Spaces:

XDimLab
/

ICCV2025-RealADSim-ClosedLoop

Running

App Files Files Community

Abhishek Thakur commited on Feb 27, 2024

Commit

4046997

1 Parent(s): ef69751

auth

Browse files

Files changed (2) hide show

competitions/oauth.py +5 -8
competitions/templates/index.html +1 -8

competitions/oauth.py CHANGED Viewed

@@ -22,9 +22,6 @@ OPENID_PROVIDER_URL = os.environ.get("OPENID_PROVIDER_URL")
 def attach_oauth(app: fastapi.FastAPI):
-    # Add `/login/huggingface`, `/login/callback` and `/logout` routes to enable OAuth in the Gradio app.
-    # If the app is running in a Space, OAuth is enabled normally. Otherwise, we mock the "real" routes to make the
-    # user log in with a fake user profile - without any calls to hf.co.
     if os.environ.get("SPACE_ID") is not None and int(os.environ.get("USE_OAUTH", 0)) == 1:
         _add_oauth_routes(app)
     else:
@@ -39,7 +36,7 @@ def attach_oauth(app: fastapi.FastAPI):
         SessionMiddleware,
         secret_key=hashlib.sha256(session_secret.encode()).hexdigest(),
         same_site="none",
-        # https_only=True,
     )
@@ -74,12 +71,12 @@ def _add_oauth_routes(app: fastapi.FastAPI) -> None:
     async def oauth_login(request: fastapi.Request):
         """Endpoint that redirects to HF OAuth page."""
         # Define target (where to redirect after login)
-        redirect_uri = _generate_redirect_uri(request)
-        # redirect_uri = request.url_for("auth")
         return await oauth.huggingface.authorize_redirect(request, redirect_uri)  # type: ignore
-    @app.get("/login/callback")
-    async def oauth_redirect_callback(request: fastapi.Request) -> RedirectResponse:
         """Endpoint that handles the OAuth callback."""
         # oauth_info = await oauth.huggingface.authorize_access_token(request)  # type: ignore
         try:

 def attach_oauth(app: fastapi.FastAPI):
     if os.environ.get("SPACE_ID") is not None and int(os.environ.get("USE_OAUTH", 0)) == 1:
         _add_oauth_routes(app)
     else:
         SessionMiddleware,
         secret_key=hashlib.sha256(session_secret.encode()).hexdigest(),
         same_site="none",
+        https_only=True,
     )
     async def oauth_login(request: fastapi.Request):
         """Endpoint that redirects to HF OAuth page."""
         # Define target (where to redirect after login)
+        # redirect_uri = _generate_redirect_uri(request)
+        redirect_uri = request.url_for("auth")
         return await oauth.huggingface.authorize_redirect(request, redirect_uri)  # type: ignore
+    @app.get("/auth")
+    async def auth(request: fastapi.Request) -> RedirectResponse:
         """Endpoint that handles the OAuth callback."""
         # oauth_info = await oauth.huggingface.authorize_access_token(request)  # type: ignore
         try:

competitions/templates/index.html CHANGED Viewed

@@ -388,7 +388,7 @@
                         class="mt-1 block w-full border border-gray-300 px-3 py-1.5 bg-white rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500">
                 </li>
                 <li id="loginButton" style="display: none;">
-                    <a href="/login/huggingface" id="huggingFaceLogin"
                         class="bg-blue-500 hover:bg-blue-700 text-white font-bold py-2 px-4 rounded">Login with Hugging
                         Face</a>
                 </li>
@@ -468,13 +468,6 @@
     <script src="https://cdnjs.cloudflare.com/ajax/libs/flowbite/2.2.1/flowbite.min.js"></script>
 </body>
-<script>
-    document.getElementById('huggingFaceLogin').addEventListener('click', function (event) {
-        event.preventDefault(); // Prevent the default link behavior
-        window.parent.location.href = this.getAttribute('href'); // Open link in parent window/tab
-    });
-</script>
 <script>
     document.addEventListener('DOMContentLoaded', function () {
         document.querySelector('.confirm').addEventListener('click', function (event) {

                         class="mt-1 block w-full border border-gray-300 px-3 py-1.5 bg-white rounded-md shadow-sm focus:outline-none focus:ring-indigo-500 focus:border-indigo-500">
                 </li>
                 <li id="loginButton" style="display: none;">
+                    <a href="/login/huggingface" target="_blank"
                         class="bg-blue-500 hover:bg-blue-700 text-white font-bold py-2 px-4 rounded">Login with Hugging
                         Face</a>
                 </li>
     <script src="https://cdnjs.cloudflare.com/ajax/libs/flowbite/2.2.1/flowbite.min.js"></script>
 </body>
 <script>
     document.addEventListener('DOMContentLoaded', function () {
         document.querySelector('.confirm').addEventListener('click', function (event) {