In [None]:
from sphinx.util import requests
from werkzeug.security import generate_password_hash as werkzeug_generate_password_hash
from werkzeug.security import check_password_hash as werkzeug_check_password_hash

from flask import Flask, render_template, request, redirect, url_for, flash
from flask_wtf import FlaskForm, RecaptchaField
from wtforms import StringField, TextAreaField
from wtforms.validators import DataRequired, Email, Length
import sqlite3
from datetime import datetime
from pymongo import MongoClient
import pandas as pd
import re
import requests
import bcrypt
import random

# Initialise the Flask application
app = Flask(__name__)
app.secret_key = 'f4M0vRr5264S'

#ReCaptcha Keys (DO NOT HARDCODE IN PRODUCTION)
app.config['RECAPTCHA_PUBLIC_KEY'] = '6Le9yoEqAAAAAFCAlEF3OT7d-vIeR_KxZN-KBpYY'
app.config['RECAPTCHA_PRIVATE_KEY'] = '6Le9yoEqAAAAAEpoEpmy0z-WOEYn54apiy9dKQnE'

# Initialise the SQLite Database
def init_db():
    conn = sqlite3.connect('users.db')
    c = conn.cursor()
    c.execute('''CREATE TABLE IF NOT EXISTS users 
        (id INTEGER PRIMARY KEY AUTOINCREMENT,
        first_name TEXT NOT NULL,
        last_name TEXT NOT NULL,
        username TEXT NOT NULL,
        email TEXT NOT NULL,
        password TEXT NOT NULL,
        created_at TEXT NOT NULL)''')
    conn.commit()
    conn.close()

# Route for the Home Page
@app.route('/')
def home():
    return render_template('home.html')

# Route for Logged In Page
@app.route('/logged_in')
def logged_in():
    return render_template('logged_in.html')

# Route for the About page
@app.route('/about')
def about():
    return render_template('about.html')

# Route for the Contact Us Page
@app.route('/contact')
def contact():
    return render_template('contact.html')

# Route for displaying the registration form 
@app.route('/register', methods=['GET']) 
def show_register(): 
    return render_template('register.html')

# Route to display the success page
@app.route('/success/<first_name>')
def success(first_name):    
    return render_template('success.html', first_name=first_name)

# Route to display confirmation of  deleted user
@app.route('/confirm-delete/<int:user_id>', methods=['POST'])
def confirm_delete(user_id):
    conn = sqlite3.connect('users.db')
    c = conn.cursor()
    c.execute("SELECT id, first_name, last_name, username, email, created_at FROM users WHERE id = ?", (user_id,))
    user = c.fetchone()
    conn.close()
    return render_template('user_delete.html', user=user)

# Route to delete user ID
@app.route('/user_delete/<int:user_id>', methods=['POST'])
def delete_user(user_id):
    conn = sqlite3.connect('users.db')
    c = conn.cursor()
    c.execute('DELETE FROM users WHERE id = ?', (user_id,))
    conn.commit()
    conn.close()
    return redirect(url_for('list_users'))

# Rout for users
@app.route('/users')
def list_users():
    conn = sqlite3.connect('users.db')
    c = conn.cursor()
    c.execute("SELECT id, first_name, last_name, username, email, created_at FROM users")
    users = c.fetchall()
    conn.close()
    return render_template('users.html', users=users)

# Route to display the registration form
def generate_password_hash(password, method='pbkdf2:sha256'):
    return werkzeug_generate_password_hash(password, method)

def check_password_hash(password, hash):
    return werkzeug_check_password_hash(hash, password)

@app.route('/register', methods=['GET', 'POST'])
def register():
    if request.method == 'POST':
        print("POST request received")  # Debugging line
        
        # Verify reCAPTCHA
        recaptcha_response = request.form.get('g-recaptcha-response')
        print(f"reCAPTCHA response: {recaptcha_response}")  # Debugging line
        data = {
            'secret': app.config['RECAPTCHA_PRIVATE_KEY'],
            'response': recaptcha_response,
        }
        print(f"Data sent to reCAPTCHA API: {data}")  # Debugging line
        r = requests.post('https://www.google.com/recaptcha/api/siteverify', data=data)
        result = r.json()
        print(f"reCAPTCHA result: {result}")  # Debugging line
        
        if not result['success']:
            flash('Invalid reCAPTCHA. Please try again.', 'error')
            return render_template('register.html', RECAPTCHA_PUBLIC_KEY=app.config['RECAPTCHA_PUBLIC_KEY'])
        
        # Retrieve form data
        first_name = request.form['first_name']
        last_name = request.form['last_name']
        username = request.form['username']
        email = request.form['email']
        password = request.form['password']
        print(f"Form data: {first_name}, {last_name}, {username}, {email}")  # Debugging line
    
        # Validate email
        if not is_valid_email(email):
            flash('Invalid email address format. Please enter a valid email address.', 'error')
            return render_template('register.html', RECAPTCHA_PUBLIC_KEY=app.config['RECAPTCHA_PUBLIC_KEY'])
        
        # Validate password strength
        if not is_password_strong(password):
            flash('Password must be at least 8 characters long, include at least one upper case letter, number or special character.', 'error')
            return render_template('register.html',
                                   first_name=first_name,
                                   last_name=last_name,
                                   username=username,
                                   email=email,
                                   RECAPTCHA_PUBLIC_KEY=app.config['RECAPTCHA_PUBLIC_KEY'])
    
        # Hash the password before saving to the database
        hashed_password = generate_password_hash(password, method='pbkdf2:sha256')
        print(f"Hashed password: {hashed_password}")  # Debugging line
        
        # Get the current timestamp
        created_at = datetime.now().strftime('%Y-%m-%d %H:%M:%S')
        print(f"Timestamp: {created_at}")  # Debugging line
        
        # Insert user data into the database
        try:
            conn = sqlite3.connect('users.db')
            c = conn.cursor()
            c.execute('''INSERT INTO users (first_name, last_name, username, email, password, created_at)
                         VALUES (?, ?, ?, ?, ?, ?)''',
                      (first_name, last_name, username, email, hashed_password, created_at))
            conn.commit()
            conn.close()
            print("User data inserted into the database")  # Debugging line

            # Redirect to the success page
            return redirect(url_for('success', first_name=first_name))
        except sqlite3.IntegrityError:
            flash('Email or username already registered.', 'error')
            return render_template('register.html',
                                   first_name=first_name,
                                   last_name=last_name,
                                   username=username,
                                   email=email)

    RECAPTCHA_PUBLIC_KEY = app.config['RECAPTCHA_PUBLIC_KEY']
    return render_template('register.html', 
                           RECAPTCHA_PUBLIC_KEY=RECAPTCHA_PUBLIC_KEY)

# Email validation using regex
def is_valid_email(email):
    email_regex = r'^[a-zA-Z0-9_.+-]+@[a-zA-Z0-9-]+\.[a-zA-Z0-9-.]+$'
    return re.match(email_regex, email)
        
# Password strength validation
def is_password_strong(password):
    if len(password) < 8:
        return False
    if not re.search('[A-Z]', password):
        return False
    if not re.search('[a-z]', password):
        return False
    if not re.search('[0-9]', password):
        return False
    return True
                
# Route for the Login page
@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        username = request.form.get('username')
        password = request.form.get('password')

        # Try to match the login against the passed in values
        conn = sqlite3.connect('users.db')
        cursor = conn.cursor()
        cursor.execute("SELECT password FROM users WHERE username=?", (username,))
        matches = cursor.fetchone()
        conn.close()
        
        if matches != None:  
            if check_password_hash(password, matches[0]):
                return redirect(url_for('logged_in'))
 
    return render_template('login.html')

# Route for displaying data from MongoDB
@app.route('/data')
def index():
    # Connect to the MongoDB server
    client = MongoClient('mongodb+srv://0602750:strokedataassignment@strokedata.2lpyv.mongodb.net/')
    db = client['HealthcareDataset']
    
    # List all collections in the database
    collection_names = db.list_collection_names()
    
    # Dictionary to hold the data for each collection
    data_dict = {}
    
    # Iterate over each collection and display the data
    for collection_name in collection_names:
        # Access the collection
        collection = db[collection_name]
        
        # Fetch data from the collection
        cursor = collection.find()
        
        # Convert the cursor to a list of dictionaries
        data_list = list(cursor)

        # Convert to pandas DataFrame for better visualizations 
        if data_list:
            df = pd.DataFrame(data_list)
            data_dict[collection_name] = df.head().to_html(classes='data', header="true")
        else:
            data_dict[collection_name] = "No data in this collection."
            
    # Render the data with the data from each collection
    return render_template('index.html', data=data_dict)

# Route to load CSV file into MongoDB
@app.route('/upload', methods=['GET', 'POST'])
def upload():
    # Connect to the MongoDB server
    client = MongoClient('mongodb+srv://0602750:strokedataassignment@strokedata.2lpyv.mongodb.net/')
    db = client['HealthcareDataset']
    collection = db['stroke_data']
    
    if request.method == 'POST':
        file = request.files['file']
        if file and file.filename.endswith('.csv'):
            # Load CSV file into DataFrame
            df = pd.read_csv(file)
            records = df.to_dict('records')
            
            # Clear the collection before inserting new records
            collection.delete_many({})
            
            # Insert records into MongoDB
            collection.insert_many(records)
            flash("Data has been successfully stored!", "success")
            return redirect('/view')  # Redirect to the view page after uploading
        
    return render_template('upload.html')


# Function to generate a unique user ID for patients if the user does not provide
def generate_unique_id(collection):
    while True:
        new_id = random.randint(1, 1000000)  
        if not collection.find_one({"id": new_id}):
            return new_id

# Route to add new patient data
@app.route('/add_patient', methods=['GET', 'POST'])
def add_patient():
    if request.method == 'POST':
        # Connect to the MongoDB server
        client = MongoClient('mongodb+srv://0602750:strokedataassignment@strokedata.2lpyv.mongodb.net/')
        db = client['HealthcareDataset']
        collection = db['stroke_data']
        
        # Get form data
        id_input = request.form.get('id')
        if id_input:
            unique_id = int(id_input)
        else:
            unique_id = generate_unique_id(collection)
        
        patient_data = {
            'id': unique_id,
            'gender': request.form['gender'],
            'age': int(request.form['age']),
            'hypertension': int(request.form['hypertension']),
            'heart_disease': int(request.form['heart_disease']),
            'ever_married': request.form['ever_married'],
            'work_type': request.form['work_type'],
            'Residence_type': request.form['residence_type'],
            'avg_glucose_level': float(request.form['avg_glucose_level']),
            'bmi': float(request.form['bmi']),
            'smoking_status': request.form['smoking_status'],
            'stroke': int(request.form['stroke'])
        }
        
        # Insert the new patient data into the collection
        collection.insert_one(patient_data)
        
        # Flash a message to the user
        flash(f'Patient added to the database, ID number is {unique_id}')
        
        return redirect(url_for('view_patients'))
    
    # If GET request, render the form
    return render_template('add_patient.html')

# Route to confirm user wants to delete patient data
@app.route('/confirm_delete_patient', methods=['POST'])
def confirm_delete_patient():
    patient_id = request.form['id']
    return render_template('confirm_delete_patient.html', patient_id=patient_id)

# Route to delete patient data with a message confirming deletion
@app.route('/delete_patient', methods=['POST'])
def delete_patient():
    # Connect to the MongoDB server
    client = MongoClient('mongodb+srv://0602750:strokedataassignment@strokedata.2lpyv.mongodb.net/')
    db = client['HealthcareDataset']
    collection = db['stroke_data']
    
    # Get the patient ID from the form
    patient_id = int(request.form['id'])
    
    # Delete the patient from the collection
    collection.delete_one({'id': patient_id})
    
    # Flash a message to the user
    flash(f'Patient with ID {patient_id} has been deleted.')
    
    return redirect(url_for('view_patients'))

# Route for the search function
@app.route('/search', methods=['GET'])
def search():
    # Connect to the MongoDB server
    client = MongoClient('mongodb+srv://0602750:strokedataassignment@strokedata.2lpyv.mongodb.net/')
    db = client['HealthcareDataset']
    collection = db['stroke_data']
    
    # Get the search query
    search_query = request.args.get('query', '').strip()
    
    if search_query:
        try:
            query = {"id": int(search_query)}
            items = list(collection.find(query))
            total_items = len(items)
            total_pages = 1
            page = 1
        except ValueError:
            items = []
            total_items = 0
            total_pages = 0
            page = 1
    else:
        items = []
        total_items = 0
        total_pages = 0
        page = 1
    
    return render_template('view_patients.html', data=items, page=page, total_pages=total_pages, search_query=search_query)

# Route to view patient data
@app.route('/view_patients')
def view_patients():
    # Connect to the MongoDB server
    client = MongoClient('mongodb+srv://0602750:strokedataassignment@strokedata.2lpyv.mongodb.net/')
    db = client['HealthcareDataset']
    collection = db['stroke_data']
    # Display the first 10 patients 
    page = int(request.args.get('page', 1))
    per_page = 10
    # Ability to search the patient data set by ID only
    search_query = request.args.get('search', '').strip()

    query = {}
    if search_query:
        query = {"id": int(search_query)}
        total_items = collection.count_documents(query)
        total_pages = 1
        items = list(collection.find(query))
    else:
        total_items = collection.count_documents({})
        items = list(collection.find(query).skip((page - 1) * per_page).limit(per_page))
   
    total_pages = (total_items + per_page - 1) // per_page
 
    return render_template('view_patients.html', data=items, page=page, total_pages=total_pages, search_query=search_query)

# Route to edit patient data
@app.route('/edit_patient', methods=['GET', 'POST'])
def edit_patient():
    # Connect to the MongoDB server
    client = MongoClient('mongodb+srv://0602750:strokedataassignment@strokedata.2lpyv.mongodb.net/')
    db = client['HealthcareDataset']
    collection = db['stroke_data']
    
    if request.method == 'POST':
        # Get form data
        patient_id = int(request.form['id'])
        updated_data = {
            'gender': request.form['gender'],
            'age': int(float(request.form['age'])),  # Convert to float first, then to int
            'hypertension': int(request.form['hypertension']),
            'heart_disease': int(request.form['heart_disease']),
            'ever_married': request.form['ever_married'],
            'work_type': request.form['work_type'],
            'Residence_type': request.form['residence_type'],
            'avg_glucose_level': float(request.form['avg_glucose_level']),
            'bmi': float(request.form['bmi']),
            'smoking_status': request.form['smoking_status'],
            'stroke': int(request.form['stroke'])
        }
        
        # Update the patient data in the collection
        collection.update_one({'id': patient_id}, {'$set': updated_data})
        
        # Flash a message to the user
        flash(f'Patient with ID {patient_id} has been updated.')
        
        return redirect(url_for('view_patients'))
    
    # If GET request, render the edit form
    patient_id = int(request.args.get('id'))
    patient = collection.find_one({'id': patient_id})
    return render_template('edit_patient.html', patient=patient)
# Initialise the database and run the Flask app
if __name__ == "__main__":
    init_db()
    app.run(port=5000, debug=False)

 * Serving Flask app '__main__'
 * Debug mode: off


 * Running on http://127.0.0.1:5000
Press CTRL+C to quit
