Update cart.py

cart.py

@@ -1,13 +1,16 @@
-from flask import Blueprint, render_template, request, session, jsonify, redirect, url_for
+from flask import Blueprint, render_template, request, session, jsonify, redirect, url_for, Flask
+from flask_cors import CORS
 from salesforce import get_salesforce_connection
 import re
 
+# Initialize Salesforce connection
 sf = get_salesforce_connection()
+
+# Create the cart blueprint
 cart_blueprint = Blueprint('cart', __name__)
 
 # Utility function to sanitize SOQL inputs
 def sanitize_input(value):
-    """Remove potentially dangerous characters for SOQL injection."""
     if value:
         value = re.sub(r'[;\'"\\]', '', value)
     return value
@@ -16,7 +19,7 @@ def sanitize_input(value):
 def cart():
     email = session.get('user_email')
     if not email:
-        return redirect(url_for("login"))
+        return redirect(url_for("cart.login"))
 
     try:
         sanitized_email = sanitize_input(email)
@@ -43,7 +46,7 @@ def cart():
 def bill():
     email = session.get('user_email')
     if not email:
-        return redirect(url_for("login"))
+        return redirect(url_for("cart.login"))
 
     try:
         sanitized_email = sanitize_input(email)
@@ -53,18 +56,34 @@ def bill():
             WHERE Customer_Email__c = '{sanitized_email}'
         """)
         cart_items = result.get("records", [])
+        if not cart_items:
+            return render_template(
+                "bill.html",
+                cart_items=[],
+                subtotal=0,
+                customer_email=email,
+                error_message="Your cart is empty. Please add items to proceed."
+            )
+
         subtotal = sum(item['Price__c'] for item in cart_items)
 
         return render_template(
             "bill.html",
             cart_items=cart_items,
             subtotal=subtotal,
-            customer_email=email
+            customer_email=email,
+            error_message=None
         )
 
     except Exception as e:
         print(f"Error fetching bill items: {e}")
-        return render_template("bill.html", cart_items=[], subtotal=0, customer_email=email)
+        return render_template(
+            "bill.html",
+            cart_items=[],
+            subtotal=0,
+            customer_email=email,
+            error_message=f"Error fetching cart items: {str(e)}"
+        ), 500
 
 @cart_blueprint.route("/bill/fetch_cart", methods=["GET"])
 def fetch_cart():
@@ -419,11 +438,10 @@ def submit_order():
 def order():
     email = session.get('user_email')
     if not email:
-        return redirect(url_for("login"))
+        return redirect(url_for("cart.login"))
 
     try:
         sanitized_email = sanitize_input(email)
-        # Fetch the latest order for the user
         result = sf.query(f"""
             SELECT Id, Order_Details__c, Total_Bill__c, CreatedDate
             FROM Order__c
@@ -440,15 +458,13 @@ def order():
         total = order['Total_Bill__c']
         order_details_raw = order['Order_Details__c'] or ""
         
-        # Parse order details into a list of items
         order_items = []
         for line in order_details_raw.split("\n"):
             if not line.strip():
                 continue
-            # Example line: "Chicken Biryani x2 | Add-Ons: Extra Raita | Instructions: Less spicy | Price: $24.00 | Image: <url>"
             try:
                 parts = line.split(" | ")
-                name_quantity = parts[0].split(" x")  # "Chicken Biryani x2" -> ["Chicken Biryani", "2"]
+                name_quantity = parts[0].split(" x")
                 name = name_quantity[0]
                 quantity = int(name_quantity[1])
                 addons = parts[1].replace("Add-Ons: ", "") if len(parts) > 1 else "None"
@@ -475,4 +491,59 @@ def order():
 
     except Exception as e:
         print(f"Error fetching order: {e}")
-        return render_template("order.html", order=None, message="Error fetching your order. Please contact support.")
+        return render_template("order.html", order=None, message="Error fetching your order. Please contact support.")
+
+@cart_blueprint.route("/cart/validate_redirect", methods=["GET"])
+def validate_redirect():
+    try:
+        email = session.get('user_email')
+        if not email:
+            return jsonify({
+                "success": False,
+                "message": "Please log in to proceed to the bill page.",
+                "redirect": url_for("cart.login")
+            }), 401
+
+        sanitized_email = sanitize_input(email)
+        result = sf.query(f"""
+            SELECT Id
+            FROM Cart_Item__c
+            WHERE Customer_Email__c = '{sanitized_email}'
+        """)
+        cart_items = result.get("records", [])
+        if not cart_items:
+            return jsonify({
+                "success": False,
+                "message": "Your cart is empty. Add items before proceeding to the bill page.",
+                "redirect": "/menu"
+            }), 400
+
+        return jsonify({"success": True, "message": "Redirect allowed."})
+
+    except Exception as e:
+        print(f"Error validating redirect: {e}")
+        return jsonify({
+            "success": False,
+            "message": "An error occurred while validating the redirect. Please try again."
+        }), 500
+
+@cart_blueprint.route("/login", methods=["GET", "POST"])
+def login():
+    if request.method == "POST":
+        email = request.form.get("email")
+        if not email:
+            return render_template("login.html", error="Email is required.")
+        session['user_email'] = email
+        session['user_name'] = "Test User"
+        session['table_number'] = "1"
+        return redirect(url_for("cart.cart"))
+    return render_template("login.html")
+
+# Create the Flask app and register the blueprint
+app = Flask(__name__)
+app.secret_key = "your-secret-key-12345"  # Replace with a secure key
+CORS(app)  # Enable CORS for Hugging Face Spaces
+app.register_blueprint(cart_blueprint)
+
+if __name__ == "__main__":
+    app.run(host="0.0.0.0", port=7860)