sneakygeek/SneakySwole
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
df8d5c65fbd2fe03cbd62c03a819527305c0217e
SneakySwole/app/routes/exercises.py
Phillip Tarrant 576d3bbb68 feat: replace admin auth with cookie-based profile picker 
Remove all authentication (login, sessions, bcrypt, itsdangerous) since
the app runs on a private homelab LAN. Replace with a profile picker
landing page and cookie-based profile selection (1-year expiry).

- Add Alembic migration to drop password_hash/is_admin columns
- Delete auth service, auth routes, login template, and auth tests
- Rewrite app/utils/auth.py with NoProfileSelectedError and
  require_active_profile dependency
- Add profile creation flow (GET/POST /profiles/create)
- Rewrite home page as profile picker with card layout
- Update all route files to use profile dependency instead of admin auth
- Remove bcrypt and itsdangerous from requirements
- Remove admin_username/admin_password from config
- Update all tests for new profile-based access model

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-03-13 12:40:54 -05:00

64 lines
2.1 KiB
Python
Raw Blame History

"""Exercise browser routes with HTMX search/filter support.
All filtering is done via HTMX partial responses -- no JSON APIs.
"""
import structlog
from fastapi import APIRouter, Depends, Query, Request
from fastapi.responses import HTMLResponse
from sqlmodel import Session
from app.database import get_db_session
from app.models.user import User
from app.services.exercise_service import ExerciseService
from app.utils.auth import require_active_profile
logger = structlog.get_logger(__name__)
router = APIRouter(prefix="/exercises", tags=["exercises"])
@router.get("", response_class=HTMLResponse)
async def exercise_browser(
request: Request,
session: Session = Depends(get_db_session),
profile: User = Depends(require_active_profile),
):
"""Render the exercise browser page with all exercises."""
exercise_service = ExerciseService(session)
exercises = exercise_service.list_exercises()
workout_days = exercise_service.list_workout_days()
# Collect unique muscle groups for the filter dropdown
muscle_groups = sorted(set(ex.muscle_group for ex in exercises))
templates = request.app.state.templates
return templates.TemplateResponse("pages/exercise_browser.html", {
"request": request,
"exercises": exercises,
"workout_days": workout_days,
"muscle_groups": muscle_groups,
})
@router.get("/search", response_class=HTMLResponse)
async def exercise_search(
request: Request,
session: Session = Depends(get_db_session),
profile: User = Depends(require_active_profile),
workout_day: str = Query(default="", alias="workout_day"),
muscle_group: str = Query(default="", alias="muscle_group"),
):
"""Return filtered exercise list as an HTMX partial."""
exercise_service = ExerciseService(session)
exercises = exercise_service.list_exercises(
workout_day=workout_day or None,
muscle_group=muscle_group or None,
)
templates = request.app.state.templates
return templates.TemplateResponse("partials/exercise_list.html", {
"request": request,
"exercises": exercises,
})
Reference in New Issue View Git Blame Copy Permalink