update space

.idea/workspace.xml

@@ -6,10 +6,6 @@
   <component name="ChangeListManager">
     <list default="true" id="27c9ae1a-a6fa-4472-8bcd-a7087620894b" name="Changes" comment="update space">
       <change beforePath="$PROJECT_DIR$/.idea/workspace.xml" beforeDir="false" afterPath="$PROJECT_DIR$/.idea/workspace.xml" afterDir="false" />
-      <change beforePath="$PROJECT_DIR$/app.py" beforeDir="false" afterPath="$PROJECT_DIR$/app.py" afterDir="false" />
-      <change beforePath="$PROJECT_DIR$/routes/administration.py" beforeDir="false" afterPath="$PROJECT_DIR$/routes/administration.py" afterDir="false" />
-      <change beforePath="$PROJECT_DIR$/routes/report_dashboard.py" beforeDir="false" />
-      <change beforePath="$PROJECT_DIR$/routes/todo.py" beforeDir="false" />
     </list>
     <option name="SHOW_DIALOG" value="false" />
     <option name="HIGHLIGHT_CONFLICTS" value="true" />
@@ -123,15 +119,7 @@
       <workItem from="1730305361670" duration="2425000" />
       <workItem from="1730378091154" duration="2435000" />
       <workItem from="1730381153348" duration="8786000" />
-      <workItem from="1730397485849" duration="5653000" />
-    </task>
-    <task id="LOCAL-00030" summary="update space">
-      <option name="closed" value="true" />
-      <created>1730336863406</created>
-      <option name="number" value="00030" />
-      <option name="presentableId" value="LOCAL-00030" />
-      <option name="project" value="LOCAL" />
-      <updated>1730336863406</updated>
+      <workItem from="1730397485849" duration="6964000" />
     </task>
     <task id="LOCAL-00031" summary="update space">
       <option name="closed" value="true" />
@@ -517,7 +505,15 @@
       <option name="project" value="LOCAL" />
       <updated>1730402545869</updated>
     </task>
-    <option name="localTasksCounter" value="79" />
+    <task id="LOCAL-00079" summary="update space">
+      <option name="closed" value="true" />
+      <created>1730403550084</created>
+      <option name="number" value="00079" />
+      <option name="presentableId" value="LOCAL-00079" />
+      <option name="project" value="LOCAL" />
+      <updated>1730403550085</updated>
+    </task>
+    <option name="localTasksCounter" value="80" />
     <servers />
   </component>
   <component name="TypeScriptGeneratedFilesManager">

routes/authentication.py

@@ -78,35 +78,31 @@ async def login_page(request: Request):
 
 @auth_router.post("/login", response_model=Token)
 async def login(request: Request, form_data: OAuth2PasswordRequestForm = Depends()):
-    """Authenticate user, issue JWT, and set in a secure cookie."""
+    """Authenticate user, issue JWT, and set it in a secure cookie."""
     logger.info(f"User login attempt: {form_data.username}")
     user = authenticate_user(form_data.username, form_data.password)
 
     if not user:
         error_message = "Invalid username or password"
         logger.warning(f"Failed login attempt for user {form_data.username}: {error_message}")
-        log_to_db("WARNING", f"Failed login attempt for user {form_data.username}")
-        return templates.TemplateResponse("auth/login.html", {
-            "request": request,
-            "error": error_message
-        })
+        return templates.TemplateResponse("auth/login.html", {"request": request, "error": error_message})
 
+    # Create the JWT token
     access_token_expires = timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES)
     access_token = create_access_token(data={"sub": user["username"]}, expires_delta=access_token_expires)
 
+    # Set the token in a secure cookie
     response = RedirectResponse(url="/admin/dashboard", status_code=status.HTTP_302_FOUND)
     response.set_cookie(
         key="access_token",
-        value=f"Bearer {access_token}",
+        value=access_token,
         httponly=True,
         max_age=ACCESS_TOKEN_EXPIRE_MINUTES * 60,
         secure=True,
         samesite="Lax"
     )
     logger.info(f"User {form_data.username} logged in successfully and redirected to dashboard.")
-    log_to_db("INFO", f"User {form_data.username} logged in successfully and redirected to dashboard.")
     return response
-
 @auth_router.get("/me", response_model=UserResponse)
 async def read_users_me(current_user: str = Depends(get_current_user)):
     """Retrieve information about the current authenticated user."""
@@ -122,14 +118,9 @@ async def read_users_me(current_user: str = Depends(get_current_user)):
     return {"username": current_user}
 
 @auth_router.get("/logout")
-async def logout(request: Request, token: str = Depends(oauth2_scheme)):
-    """Logout the user by blacklisting the token and clearing cookies."""
-    expiration = datetime.utcnow() + timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES)
-    blacklist_token(token, expiration)
-
+async def logout(request: Request):
+    """Logout the user by clearing the token cookie."""
     response = RedirectResponse(url="/auth/login", status_code=status.HTTP_302_FOUND)
     response.delete_cookie("access_token")
-
-    logger.info("User logged out and token blacklisted.")
-    log_to_db("INFO", "User logged out and token blacklisted.")
+    logger.info("User logged out successfully.")
     return response