Nirdoan/Tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 6 Wiki Activity

Fix config path, env secrets, and align API calls

Browse Source
This commit is contained in:
Nirodan
2026-01-22 07:56:27 +01:00
parent 73d487255a
commit c0aaa86546
7 changed files with 41 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
backend/auth/login.py
+4
View File
@@ -13,6 +13,10 @@ def login_route():
username = data.get('username')
password = data.get('password')
if not SECRET_KEY:
logger.error("Login blocked: SECRET_KEY is not configured.")
return jsonify({"message": "Server misconfigured"}), 500
try:
config = load_config()
conn = connect(**config)
backend/auth/token.py
+9 -1
View File
@@ -1,10 +1,18 @@
import os
from flask import request
from jwt import decode, ExpiredSignatureError, InvalidTokenError
from util.logger import logger
SECRET_KEY = "bitte_hier_dein_geheimes_passwort_setzen" # später .env verwenden
# SECRET_KEY must be provided via environment for production safety
SECRET_KEY = os.environ.get("SECRET_KEY")
if not SECRET_KEY:
logger.error("SECRET_KEY environment variable is not set authentication disabled until configured.")
def verify_token():
if not SECRET_KEY:
return None
auth_header = request.headers.get("Authorization", "")
if not auth_header.startswith("Bearer "):
logger.warning("🔐 Invalid Bearer header")
backend/util/db_config.py
+20 -1
View File
@@ -4,7 +4,26 @@ import os
import mysql.connector
from util.logger import logger
CONFIG_PATH = "./config/db_config.json"
def _resolve_config_path() -> str:
"""
Prefer an explicit env override, otherwise use a docker-friendly default
(/config) and fall back to the repo-local config folder for non-docker dev.
"""
if env_path := os.environ.get("DB_CONFIG_PATH"):
return os.path.abspath(env_path)
docker_path = "/config/db_config.json"
if os.path.exists("/config"):
return docker_path
# local fallback: backend/config/db_config.json (relative to this file)
return os.path.abspath(
os.path.join(os.path.dirname(__file__), "..", "config", "db_config.json")
)
CONFIG_PATH = _resolve_config_path()
def is_configured():
return os.path.exists(CONFIG_PATH)