrbrbrcrxs cZ|r|jdkr tddS|tttjtj  }t d|||t dS)rrGrjrkr)rrRrr^)r]r rrMrrrNrr_rrrrr&r^rrbrbrcr   c s|r|jdkr tddS|ttj|k}|s"tddd|tt tjdktjdk }t d||||t d S) rrGrjrkr)rrrlr)rrRrrnr^)r]r rrMrrWrrr=or_rrrr&r^rrbrbrcr)s   &csZ|r|jdkr tddS|tttjdktjdk}td|||t dS)rirGrjrkrlrm)rrRrnr^) r]r rr=rrrrrr&r^rprbrbrcrhFs &cr)rrrGrjrkrs)rrRrar^)r]r rrQrrrRrrlrrrrr&r^rOrbrbrcrqZrc n|r|jdkr tddS|tttjtj|k }|s(t dddt d||||j tdS) rrGrjrkr)rUrrrrRr]rrr^r]r rrQrrrRrrWrrrrrrr&r^rrbrbrcrp&   c r) rrGrjrkr)rUrrrrrrbrbrcrrc s|r|jdkr tddSdddddd d d d }d dddddddddddddddg}ddddddd d!d"d#d$dd%d&d'd(d)dg}td*|||||td+S),rrGrjrkrrrrrrrrrr1rrrr%rrr!rrr#rrrrrrrrrrrrrrrrrrr)rrRrrrr^rrrbrbrcrs>    c r) rrGrjrkr)rUrrrrrrbrbrcrr__main__zapp:appz0.0.0.0i@)hostportreloadrr)fastapirrrrrrrr fastapi.responsesr r r fastapi.staticfilesr fastapi.templatingrfastapi.securityrrstarlette.middleware.sessionsrstarlette.middleware.baser sqlalchemyrrrrrrrrrsqlalchemy.ext.declarativersqlalchemy.ormrrrsqlalchemy.sqlr typingr!r"r#r$r%r&r'pydanticr(r)r*ryamlr8rYrpasslib.contextr+openf safe_load db_config DATABASE_URLenginerBaser=rMrQmetadata create_allrsrwr{r|rrrrrrrrrr9rurandomhexrrrrrrrWr oauth2_schemerrtrrappadd_middlewarermountrr middlewarer r rrr"r$r'rrr=r@rGrKrPrSr^r_rgrhrqrtrxr|rrrrrrrrrrSuvicornrunrbrbrbrcs(    ,     ,   ,    5  !        %  *    1  &&&    T ,&      *  &#&    &  &&    +