PI Access Request form sends email, connected to firebase (#60)

Author: Fdeolive

flaskApp/.gitignore

@@ -4,3 +4,4 @@ firebase/serviceAccountKey.json
 __pycache__/
 *.pyc
 *.log
+email_credentials.py

flaskApp/app.py

@@ -4,6 +4,8 @@
 import bcrypt
 from firebase.config import Config
 from db_utils import upload_file_to_db, connect_to_database
+from flask_mail import Mail, Message
+import email_credentials
 
 app = Flask(__name__)
 app.config.from_object(Config)
@@ -22,6 +24,15 @@ def initialize_firebase():
 initialize_firebase()
 db = firestore.client()
 
+# Configure Flask-Mail email settings
+app.config['MAIL_SERVER'] = 'smtp.gmail.com'  # SMTP email server 
+app.config['MAIL_PORT'] = 587
+app.config['MAIL_USERNAME'] = email_credentials.hua_email
+app.config['MAIL_PASSWORD'] = email_credentials.hua_password
+app.config['MAIL_USE_TLS'] = True
+app.config['MAIL_USE_SSL'] = False
+mail = Mail(app)
+
 
 @app.route("/")
 def home():
@@ -50,7 +61,7 @@ def register():
                 'email': email,
                 'password': hashed_password.decode('utf-8')
             })
-            return redirect(url_for('homepage'))
+            return redirect(url_for('homepage', email=email))
 
         except Exception as e:
             flash(f"An error occurred: {str(e)}", "danger")
@@ -61,6 +72,42 @@ def register():
 def forgot_password():
     return render_template('forgot_password.html')
 
+@app.route('/pi_access_request', methods=['GET', 'POST'])
+def pi_access_request():
+    name = request.form.get('name')
+    email = request.form.get('email')
+    institution = request.form.get('institution')
+    if request.method == 'POST':
+        try:
+            # Add request to HUA firebase
+            requests_ref = db.collection('request')
+            requests_doc = requests_ref.add({"username":email})
+
+            # Send email
+            recipients = email_credentials.recipients
+
+            emailMessage = Message("Request for PI Access", sender=email,recipients=recipients)
+            emailMessage.body = f"Hello Bob and Donna,\n\n {name} is requesting admin access. {name} is from {institution} and reachable at {email}.\n\n You will find their request on the View Requests for Access page in the Heard and Understood App."
+            mail.send(emailMessage)
+            print('email sent successfully!')
+        except Exception as e:
+            print('problem sending email')
+            print(e)
+
+        return redirect(url_for('homepage'))
+    return render_template('pi_access_request.html')
+
+@app.route('/pre_approved_access_code', methods=['GET', 'POST'])
+def pre_approved_access_code():
+    access_code = request.form.get('PIAccessCode')
+    if request.method == 'POST':
+        try:
+            print(f"pre-approved code {access_code} entered")
+        except:
+            print("issue with pre-approved code")
+        return redirect(url_for('homepage'))
+    return render_template('pre_approved_access_code.html')
+
 
 @app.route('/login', methods=['GET', 'POST'])
 def login():
@@ -78,7 +125,7 @@ def login():
 
                 # Check if the password matches
                 if bcrypt.checkpw(password.encode('utf-8'), stored_hashed_password.encode('utf-8')):
-                    return redirect(url_for('homepage'))
+                    return redirect(url_for('homepage', email=email))
                 else:
                     flash("Invalid password", "danger")
                     return redirect(url_for('login'))
@@ -96,6 +143,10 @@ def login():
 def dashboard():
     return render_template("dashboard.html")
 
+@app.route("/ground_truthing")
+def ground_truthing():
+    return render_template("ground_truthing.html")
+
 @app.route("/homepage")
 def homepage():
     return render_template('home.html')
@@ -139,3 +190,4 @@ def view_files():
 
 if __name__ == "__main__":
     app.run(debug=True, host='0.0.0.0', port=5001, threaded=False)
+

flaskApp/firebase/__pycache__/config.cpython-311.pyc

@@ -17,6 +17,11 @@ <h3>Enter Access Code</h3>
             <button class="submit-btn" id="submitCode">Submit</button>
         </div>
     </div>
+    <div>
+        <div>
+            <a href="{{ url_for('pi_access_request') }}">Request PI Access</a>
+        </div>
+    </div>
 </body>
 </html>
 

flaskApp/templates/home.html

@@ -0,0 +1,65 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Bootstrap Login Form</title>
+    <!-- Bootstrap CSS -->
+    <link href="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css" rel="stylesheet">
+</head>
+<body>
+    <div class="container mt-5">
+        <div class="row justify-content-center">
+            <div class="col-md-4">
+                <h2 class="text-center">Request PI Access</h2>
+                <p>To request PI access, you must create an account 
+                    and submit a request to the administrators.</p>
+                    <p>Already have a pre-approved access code?</p> 
+                    <div class="d-flex justify-content-between mt-3">
+                        <a href="{{ url_for('pre_approved_access_code') }}">Enter PI Access Code</a></div>
+
+                <!-- Flash message for invalid credentials -->
+                {% with messages = get_flashed_messages() %}
+                    {% if messages %}
+                        <div class="alert alert-danger" role="alert">
+                            {{ messages[0] }}
+                        </div>
+                    {% endif %}
+                {% endwith %}
+
+                <form method="POST" action="/pi_access_request">
+                    <!-- Name input -->
+                    <div class="form-group">
+                        <label for="formName">Name</label>
+                        <input type="text" id="formName" name="name" class="form-control" placeholder="Enter name" required>
+                    </div>
+
+                    <!-- Email input -->
+                    <div class="form-group">
+                        <label for="formEmail">Email address</label>
+                        <input type="email" id="formEmail" name="email" class="form-control" placeholder="Enter email" required>
+                    </div>
+                    
+                    <!-- Institution input -->
+                    <div class="form-group">
+                        <label for="formInstitution">Institution</label>
+                        <input type="text" id="formInstitution" name="institution" class="form-control" placeholder="Enter Institution" required>
+                    </div>
+
+                    <!-- Submit button -->
+                    <button type="submit" class="btn btn-primary btn-block">Request PI Access</button>
+                </form>
+                <div>
+                    <p>Once reviewed, you will receive an email with your request status: access granted or denied. </p>
+                    <p>If access is granted, the next time you login you will have PI access. </p>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <!-- Bootstrap JS -->
+    <script src="https://code.jquery.com/jquery-3.3.1.slim.min.js"></script>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js"></script>
+    <script src="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js"></script>
+</body>
+</html>

flaskApp/templates/pi_access_request.html

@@ -0,0 +1,44 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Bootstrap Login Form</title>
+    <!-- Bootstrap CSS -->
+    <link href="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css" rel="stylesheet">
+</head>
+<body>
+    <div class="container mt-5">
+        <div class="row justify-content-center">
+            <div class="col-md-4">
+                <h2 class="text-center">Enter Pre-Approved Access Code</h2>
+
+                <!-- Flash message for invalid credentials -->
+                {% with messages = get_flashed_messages() %}
+                    {% if messages %}
+                        <div class="alert alert-danger" role="alert">
+                            {{ messages[0] }}
+                        </div>
+                    {% endif %}
+                {% endwith %}
+
+                <form method="POST" action="/pre_approved_access_code">
+                    <!-- PI Access Code input -->
+                    <div class="form-group">
+                        <label for="formName">PI Access Code</label>
+                        <input type="text" id="formPIAccessCode" name="PIAccessCode" class="form-control" placeholder="Enter PI Access code" required>
+                    </div>
+
+                    <!-- Submit button -->
+                    <button type="submit" class="btn btn-primary btn-block">Submit Access Code</button>
+                </form>
+            </div>
+        </div>
+    </div>
+
+    <!-- Bootstrap JS -->
+    <script src="https://code.jquery.com/jquery-3.3.1.slim.min.js"></script>
+    <script src="https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js"></script>
+    <script src="https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js"></script>
+</body>
+</html>