Add auth foundation and app DB management

2026-04-20 15:16:47 +02:00
parent 044b47c573
commit e1aad408ab
30 changed files with 1834 additions and 20 deletions
@@ -0,0 +1,64 @@
+{% extends "base.html" %}
+
+{% block title %}Admin · {{ app_name }}{% endblock %}
+
+{% block content %}
+<section class="panel">
+  <p class="eyebrow">Protected Area</p>
+  <h1>Admin</h1>
+  {% if force_password_change %}
+  <p class="lead">
+    首次登录后需要先修改密码。完成后，这里会继续作为未来配置页面的入口。
+  </p>
+
+  {% if password_change_error %}
+  <div class="alert">{{ password_change_error }}</div>
+  {% endif %}
+
+  <form class="auth-form" method="post" action="/admin/change-password">
+    <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+
+    <label>
+      <span>Current Password</span>
+      <input type="password" name="current_password" autocomplete="current-password" required>
+    </label>
+
+    <label>
+      <span>New Password</span>
+      <input type="password" name="new_password" autocomplete="new-password" required>
+    </label>
+
+    <label>
+      <span>Confirm New Password</span>
+      <input type="password" name="confirm_password" autocomplete="new-password" required>
+    </label>
+
+    <button type="submit">修改密码</button>
+  </form>
+  {% else %}
+  <p class="lead">
+    你已经登录。这个页面目前是一个受保护的空白配置占位页，后续会在这里接入配置的增删查改。
+  </p>
+
+  <dl class="meta">
+    <div>
+      <dt>当前用户</dt>
+      <dd>{{ current_username }}</dd>
+    </div>
+    <div>
+      <dt>运行环境</dt>
+      <dd>{{ app_env }}</dd>
+    </div>
+    <div>
+      <dt>下一步</dt>
+      <dd>在这里接入配置页面与更细的受保护操作。</dd>
+    </div>
+  </dl>
+  {% endif %}
+
+  <form class="logout-form" method="post" action="/logout">
+    <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+    <button type="submit">登出</button>
+  </form>
+</section>
+{% endblock %}
@@ -23,6 +23,10 @@
      <dt>OpenAPI</dt>
      <dd><a href="/docs">/docs</a></dd>
    </div>
+    <div>
+      <dt>登录</dt>
+      <dd><a href="/login">/login</a></dd>
+    </div>
    <div>
      <dt>Notion</dt>
      <dd>{{ notion_status }}</dd>
@@ -30,4 +34,3 @@
  </dl>
 </section>
 {% endblock %}
-
@@ -0,0 +1,33 @@
+{% extends "base.html" %}
+
+{% block title %}登录 · {{ app_name }}{% endblock %}
+
+{% block content %}
+<section class="panel auth-panel">
+  <p class="eyebrow">Authentication</p>
+  <h1>登录</h1>
+  <p class="lead">
+    这个页面只负责当前 Python 重构项目的基础登录能力。配置管理等页面会在后续迭代中接入。
+  </p>
+
+  {% if error_message %}
+  <div class="alert">{{ error_message }}</div>
+  {% endif %}
+
+  <form class="auth-form" method="post" action="/login">
+    <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+
+    <label>
+      <span>Username</span>
+      <input type="text" name="username" autocomplete="username" required>
+    </label>
+
+    <label>
+      <span>Password</span>
+      <input type="password" name="password" autocomplete="current-password" required>
+    </label>
+
+    <button type="submit">登录</button>
+  </form>
+</section>
+{% endblock %}