diff --git a/Dockerfile b/Dockerfile
new file mode 100644
index 0000000..371ecec
--- /dev/null
+++ b/Dockerfile
@@ -0,0 +1,13 @@
+FROM debian:12-slim
+
+RUN DEBIAN_FRONTEND=noninteractive apt update && apt install -y pipx
+RUN useradd --add-subids-for-system --system --create-home --home-dir /app appuser
+USER appuser
+WORKDIR /app
+ENV PATH /app/.local/bin:$PATH
+COPY ./requirements.txt /app/requirements.txt
+RUN pipx install gunicorn==21.2.0 && cat /app/requirements.txt | xargs pipx inject gunicorn
+COPY ./ /app/
+EXPOSE 8080
+CMD ["gunicorn", "-w", "4", "-b", "0.0.0.0:8080", "app:app"]
+
diff --git a/app.py b/app.py
new file mode 100644
index 0000000..cc29f7e
--- /dev/null
+++ b/app.py
@@ -0,0 +1,60 @@
+import os
+from typing import Union
+
+from flask import (Flask, flash, redirect, render_template, request,
+ send_from_directory, url_for)
+from flask_login import LoginManager, login_required, login_user, logout_user
+
+from forms import LoginForm
+from lotosa import LoToSa
+from user import User
+
+app = Flask(__name__)
+app.config.update(
+ SECRET_KEY=os.urandom(32),
+ SESSION_COOKIE_HTTPONLY=True,
+ REMEMBER_COOKIE_HTTPONLY=True,
+ SESSION_COOKIE_SAMESITE="Strict",
+)
+login_manager = LoginManager()
+login_manager.init_app(app)
+
+lotosa = LoToSa(app)
+
+
+@login_manager.user_loader
+def load_user(user_id) -> Union[User, None]:
+ for user in lotosa.get_users():
+ if user.uid == user_id:
+ return user
+ return None
+
+
+@app.route('/', methods=['GET', 'POST'])
+def index():
+ i18n = lotosa.get_i18n(request)
+ form = LoginForm()
+ if request.method == 'POST':
+ username = form.username.data
+ password = form.password.data
+ user = lotosa.login_user(username, password)
+ if user:
+ login_user(user)
+ flash('Logged in successfully.')
+ return redirect(url_for('admin'))
+ flash('Logged in faled, please try again.')
+ return render_template('index.html', i18n=i18n, form=form)
+
+
+@app.route('/admin', methods=['GET'])
+@login_required
+def admin():
+ i18n = lotosa.get_i18n(request)
+ return render_template('admin.html', i18n=i18n)
+
+
+@app.route('/favicon.ico')
+def favicon():
+ return send_from_directory(os.path.join(app.root_path, 'static'),
+ 'favicon.ico',
+ mimetype='image/vnd.microsoft.icon')
diff --git a/forms.py b/forms.py
new file mode 100644
index 0000000..ee5f4c9
--- /dev/null
+++ b/forms.py
@@ -0,0 +1,8 @@
+from flask_wtf import FlaskForm
+from wtforms import PasswordField, StringField, SubmitField
+from wtforms.validators import DataRequired
+
+class LoginForm(FlaskForm):
+ username = StringField('Username', validators=[DataRequired()])
+ password = PasswordField('Password', validators=[DataRequired()])
+ submit = SubmitField('Submit')
diff --git a/i18n/en_US.yaml b/i18n/en_US.yaml
new file mode 100644
index 0000000..233cd9e
--- /dev/null
+++ b/i18n/en_US.yaml
@@ -0,0 +1,5 @@
+head:
+ title: LoToSA
+
+body:
+ h1: LoToSA
diff --git a/lotosa.py b/lotosa.py
new file mode 100644
index 0000000..973b55a
--- /dev/null
+++ b/lotosa.py
@@ -0,0 +1,42 @@
+import glob
+import sys
+
+import yaml
+from flask import Flask, request
+
+from user import User
+
+
+class LoToSa:
+
+ def __init__(self, app: Flask):
+ self.users = [
+ User(app, 'micke', 'Micke Nordin', 'hej@mic.ke', 'S3cr3t!')
+ ]
+
+ def get_users(self):
+ return self.users
+
+ def login_user(self, username, password):
+ for user in self.users:
+ if user.get_id() == username and user.check_password(password):
+ user.set_authenticated(True)
+ user.set_active(True)
+ print(f'Logged in {user.get_id()}', file=sys.stderr)
+ return user
+ print(f'Login failed for {username}', file=sys.stderr)
+ return None
+
+ def get_i18n(self, request: request):
+ language_files = glob.glob("i18n/*.yaml")
+ languages = {}
+ for lang in language_files:
+ filename = lang.split('/')
+ lang_code = filename[1].split('.')[0]
+ with open(lang, 'r', encoding='utf8') as file:
+ languages[lang_code] = yaml.safe_load(file.read())
+
+ supported_languages = list(languages.keys())
+ user_language = request.accept_languages.best_match(
+ supported_languages)
+ return languages[user_language]
diff --git a/requirements.txt b/requirements.txt
new file mode 100644
index 0000000..3ea6ce4
--- /dev/null
+++ b/requirements.txt
@@ -0,0 +1,5 @@
+flask==3.0.2
+flask-login==0.6.3
+flask-bcrypt==1.0.1
+flask-wtf==1.2.1
+pyyaml==6.0.1
diff --git a/static/favicon.ico b/static/favicon.ico
new file mode 100644
index 0000000..afbf5a5
Binary files /dev/null and b/static/favicon.ico differ
diff --git a/static/main.css b/static/main.css
new file mode 100644
index 0000000..e69de29
diff --git a/static/main.js b/static/main.js
new file mode 100644
index 0000000..e69de29
diff --git a/static/simple.min.css b/static/simple.min.css
new file mode 100644
index 0000000..52dbfd4
--- /dev/null
+++ b/static/simple.min.css
@@ -0,0 +1 @@
+::backdrop,:root{--sans-font:-apple-system,BlinkMacSystemFont,"Avenir Next",Avenir,"Nimbus Sans L",Roboto,"Noto Sans","Segoe UI",Arial,Helvetica,"Helvetica Neue",sans-serif;--mono-font:Consolas,Menlo,Monaco,"Andale Mono","Ubuntu Mono",monospace;--standard-border-radius:5px;--bg:#fff;--accent-bg:#f5f7ff;--text:#212121;--text-light:#585858;--border:#898EA4;--accent:#0d47a1;--accent-hover:#1266e2;--accent-text:var(--bg);--code:#d81b60;--preformatted:#444;--marked:#ffdd33;--disabled:#efefef}@media (prefers-color-scheme:dark){::backdrop,:root{color-scheme:dark;--bg:#212121;--accent-bg:#2b2b2b;--text:#dcdcdc;--text-light:#ababab;--accent:#ffb300;--accent-hover:#ffe099;--accent-text:var(--bg);--code:#f06292;--preformatted:#ccc;--disabled:#111}img,video{opacity:.8}}*,::after,::before{box-sizing:border-box}input,progress,select,textarea{appearance:none;-webkit-appearance:none;-moz-appearance:none}html{font-family:var(--sans-font);scroll-behavior:smooth}body{color:var(--text);background-color:var(--bg);font-size:1.15rem;line-height:1.5;display:grid;grid-template-columns:1fr min(45rem,90%) 1fr;margin:0}body>*{grid-column:2}body>header{background-color:var(--accent-bg);border-bottom:1px solid var(--border);text-align:center;padding:0 .5rem 2rem .5rem;grid-column:1/-1}body>header>:only-child{margin-block-start:2rem}body>header h1{max-width:1200px;margin:1rem auto}body>header p{max-width:40rem;margin:1rem auto}main{padding-top:1.5rem}body>footer{margin-top:4rem;padding:2rem 1rem 1.5rem 1rem;color:var(--text-light);font-size:.9rem;text-align:center;border-top:1px solid var(--border)}h1{font-size:3rem}h2{font-size:2.6rem;margin-top:3rem}h3{font-size:2rem;margin-top:3rem}h4{font-size:1.44rem}h5{font-size:1.15rem}h6{font-size:.96rem}p{margin:1.5rem 0}h1,h2,h3,h4,h5,h6,p{overflow-wrap:break-word}h1,h2,h3{line-height:1.1}@media only screen and (max-width:720px){h1{font-size:2.5rem}h2{font-size:2.1rem}h3{font-size:1.75rem}h4{font-size:1.25rem}}a,a:visited{color:var(--accent)}a:hover{text-decoration:none}.button,a.button,button,input[type=button],input[type=reset],input[type=submit],label[type=button]{border:1px solid var(--accent);background-color:var(--accent);color:var(--accent-text);padding:.5rem .9rem;text-decoration:none;line-height:normal}.button[aria-disabled=true],button[disabled],input:disabled,select:disabled,textarea:disabled{cursor:not-allowed;background-color:var(--disabled);border-color:var(--disabled);color:var(--text-light)}input[type=range]{padding:0}abbr[title]{cursor:help;text-decoration-line:underline;text-decoration-style:dotted}.button:not([aria-disabled=true]):hover,button:enabled:hover,input[type=button]:enabled:hover,input[type=reset]:enabled:hover,input[type=submit]:enabled:hover,label[type=button]:hover{background-color:var(--accent-hover);border-color:var(--accent-hover);cursor:pointer}.button:focus-visible,button:focus-visible:where(:enabled),input:enabled:focus-visible:where([type=submit],[type=reset],[type=button]){outline:2px solid var(--accent);outline-offset:1px}header>nav{font-size:1rem;line-height:2;padding:1rem 0 0 0}header>nav ol,header>nav ul{align-content:space-around;align-items:center;display:flex;flex-direction:row;flex-wrap:wrap;justify-content:center;list-style-type:none;margin:0;padding:0}header>nav ol li,header>nav ul li{display:inline-block}header>nav a,header>nav a:visited{margin:0 .5rem 1rem .5rem;border:1px solid var(--border);border-radius:var(--standard-border-radius);color:var(--text);display:inline-block;padding:.1rem 1rem;text-decoration:none}header>nav a.current,header>nav a:hover,header>nav a[aria-current=page]{border-color:var(--accent);color:var(--accent);cursor:pointer}@media only screen and (max-width:720px){header>nav a{border:none;padding:0;text-decoration:underline;line-height:1}}aside,details,pre,progress{background-color:var(--accent-bg);border:1px solid var(--border);border-radius:var(--standard-border-radius);margin-bottom:1rem}aside{font-size:1rem;width:30%;padding:0 15px;margin-inline-start:15px;float:right}[dir=rtl] aside{float:left}@media only screen and (max-width:720px){aside{width:100%;float:none;margin-inline-start:0}}article,dialog,fieldset{border:1px solid var(--border);padding:1rem;border-radius:var(--standard-border-radius);margin-bottom:1rem}article h2:first-child,section h2:first-child{margin-top:1rem}section{border-top:1px solid var(--border);border-bottom:1px solid var(--border);padding:2rem 1rem;margin:3rem 0}section+section,section:first-child{border-top:0;padding-top:0}section:last-child{border-bottom:0;padding-bottom:0}details{padding:.7rem 1rem}summary{cursor:pointer;font-weight:700;padding:.7rem 1rem;margin:-.7rem -1rem;word-break:break-all}details[open]>summary+*{margin-top:0}details[open]>summary{margin-bottom:.5rem}details[open]>:last-child{margin-bottom:0}table{border-collapse:collapse;margin:1.5rem 0}figure>table{width:max-content}td,th{border:1px solid var(--border);text-align:start;padding:.5rem}th{background-color:var(--accent-bg);font-weight:700}tr:nth-child(even){background-color:var(--accent-bg)}table caption{font-weight:700;margin-bottom:.5rem}.button,button,input,select,textarea{font-size:inherit;font-family:inherit;padding:.5rem;margin-bottom:.5rem;border-radius:var(--standard-border-radius);box-shadow:none;max-width:100%;display:inline-block}input,select,textarea{color:var(--text);background-color:var(--bg);border:1px solid var(--border)}label{display:block}textarea:not([cols]){width:100%}select:not([multiple]){background-image:linear-gradient(45deg,transparent 49%,var(--text) 51%),linear-gradient(135deg,var(--text) 51%,transparent 49%);background-position:calc(100% - 15px),calc(100% - 10px);background-size:5px 5px,5px 5px;background-repeat:no-repeat;padding-inline-end:25px}[dir=rtl] select:not([multiple]){background-position:10px,15px}input[type=checkbox],input[type=radio]{vertical-align:middle;position:relative;width:min-content}input[type=checkbox]+label,input[type=radio]+label{display:inline-block}input[type=radio]{border-radius:100%}input[type=checkbox]:checked,input[type=radio]:checked{background-color:var(--accent)}input[type=checkbox]:checked::after{content:" ";width:.18em;height:.32em;border-radius:0;position:absolute;top:.05em;left:.17em;background-color:transparent;border-right:solid var(--bg) .08em;border-bottom:solid var(--bg) .08em;font-size:1.8em;transform:rotate(45deg)}input[type=radio]:checked::after{content:" ";width:.25em;height:.25em;border-radius:100%;position:absolute;top:.125em;background-color:var(--bg);left:.125em;font-size:32px}@media only screen and (max-width:720px){input,select,textarea{width:100%}}input[type=color]{height:2.5rem;padding:.2rem}input[type=file]{border:0}hr{border:none;height:1px;background:var(--border);margin:1rem auto}mark{padding:2px 5px;border-radius:var(--standard-border-radius);background-color:var(--marked);color:#000}mark a{color:#0d47a1}img,video{max-width:100%;height:auto;border-radius:var(--standard-border-radius)}figure{margin:0;display:block;overflow-x:auto}figcaption{text-align:center;font-size:.9rem;color:var(--text-light);margin-bottom:1rem}blockquote{margin-inline-start:2rem;margin-inline-end:0;margin-block:2rem;padding:.4rem .8rem;border-inline-start:.35rem solid var(--accent);color:var(--text-light);font-style:italic}cite{font-size:.9rem;color:var(--text-light);font-style:normal}dt{color:var(--text-light)}code,kbd,pre,pre span,samp{font-family:var(--mono-font);color:var(--code)}kbd{color:var(--preformatted);border:1px solid var(--preformatted);border-bottom:3px solid var(--preformatted);border-radius:var(--standard-border-radius);padding:.1rem .4rem}pre{padding:1rem 1.4rem;max-width:100%;overflow:auto;color:var(--preformatted)}pre code{color:var(--preformatted);background:0 0;margin:0;padding:0}progress{width:100%}progress:indeterminate{background-color:var(--accent-bg)}progress::-webkit-progress-bar{border-radius:var(--standard-border-radius);background-color:var(--accent-bg)}progress::-webkit-progress-value{border-radius:var(--standard-border-radius);background-color:var(--accent)}progress::-moz-progress-bar{border-radius:var(--standard-border-radius);background-color:var(--accent);transition-property:width;transition-duration:.3s}progress:indeterminate::-moz-progress-bar{background-color:var(--accent-bg)}dialog{max-width:40rem;margin:auto}dialog::backdrop{background-color:var(--bg);opacity:.8}@media only screen and (max-width:720px){dialog{max-width:100%;margin:auto 1em}}sub,sup{vertical-align:baseline;position:relative}sup{top:-.4em}sub{top:.3em}.notice{background:var(--accent-bg);border:2px solid var(--border);border-radius:var(--standard-border-radius);padding:1.5rem;margin:2rem 0}
\ No newline at end of file
diff --git a/templates/admin.html b/templates/admin.html
new file mode 100644
index 0000000..fd5d138
--- /dev/null
+++ b/templates/admin.html
@@ -0,0 +1,18 @@
+
+
+
+
+
+
+
+
+
+
+ {{i18n.head.title}}
+
+
+
+
+ {{i18n.body.h1}}
+
+
diff --git a/templates/index.html b/templates/index.html
new file mode 100644
index 0000000..706f1b1
--- /dev/null
+++ b/templates/index.html
@@ -0,0 +1,32 @@
+
+
+
+
+
+
+
+
+
+
+ {{i18n.head.title}}
+
+
+
+
+ {% block content %}
+ {{i18n.body.h1}}
+
+{% endblock %}
+
+
diff --git a/user.py b/user.py
new file mode 100644
index 0000000..07b502f
--- /dev/null
+++ b/user.py
@@ -0,0 +1,48 @@
+from flask import Flask
+from flask_bcrypt import Bcrypt
+class User:
+ def __init__(self, app: Flask, uid: str, display_name: str, email:str, password: str, admin: bool = False):
+ self.uid = uid
+ self.display_name = display_name
+ self.email = email
+ self.is_admin = admin
+ self.is_authenticated = False
+ self.is_active = False
+ self.is_anonymous = False
+ self.bcrypt = Bcrypt(app)
+ self.salt = self.get_salt()
+ self.password_hash = self.bcrypt.generate_password_hash(password + self.salt).decode('utf-8')
+
+ def check_password(self, password: str):
+ return self.bcrypt.check_password_hash(self.password_hash, password + self.salt)
+
+ def get_id(self):
+ return self.uid
+
+ def get_display_name(self):
+ return self.display_name
+
+ def get_email(self):
+ return self.email
+
+ def get_salt(self):
+ return "salt"
+
+ def set_active(self, active: bool):
+ self.is_active = active
+
+ def set_authenticated(self, authenticated: bool):
+ self.is_authenticated = authenticated
+
+ def set_anonymous(self, anonymous: bool):
+ self.is_anonymous = anonymous
+
+ def set_admin(self, admin: bool):
+ self.is_admin = admin
+
+ def set_email(self, email: str):
+ self.email = email
+
+ def set_password(self, password: str):
+ self.password_hash = self.bcrypt.generate_password_hash(password + self.salt).decode('utf-8')
+