fix: Add access-control for admin-specific route

[mrsaicharan1]

Fixes #5923

Checklist

• I have read the Contribution & Best practices Guide and my PR follows them.
• My branch is up-to-date with the Upstream development branch.
• The unit tests pass locally with my changes
• I have added tests that prove my fix is effective or that my feature works
• I have added necessary documentation (if appropriate)

• All the functions created/modified in this PR contain relevant docstrings.

Short description of what this resolves:

Fixes the vulnerability issue alluding to the credentials and environment details which are exposed to non-admin users.

Changes proposed in this pull request:

• Create a route to serve details of environment
• Add is_admin decorator to check for access

[mrsaicharan1]

@iamareebjamal Please check

[codecov]

Codecov Report

Merging #5942 into development will decrease coverage by 0.04%.
The diff coverage is 48%.

@@              Coverage Diff               @@
##           development   #5942      +/-   ##
==============================================
- Coverage        66.44%   66.4%   -0.05%     
==============================================
  Files              285     285              
  Lines            13871   13893      +22     
==============================================
+ Hits              9216    9225       +9     
- Misses            4655    4668      +13

Impacted Files	Coverage Δ
app/__init__.py	86.3% <100%> (ø)	⬆️
app/api/auth.py	21.39% <40.9%> (+2.07%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 8edfddb...89e1b28. Read the comment docs.

[iamareebjamal]

HTTP Basic Auth should work with this. Please handle that

[mrsaicharan1]

HTTP Basic Auth should work with this. Please handle that

HTTP basic auth as in? Can you please elaborate?

[iamareebjamal]

https://developer.mozilla.org/en-US/docs/Web/HTTP/Authentication

http://flask.pocoo.org/snippets/8/

[mrsaicharan1]

@iamareebjamal Should the user be redirected to the authentication page when they're not logged in as an admin?Also, Isn't the basic HTTP auth working now?

[iamareebjamal]

No, there'll be no redirection

https://www.httpwatch.com/httpgallery/authentication/#showExample10

[iamareebjamal]

Please verify that it is working or not

[houndci-bot]

expected 2 blank lines, found 1

[houndci-bot]

expected 2 blank lines, found 1

[mrsaicharan1]

@iamareebjamal I've add proper support now which handles the admin access. I've also attached a GIF to the description. It works fine now.
Previously, the decorators were not working inside of app/__init__.py. I've noticed this in my previous PRs as well. Had to shift the EnvironmentDump object from there to control the access.