fix: session cookie secure false + full prenorm + Supabase hash

app.py

@@ -1,83 +1,56 @@
-# app.py — PapuaTranslate (Flask 3 + SQLAlchemy + Supabase + mT5-LoRA + prenorm)
+# app.py — PapuaTranslate (HuggingFace Spaces + Supabase + mT5-LoRA + prenorm)
+
 import os, re, logging, threading
 from datetime import datetime, timezone
 from functools import wraps
-
 from flask import (
     Flask, render_template, request, redirect, url_for,
     session, jsonify, flash
 )
+from werkzeug.security import generate_password_hash, check_password_hash
 
 logging.basicConfig(level=logging.INFO, format="%(asctime)s | %(levelname)s | %(message)s")
-log = logging.getLogger("papua-app")
+log = logging.getLogger("papuatranslate")
 
+# ================= APP CONFIG =================
 app = Flask(__name__, template_folder="frontend", static_folder="static")
-app.config["SECRET_KEY"] = os.getenv("SECRET_KEY", "dev-secret-change-me")
-# cookie settings — aman untuk Spaces
+app.config["SECRET_KEY"] = os.getenv("SECRET_KEY", "dev-secret-key")
 app.config["SESSION_COOKIE_SAMESITE"] = "Lax"
-app.config["SESSION_COOKIE_SECURE"] = True  # Spaces via HTTPS → kirim cookie
+app.config["SESSION_COOKIE_SECURE"] = False  # penting di Spaces biar cookie disimpan
+app.config["PERMANENT_SESSION_LIFETIME"] = 3600 * 24
 
-# ================= DB =================
+# ================= DATABASE =================
 from sqlalchemy import create_engine, Column, Integer, Text, DateTime, ForeignKey, func
 from sqlalchemy.orm import declarative_base, sessionmaker, scoped_session, relationship
 
-DATABASE_URL = os.getenv("DATABASE_URL") or os.getenv("DB_URL") or "sqlite:////tmp/app.db"
-if DATABASE_URL.startswith("postgresql") and "sslmode=" not in DATABASE_URL:
-    DATABASE_URL += ("&" if "?" in DATABASE_URL else "?") + "sslmode=require"
+DATABASE_URL = os.getenv("DATABASE_URL", "sqlite:///local.db")
+if DATABASE_URL.startswith("postgresql") and "sslmode" not in DATABASE_URL:
+    DATABASE_URL += "?sslmode=require"
 
 engine = create_engine(DATABASE_URL, pool_pre_ping=True)
-SessionLocal = scoped_session(sessionmaker(bind=engine, autoflush=False, autocommit=False))
+SessionLocal = scoped_session(sessionmaker(bind=engine))
 Base = declarative_base()
 
 class User(Base):
     __tablename__ = "users"
     id         = Column(Integer, primary_key=True)
     email      = Column(Text, unique=True, nullable=False)
-    # DUA kolom agar kompatibel dengan skema lamamu
-    pass_hash  = Column(Text, nullable=True)   # kolom baru (target utama)
-    password   = Column(Text, nullable=True)   # kolom lama (legacy)
+    pass_hash  = Column(Text, nullable=True)
+    password   = Column(Text, nullable=True)
     created_at = Column(DateTime(timezone=True), server_default=func.now())
 
 class Translation(Base):
     __tablename__ = "translations"
     id         = Column(Integer, primary_key=True)
-    user_id    = Column(Integer, ForeignKey("users.id"), nullable=False)
-    src        = Column(Text, nullable=False)
-    mt         = Column(Text, nullable=False)
+    user_id    = Column(Integer, ForeignKey("users.id"))
+    src        = Column(Text)
+    mt         = Column(Text)
     created_at = Column(DateTime(timezone=True), server_default=func.now())
-    user       = relationship("User")
-
-try:
-    Base.metadata.create_all(engine)
-    log.info("[DB] Ready: %s", DATABASE_URL)
-except Exception as e:
-    log.exception("[DB] init error: %s", e)
-
-# ================= Auth =================
-from werkzeug.security import generate_password_hash, check_password_hash
-
-def _set_hash_fields(u: User, raw: str):
-    h = generate_password_hash(raw)
-    u.pass_hash = h
-    u.password  = h  # isi juga kolom lama supaya tidak NULL
-
-def _get_hash(u: User) -> str | None:
-    # utamakan pass_hash, fallback ke password
-    return u.pass_hash or u.password
 
-def _verify(u: User, raw: str) -> bool:
-    h = _get_hash(u)
-    return check_password_hash(h, raw) if h else False
-
-def login_required(fn):
-    @wraps(fn)
-    def wrap(*a, **kw):
-        if not session.get("uid"):
-            return redirect(url_for("login_get"))
-        return fn(*a, **kw)
-    return wrap
+Base.metadata.create_all(engine)
+log.info("[DB] Ready: %s", DATABASE_URL)
 
-# ================= Prenorm =================
+# ================= PRENORM =================
 PAPUA_MAP = {
     r"\bsa\b": "saya",
     r"\bko\b": "kamu",
@@ -89,77 +62,71 @@ PAPUA_MAP = {
     r"\bkong\b": "kemudian",
 }
 def prenorm(t: str) -> str:
-    t = t.strip()
-    t = re.sub(r"\s+", " ", t)
-    for pat, repl in PAPUA_MAP.items():
-        t = re.sub(pat, repl, t, flags=re.IGNORECASE)
+    t = re.sub(r"\s+", " ", t.strip())
+    for pat, rep in PAPUA_MAP.items():
+        t = re.sub(pat, rep, t, flags=re.IGNORECASE)
     return t
 
-# ================= Model (lazy LoRA) =================
+# ================= AUTH UTILS =================
+def _set_hash(user: User, raw_pwd: str):
+    h = generate_password_hash(raw_pwd)
+    user.pass_hash = h
+    user.password = h
+
+def _verify(user: User, raw_pwd: str) -> bool:
+    return check_password_hash(user.pass_hash or user.password, raw_pwd)
+
+def login_required(f):
+    @wraps(f)
+    def decorated(*args, **kwargs):
+        if not session.get("uid"):
+            return redirect(url_for("login_get"))
+        return f(*args, **kwargs)
+    return decorated
+
+# ================= MODEL (lazy-load) =================
 from transformers import AutoTokenizer, AutoModelForSeq2SeqLM
 from peft import PeftModel
 
 BASE_MODEL_ID = os.getenv("BASE_MODEL_ID", "amosnbn/cendol-mt5-base-inst")
-ADAPTER_ID    = os.getenv("ADAPTER_ID", "amosnbn/papua-lora-ckpt-168")
-DEVICE        = os.getenv("DEVICE", "cpu")
-TOK = None
-MODEL = None
-_LOCK = threading.Lock()
-
-def _load_model():
-    global TOK, MODEL
-    log.info("[MODEL] loading base=%s adapter=%s", BASE_MODEL_ID, ADAPTER_ID)
-    TOK = AutoTokenizer.from_pretrained(BASE_MODEL_ID)
-    base = AutoModelForSeq2SeqLM.from_pretrained(BASE_MODEL_ID)
-    MODEL = PeftModel.from_pretrained(base, ADAPTER_ID)
-    MODEL.eval()
-    if DEVICE == "cpu":
-        MODEL.to("cpu")
-    log.info("[MODEL] ready")
+ADAPTER_ID = os.getenv("ADAPTER_ID", "amosnbn/papua-lora-ckpt-168")
+DEVICE = os.getenv("DEVICE", "cpu")
+_tok, _model, _lock = None, None, threading.Lock()
 
 def get_model():
-    global MODEL
-    if MODEL is None:
-        with _LOCK:
-            if MODEL is None:
-                _load_model()
-    return TOK, MODEL
-
-def translate_core(text: str, max_new: int = 48) -> str:
-    tok, m = get_model()
-    inp = tok([text], return_tensors="pt")
-    out = m.generate(
-        **inp,
-        max_new_tokens=max_new,
-        num_beams=4,
-        length_penalty=0.9,
-        no_repeat_ngram_size=3,
-        early_stopping=True,
-    )
-    return tok.decode(out[0], skip_special_tokens=True)
-
-# ================ Utils & Hooks ================
+    global _tok, _model
+    if _model is None:
+        with _lock:
+            if _model is None:
+                log.info("[MODEL] Loading base=%s adapter=%s", BASE_MODEL_ID, ADAPTER_ID)
+                _tok = AutoTokenizer.from_pretrained(BASE_MODEL_ID)
+                base = AutoModelForSeq2SeqLM.from_pretrained(BASE_MODEL_ID)
+                _model = PeftModel.from_pretrained(base, ADAPTER_ID)
+                _model.eval()
+                if DEVICE == "cpu": _model.to("cpu")
+                log.info("[MODEL] Loaded successfully")
+    return _tok, _model
+
+def translate_mt(text: str, max_new=48) -> str:
+    tok, model = get_model()
+    inputs = tok([text], return_tensors="pt")
+    output = model.generate(**inputs, max_new_tokens=max_new, num_beams=4)
+    return tok.decode(output[0], skip_special_tokens=True)
+
+# ================= ROUTES =================
 @app.before_request
-def _log_req():
-    p = request.path
-    if p not in ("/health", "/ping", "/favicon.ico"):
-        log.info("[REQ] %s %s", request.method, p)
-
-@app.get("/health")
-@app.get("/ping")
-def health():
-    return jsonify(ok=True, time=datetime.now(timezone.utc).isoformat())
+def _req():
+    log.info("[REQ] %s %s", request.method, request.path)
 
-@app.get("/debug/session")
-def debug_session():
-    return jsonify({
-        "uid": session.get("uid"),
-        "email": session.get("email"),
-        "cookie_secure": app.config["SESSION_COOKIE_SECURE"],
-        "cookie_samesite": app.config["SESSION_COOKIE_SAMESITE"],
-    })
+@app.get("/")
+@login_required
+def index():
+    with SessionLocal() as s:
+        uid = session["uid"]
+        hist = s.query(Translation).filter(Translation.user_id == uid).all()
+        data = [{"src": h.src, "mt": h.mt} for h in hist]
+    return render_template("index.html", user=session.get("email"), data=data)
 
-# ================ Auth routes ================
 @app.get("/login")
 def login_get():
     return render_template("login.html")
@@ -167,18 +134,20 @@ def login_get():
 @app.post("/login")
 def login_post():
     email = (request.form.get("email") or "").strip().lower()
-    pwd   = request.form.get("password") or request.form.get("pass") or ""
-    log.info("[AUTH] login attempt email=%s len(pwd)=%d", email, len(pwd))
+    pwd   = request.form.get("password") or ""
+    log.info("[AUTH] login attempt %s", email)
     if not email or not pwd:
-        flash("Isi email dan password", "error")
+        flash("Email atau password kosong", "error")
         return redirect(url_for("login_get"))
+
     with SessionLocal() as s:
         u = s.query(User).filter_by(email=email).first()
         if not u or not _verify(u, pwd):
-            flash("Email atau password salah", "error")
+            flash("Email/password salah", "error")
             return redirect(url_for("login_get"))
         session["uid"] = u.id
         session["email"] = u.email
+        log.info("[AUTH] Login OK uid=%s", u.id)
     return redirect(url_for("index"))
 
 @app.get("/register")
@@ -187,24 +156,22 @@ def register_get():
 
 @app.post("/register")
 def register_post():
-    # TERIMA beberapa kemungkinan nama field agar match file HTML-mu
     email = (request.form.get("email") or "").strip().lower()
-    pwd   = (request.form.get("password") or request.form.get("pass") or "").strip()
-    log.info("[AUTH] register email=%s len(pwd)=%d", email, len(pwd))
+    pwd   = request.form.get("password") or ""
+    log.info("[AUTH] register %s", email)
     if not email or not pwd:
-        flash("Isi email dan password", "error")
+        flash("Lengkapi data", "error")
         return redirect(url_for("register_get"))
+
     with SessionLocal() as s:
         if s.query(User).filter_by(email=email).first():
             flash("Email sudah terdaftar", "error")
             return redirect(url_for("login_get"))
         u = User(email=email)
-        _set_hash_fields(u, pwd)              # isi pass_hash & password
-        s.add(u); s.commit(); s.refresh(u)
-        log.info("[AUTH] user created id=%s pass_hash_set=%s password_set=%s",
-                 u.id, bool(u.pass_hash), bool(u.password))
-        session["uid"] = u.id
-        session["email"] = u.email
+        _set_hash(u, pwd)
+        s.add(u); s.commit()
+        log.info("[AUTH] created id=%s", u.id)
+        session["uid"], session["email"] = u.id, u.email
     return redirect(url_for("index"))
 
 @app.get("/logout")
@@ -212,56 +179,24 @@ def logout():
     session.clear()
     return redirect(url_for("login_get"))
 
-# ================ App routes ================
-@app.get("/")
-@login_required
-def index():
-    device = DEVICE
-    with SessionLocal() as s:
-        uid = session["uid"]
-        items = (
-            s.query(Translation)
-            .filter(Translation.user_id == uid)
-            .order_by(Translation.id.desc())
-            .limit(10).all()
-        )
-        recent = [{"src": it.src, "mt": it.mt, "created_at": it.created_at} for it in items]
-    return render_template("index.html", logged_in=True, device=device, recent=recent)
-
 @app.post("/translate")
-def api_translate():
-    if not session.get("uid"):  # keamanan
-        return jsonify({"error": "Unauthorized"}), 401
+def translate_api():
+    if not session.get("uid"):
+        return jsonify({"error": "not logged in"}), 401
     data = request.get_json(silent=True) or {}
     text = (data.get("text") or "").strip()
-    maxn = int(data.get("max_new_tokens", 48))
     if not text:
-        return jsonify({"error":"Empty text"}), 400
-    try:
-        clean = prenorm(text)
-        mt = translate_core(clean, max_new=maxn)
-        with SessionLocal() as s:
-            s.add(Translation(user_id=session["uid"], src=text, mt=mt))
-            s.commit()
-        return jsonify({"mt": mt})
-    except Exception as e:
-        log.exception("translate error: %s", e)
-        return jsonify({"error":"server error"}), 500
-
-@app.get("/history")
-def api_history():
-    if not session.get("uid"):
-        return jsonify({"items": []})
+        return jsonify({"error": "empty text"}), 400
+    norm = prenorm(text)
+    result = translate_mt(norm)
     with SessionLocal() as s:
-        uid = session["uid"]
-        items = (
-            s.query(Translation)
-            .filter(Translation.user_id == uid)
-            .order_by(Translation.id.desc())
-            .limit(10).all()
-        )
-    out = [{"src": i.src, "mt": i.mt, "created_at": i.created_at.strftime("%Y-%m-%d %H:%M")} for i in items]
-    return jsonify({"items": out})
+        s.add(Translation(user_id=session["uid"], src=text, mt=result))
+        s.commit()
+    return jsonify({"mt": result})
+
+@app.get("/debug")
+def debug():
+    return jsonify(dict(session=session, cookies=request.cookies))
 
 if __name__ == "__main__":
-    app.run(host="0.0.0.0", port=int(os.getenv("PORT", "7860")), debug=True)
+    app.run(host="0.0.0.0", port=7860, debug=True)

frontend/index.html

@@ -1,180 +1,42 @@
 <!DOCTYPE html>
 <html lang="id">
 <head>
-  <meta charset="UTF-8"/>
-  <meta name="viewport" content="width=device-width, initial-scale=1.0"/>
-  <title>PapuaTranslate — Translasi Dialek Papua</title>
-  <style>
-    *{margin:0;padding:0;box-sizing:border-box;font-family:'Segoe UI', Tahoma, Geneva, Verdana, sans-serif}
-    body{background:#f8f9fa;color:#333;line-height:1.6}
-    .container{max-width:1000px;margin:0 auto;padding:0 20px}
-    header{background:#fff;padding:15px 0;box-shadow:0 2px 10px rgba(0,0,0,.1)}
-    .header-content{display:flex;justify-content:space-between;align-items:center}
-    .logo h1{font-size:24px;font-weight:700;color:#000}
-    nav ul{display:flex;list-style:none;gap:12px}
-    nav a{color:#000;text-decoration:none;font-weight:500;transition:.2s;padding:6px 10px;border:1px solid #000;border-radius:6px}
-    nav a:hover{background:#000;color:#fff}
-    .hero{background:#fff;padding:40px 0 28px;text-align:center;margin-bottom:24px;border-bottom:1px solid #eee}
-    .hero h2{font-size:28px;margin-bottom:10px;color:#000}
-    .translation,.info{background:#fff;padding:24px;border-radius:8px;box-shadow:0 4px 12px rgba(0,0,0,.08);margin-bottom:24px}
-    .translation h3,.info h3{font-size:20px;margin-bottom:16px;color:#000;text-align:center}
-    .input-group{margin-bottom:16px}
-    .input-group label{display:block;margin-bottom:8px;color:#333;font-weight:600;font-size:15px}
-    .input-group textarea{width:100%;padding:14px;border:1px solid #ddd;border-radius:8px;font-size:16px;background:#f9f9f9;min-height:130px;resize:vertical}
-    .input-group textarea:focus{border-color:#444;outline:none;background:#fff}
-    .language-label{display:flex;justify-content:space-between;margin-bottom:6px}
-    .language-label span{font-size:13px;color:#666}
-    .translate-button{width:100%;padding:13px;background:#000;color:#fff;border:none;border-radius:8px;font-size:16px;font-weight:600;cursor:pointer;transition:.2s;margin:8px 0 16px}
-    .translate-button:hover{background:#333}
-    .translate-button:disabled{background:#666;cursor:not-allowed}
-    .result{background:#f9f9f9;padding:16px;border-radius:8px;border:1px solid #eee;min-height:90px}
-    .result h4{font-size:14px;color:#666;margin-bottom:6px}
-    .result-text{font-size:16px;line-height:1.6;color:#000;font-weight:500;white-space:pre-wrap}
-    .loading{color:#666;font-style:italic}
-    footer{background:#fff;color:#000;padding:24px 0;border-top:1px solid #eee;margin-top:24px}
-    .footer-content{display:flex;justify-content:space-between;gap:16px;flex-wrap:wrap;margin-bottom:12px}
-    .footer-section{flex:1;min-width:260px}
-    .footer-section h3{font-size:16px;margin-bottom:10px;border-bottom:2px solid #000;padding-bottom:4px;display:inline-block}
-    .footer-bottom{text-align:center;padding-top:14px;border-top:1px solid #eee;font-size:13px}
-    .pill{display:inline-block;background:#000;color:#fff;border-radius:999px;padding:4px 10px;margin-left:8px}
-    .history-list li{margin-left:18px;margin-bottom:6px}
-    .note{font-size:13px;color:#666;margin-top:8px}
-    .auth-badge{font-size:13px;color:#444}
-    @media (max-width:768px){.header-content{flex-direction:column;gap:12px}}
-  </style>
+<meta charset="UTF-8">
+<meta name="viewport" content="width=device-width,initial-scale=1.0">
+<title>Dashboard — PapuaTranslate</title>
+<style>
+body{font-family:'Segoe UI',sans-serif;background:#fafafa;margin:0;padding:0}
+header{background:#fff;box-shadow:0 2px 10px rgba(0,0,0,.1);padding:15px}
+h1{margin:0}
+.container{max-width:800px;margin:40px auto;background:#fff;padding:24px;border-radius:10px;box-shadow:0 2px 10px rgba(0,0,0,.05)}
+textarea{width:100%;height:120px;padding:10px;border-radius:6px;border:1px solid #ccc;resize:none}
+button{background:#000;color:#fff;border:0;padding:10px 16px;border-radius:6px;cursor:pointer;margin-top:10px}
+.history{margin-top:24px}
+.item{background:#f8f9fa;padding:10px;border-radius:6px;margin-bottom:10px}
+</style>
 </head>
 <body>
-<header>
-  <div class="container header-content">
-    <div class="logo"><h1>PapuaTranslate</h1></div>
-    <nav>
-      <ul>
-        <li><a href="/">Home</a></li>
-        <li><a href="/about">About</a></li>
-        <li><a href="/#history">History</a></li>
-        <li><a href="/logout">Logout</a></li>
-      </ul>
-    </nav>
-  </div>
-</header>
-
-<section class="hero">
-  <div class="container">
-    <h2>Translasi Dialek Papua → Bahasa Indonesia Baku</h2>
-    <p>mT5 + LoRA (CENDOL) dengan prenorm & n-best reranking ringan.</p>
-  </div>
-</section>
-
-<section class="translation">
-  <div class="container">
-    <h3>Alat Translasi</h3>
-    <div class="input-group">
-      <div class="language-label">
-        <label for="papua-input">Bahasa Papua</label>
-        <span>Masukkan teks berlogat Papua</span>
-      </div>
-      <textarea id="papua-input" placeholder="Contoh: 'sa tra tau' → 'Saya tidak tahu.'"></textarea>
-    </div>
-    <button class="translate-button" onclick="translateText()" id="translate-btn">Terjemahkan</button>
-    <div class="input-group">
-      <div class="language-label">
-        <label for="indonesia-output">Bahasa Indonesia Baku</label>
-        <span>Hasil terjemahan</span>
-      </div>
-      <div class="result">
-        <h4>Terjemahan:</h4>
-        <div id="indonesia-output" class="result-text">Hasil terjemahan akan ditampilkan di sini...</div>
-      </div>
-      <p class="note">Device: {{ device }}</p>
-    </div>
-  </div>
-</section>
-
-<section id="history" class="info">
-  <div class="container">
-    <h3>Riwayat Terakhir</h3>
-    <ul class="history-list" id="history-list">
-      {% for it in recent %}
-        <li><b>{{ it.src }}</b> → {{ it.mt }} <small>({{ it.created_at }})</small></li>
-      {% endfor %}
-      {% if not recent %}
-        <li class="note">(Belum ada riwayat.)</li>
-      {% endif %}
-    </ul>
-  </div>
-</section>
-
-<footer>
-  <div class="container">
-    <div class="footer-content">
-      <div class="footer-section">
-        <h3>PapuaTranslate</h3>
-        <p>Yogotak Hubuluk, Motok Hanorogo.</p>
-      </div>
-      <div class="footer-section">
-        <h3>Info</h3>
-        <p>Model: mT5 Base + LoRA</p>
-        <p>Device: {{ device }}</p>
-      </div>
-    </div>
-    <div class="footer-bottom">
-      <p>&copy; 2025 PapuaTranslate.</p>
-    </div>
-  </div>
-</footer>
-
+<header><h1>PapuaTranslate</h1><p><a href="/logout">Logout</a></p></header>
+<div class="container">
+<h2>Selamat datang, {{ user }}</h2>
+<textarea id="src" placeholder="Masukkan teks Papua..."></textarea>
+<button onclick="goTranslate()">Terjemahkan</button>
+<pre id="res"></pre>
+<div class="history">
+  <h3>Riwayat</h3>
+  {% for h in data %}
+    <div class="item"><b>{{ h.src }}</b><br>{{ h.mt }}</div>
+  {% endfor %}
+</div>
+</div>
 <script>
-  async function translateText() {
-    const inputText = document.getElementById('papua-input').value.trim();
-    const outputElement = document.getElementById('indonesia-output');
-    const translateBtn = document.getElementById('translate-btn');
-    if (!inputText) { outputElement.textContent = "Silakan masukkan teks."; return; }
-    outputElement.innerHTML = '<span class="loading">Menerjemahkan...</span>';
-    translateBtn.disabled = true; translateBtn.textContent = 'Menerjemahkan...';
-    try {
-      const r = await fetch('/translate', {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        credentials: 'same-origin',
-        body: JSON.stringify({ text: inputText, max_new_tokens: 48 })
-      });
-      const data = await r.json();
-      if (r.ok) {
-        outputElement.textContent = data.mt;
-        loadHistory();
-      } else {
-        outputElement.textContent = 'Error: ' + (data.error || 'Terjadi kesalahan');
-      }
-    } catch(e) {
-      outputElement.textContent = 'Gagal terhubung ke server';
-    } finally {
-      translateBtn.disabled = false; translateBtn.textContent = 'Terjemahkan';
-    }
-  }
-
-  async function loadHistory() {
-    try {
-      const r = await fetch('/history', { credentials: 'same-origin' });
-      if (!r.ok) return;
-      const j = await r.json();
-      const ul = document.getElementById('history-list');
-      ul.innerHTML = '';
-      if (!j.items || j.items.length === 0) {
-        ul.innerHTML = '<li class="note">(Belum ada riwayat.)</li>';
-        return;
-      }
-      for (const it of j.items) {
-        const li = document.createElement('li');
-        li.innerHTML = `<b>${it.src}</b> → ${it.mt} <small>(${it.created_at})</small>`;
-        ul.appendChild(li);
-      }
-    } catch(e) {}
-  }
-
-  // Ctrl/Cmd + Enter untuk translate
-  document.getElementById('papua-input').addEventListener('keydown', (e) => {
-    if (e.key === 'Enter' && (e.ctrlKey || e.metaKey)) translateText();
-  });
+async function goTranslate(){
+  let t=document.getElementById("src").value.trim();
+  if(!t)return;
+  let r=await fetch("/translate",{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({text:t})});
+  let j=await r.json();
+  document.getElementById("res").innerText=j.mt||j.error;
+}
 </script>
 </body>
 </html>