In [4]:
%cd /content/drive/MyDrive/DVLA

import firebase_admin
from firebase_admin import credentials, firestore

# Load service account
cred = credentials.Certificate("serviceAccount.json")
firebase_admin.initialize_app(cred)

# Firestore client
db = firestore.client()

# Write test data
doc_ref = db.collection("test_collection").document("test_doc")
doc_ref.set({"message": "Hello from Colab"})

# Read test data
doc = doc_ref.get()
print("Firestore says:", doc.to_dict())


/content/drive/MyDrive/DVLA
Firestore says: {'message': 'Hello from Colab'}


In [69]:
%%writefile firebase_config.py
import firebase_admin
from firebase_admin import credentials, firestore
import json
import streamlit as st

def get_db():
    if not firebase_admin._apps:
        sa = json.loads(st.secrets["FIREBASE_SERVICE_ACCOUNT"])
        cred = credentials.Certificate(sa)
        firebase_admin.initialize_app(cred)
    return firestore.client()

# convenient global
db = get_db()


Overwriting firebase_config.py


In [6]:
%%writefile test_connection.py
from firebase_config import db

def test_firestore():
    doc_ref = db.collection("test_collection").document("test_doc")
    doc_ref.set({"message": "Hello from GitHub -> Colab -> Firebase"})
    doc = doc_ref.get()
    print("Firestore says:", doc.to_dict())

if __name__ == "__main__":
    test_firestore()


Writing test_connection.py


In [64]:
%%writefile requirements.txt
streamlit
firebase-admin
pyrebase4


Overwriting requirements.txt


In [68]:
%%writefile /content/drive/MyDrive/DVLA/main.py
import streamlit as st
from auth import (
    signup_email_password, login_email_password,
    get_session, set_session, logout, guard_role
)

st.set_page_config(page_title="DVLA Dashboard", page_icon="🚗", layout="centered")

# --------- Placeholder dashboards ---------
def customer_dashboard():
    st.header("Customer Dashboard")
    st.write("Welcome! Add/view cars, create service requests, track status… (coming next)")

def dvla_dashboard():
    st.header("DVLA Admin Dashboard")
    st.write("View/update customer records, approve statuses… (coming next)")

# --------- UI helpers ---------
def show_auth_forms():
    tab_login, tab_signup = st.tabs(["Login", "Sign up"])

    with tab_login:
        st.subheader("Login")
        with st.form("login_form", clear_on_submit=False):
            email = st.text_input("Email")
            password = st.text_input("Password", type="password")
            submitted = st.form_submit_button("Login")
        if submitted:
            try:
                auth_blob = login_email_password(email, password)
                set_session(auth_blob)
                st.success("Logged in successfully.")
                st.rerun()
            except Exception as e:
                st.error(f"Login failed: {e}")

    with tab_signup:
        st.subheader("Sign up")
        with st.form("signup_form", clear_on_submit=False):
            email = st.text_input("Email", key="su_email")
            password = st.text_input("Password", type="password", key="su_pass")
            submitted = st.form_submit_button("Create account")
        if submitted:
            try:
                auth_blob = signup_email_password(email, password)
                set_session(auth_blob)
                st.success("Account created and logged in.")
                st.rerun()
            except Exception as e:
                st.error(f"Signup failed: {e}")

def show_topbar():
    s = get_session()
    cols = st.columns([1,1,1,1,1])
    with cols[-1]:
        if s.get("authenticated"):
            if st.button("Log out"):
                logout()
                st.rerun()

# --------- Router ---------
def router():
    s = get_session()
    st.title("DVLA Dashboard")

    show_topbar()

    if not s["authenticated"]:
        show_auth_forms()
        return

    # Authenticated → route by role
    role = s.get("role", "customer")
    if role == "dvla":
        dvla_dashboard()
    else:
        customer_dashboard()

if __name__ == "__main__":
    router()


Overwriting /content/drive/MyDrive/DVLA/main.py


In [70]:
%%writefile auth.py
import json
import streamlit as st
import pyrebase
from firebase_admin import auth as admin_auth
from firebase_config import db

# ---------- Pyrebase init (client-side Auth) ----------
def _get_pyrebase():
    cfg = json.loads(st.secrets["FIREBASE_WEB_CONFIG"])
    return pyrebase.initialize_app(cfg)

def _auth_client():
    return _get_pyrebase().auth()

# ---------- Firestore: user profile ----------
def _users_coll():
    return db.collection("users")

def ensure_user_profile(uid: str, email: str, default_role: str = "customer"):
    doc_ref = _users_coll().document(uid)
    doc = doc_ref.get()
    if not doc.exists:
        doc_ref.set({
            "email": email,
            "role": default_role,
            "created_at": db.FIELD_SERVER_TIMESTAMP if hasattr(db, "FIELD_SERVER_TIMESTAMP") else None,
        })

def get_user_profile(uid: str):
    doc = _users_coll().document(uid).get()
    return doc.to_dict() if doc.exists else None

def set_user_role(uid: str, role: str):
    _users_coll().document(uid).set({"role": role}, merge=True)

# ---------- Signup / Login ----------
def signup_email_password(email: str, password: str):
    auth = _auth_client()
    user = auth.create_user_with_email_and_password(email, password)
    # Refresh to get idToken
    user = auth.refresh(user["refreshToken"])
    id_token = user["idToken"]

    # Verify token using Admin SDK to get UID
    decoded = admin_auth.verify_id_token(id_token)
    uid = decoded["uid"]

    ensure_user_profile(uid, email, default_role="customer")
    profile = get_user_profile(uid)
    return {"uid": uid, "email": email, "idToken": id_token, "profile": profile}

def login_email_password(email: str, password: str):
    auth = _auth_client()
    user = auth.sign_in_with_email_and_password(email, password)
    # Refresh to get a fresh idToken
    user = auth.refresh(user["refreshToken"])
    id_token = user["idToken"]

    decoded = admin_auth.verify_id_token(id_token)
    uid = decoded["uid"]
    profile = get_user_profile(uid)
    # If no profile (e.g., created outside app), create one
    if not profile:
        ensure_user_profile(uid, email, default_role="customer")
        profile = get_user_profile(uid)

    return {"uid": uid, "email": email, "idToken": id_token, "profile": profile}

# ---------- Session helpers ----------
SESSION_KEY = "auth_state"

def get_session():
    if SESSION_KEY not in st.session_state:
        st.session_state[SESSION_KEY] = {
            "authenticated": False,
            "uid": None,
            "email": None,
            "idToken": None,
            "role": None
        }
    return st.session_state[SESSION_KEY]

def set_session(auth_blob: dict):
    s = get_session()
    s["authenticated"] = True
    s["uid"] = auth_blob.get("uid")
    s["email"] = auth_blob.get("email")
    s["idToken"] = auth_blob.get("idToken")
    s["role"] = (auth_blob.get("profile") or {}).get("role", "customer")

def logout():
    if SESSION_KEY in st.session_state:
        st.session_state.pop(SESSION_KEY, None)

def guard_role(required: str) -> bool:
    s = get_session()
    return s.get("authenticated") and s.get("role") == required


Writing auth.py


In [63]:
!git add *.py
!git commit -m "Add Python files"
!git push https://hexfoxglove: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@github.com/hexfoxglove/dvla_dashboard_.git main

On branch main
Changes not staged for commit:
  (use "git add <file>..." to update what will be committed)
  (use "git restore <file>..." to discard changes in working directory)
	[31mmodified:   Untitled0.ipynb[m
	[31mmodified:   requirements.txt[m

no changes added to commit (use "git add" and/or "git commit -a")
Everything up-to-date


In [67]:
!git add .
!git commit -m "Update files after removing secret"
!git push --force origin main

On branch main
nothing to commit, working tree clean
Enumerating objects: 26, done.
Counting objects: 100% (26/26), done.
Delta compression using up to 2 threads
Compressing objects: 100% (23/23), done.
Writing objects: 100% (26/26), 11.72 KiB | 139.00 KiB/s, done.
Total 26 (delta 8), reused 0 (delta 0), pack-reused 0
remote: Resolving deltas: 100% (8/8), done.[K
To https://github.com/hexfoxglove/dvla_dashboard_.git
 + c09cbd8...8f54dab main -> main (forced update)


In [None]:
!git log --oneline