Moved frontend stuff to main area

AT_frontend/.gitignore

@@ -1,2 +0,0 @@
-venvs/
-.__pychache__/

AT_frontend/app.py

@@ -1,18 +0,0 @@
-from flask import Flask, render_template, session, redirect, url_for, session
-from flask_wtf import FlaskForm
-from wtforms import (
-    StringField,
-    BooleanField,
-    RadioField,
-    SelectField,
-    TextAreaField,
-    SubmitField,
-)
-from wtforms.validators import DataRequired
-
-app = Flask(__name__)
-
-app.config["SECRET_KEY"] = "mijngeheimesleutel"
-
-if __name__ == "__main__":
-    app.run(debug=True)

app.py

@@ -2,6 +2,7 @@ from application import app
 from application.api.views import api_blueprint
 from application.auth.views import auth_blueprint
 from application.dashboard.views import dash_blueprint
+from flask import redirect, url_for
 
 app.register_blueprint(api_blueprint, url_prefix="/api")
 app.register_blueprint(auth_blueprint, url_prefix="/auth")
@@ -11,7 +12,7 @@ app.register_blueprint(dash_blueprint, url_prefix="/dash")
 # Default app route
 @app.route("/")
 def home():
-    return "Hello, World!"
+    return redirect(url_for("auth.demo"))
 
 
 if __name__ == "__main__":

application/__init__.py

@@ -2,6 +2,7 @@ from flask import Flask
 from flask_migrate import Migrate
 from flask_sqlalchemy import SQLAlchemy
 from pyplatex import ANPR  # type: ignore
+from authlib.integrations.flask_client import OAuth
 
 # Web Server
 app = Flask(__name__)
@@ -17,3 +18,25 @@ migrate = Migrate(app, db)
 
 # ANPR instance
 anpr = ANPR()
+
+# Keycloak
+oauth = OAuth(app=app)
+url = "http://192.168.69.1:8180"
+keycloak: ... = oauth.register(
+    name="keycloak",
+    client_id="ProjectIOT",
+    client_secret="IWKfsx2aLHCMr0iUaZOuws6UwiYrVQ60",
+    authorize_url=(f"{url}/realms/ProjectIOT/protocol/openid-connect/auth"),
+    authorize_params=None,
+    access_token_url=(
+        f"{url}/realms/ProjectIOT/protocol/openid-connect/token"
+    ),
+    refresh_token_url=(
+        f"{url}/realms/ProjectIOT/protocol/openid-connect/token"
+    ),
+    api_base_url=(f"{url}/realms/ProjectIOT/protocol/openid-connect"),
+    client_kwargs={"scope": "openid profile email"},
+    server_metadata_url=(
+        "{url}/realms/ProjectIOT/.well-known/openid-configuration"
+    ),
+)

application/auth/views.py

@@ -1,3 +1,30 @@
-from flask import Blueprint
+from flask import Blueprint, session, redirect, url_for, render_template
+from application import keycloak
 
 auth_blueprint = Blueprint("auth", __name__, template_folder="templates")
+
+
+@auth_blueprint.route("/demo")
+def demo():
+    return render_template("login.html")
+
+
+@auth_blueprint.route("/")
+def home():
+    user = session.get("user")
+    if user:
+        return f'Hello, {user["name"]}'
+    return redirect(url_for("auth.login"))
+
+
+@auth_blueprint.route("/login")
+def login():
+    redirect_uri = url_for("auth.auth", _external=True)
+    return keycloak.authorize_redirect(redirect_uri)
+
+
+@auth_blueprint.route("/auth")
+def auth():
+    user = keycloak.userinfo()
+    session["user"] = user
+    return redirect(url_for("auth.home"))