# 🔐 Admin Credentials Setup

This notebook securely sets up admin credentials for the movie review site.
It will hash passwords and store them in a secure config file.


In [16]:
import bcrypt
import json
import os
from datetime import datetime

# Install bcrypt if not already installed
try:
    import bcrypt
except ImportError:
    print("Installing bcrypt...")
    os.system("pip install bcrypt")
    import bcrypt


## 1. Set Admin Credentials

Enter the admin credentials below. These will be hashed and stored securely.


In [17]:
# Admin credentials - CHANGE THESE!
ADMIN_CREDENTIALS = {
    "james": {
        "username": "james",
        "password": "JamesPassword123!",  # Change this!
        "email": "james@example.com",
        "phone_number": "1234567890",
        "first_name": "James",
        "last_name": "Trapp",
        "zipcode": "12345"
    },
    "admin": {
        "username": "admin", 
        "password": "AdminPassword123!",  # Change this!
        "email": "admin@example.com",
        "phone_number": "1234567890",
        "first_name": "Admin",
        "last_name": "User",
        "zipcode": "12345"
    }
}

print("⚠️  IMPORTANT: Change the passwords above before running the next cell!")
print("Current credentials:")
for user, creds in ADMIN_CREDENTIALS.items():
    print(f"  {creds['username']}: {creds['password']}")
print("\nNote: Passwords must meet these requirements:")
print("  - At least 8 characters")
print("  - At least one uppercase letter")
print("  - At least one lowercase letter") 
print("  - At least one number")
print("  - At least one special character")


⚠️  IMPORTANT: Change the passwords above before running the next cell!
Current credentials:
  james: JamesPassword123!
  admin: AdminPassword123!

Note: Passwords must meet these requirements:
  - At least 8 characters
  - At least one uppercase letter
  - At least one lowercase letter
  - At least one number
  - At least one special character


## 2. Create Admin Accounts Using Existing API

We'll use the existing `/api/account_signup` endpoint to create admin accounts.


In [18]:
import requests
import json

SERVER_URL = "http://127.0.0.1:5555"

def create_admin_account(credentials):
    """Create an admin account using the existing signup API"""
    url = f"{SERVER_URL}/api/account_signup"
    
    try:
        response = requests.post(url, json=credentials)
        
        if response.status_code == 201:
            print(f"✅ Successfully created admin account: {credentials['username']}")
            return response.json()
        else:
            error_data = response.json()
            print(f"❌ Failed to create account {credentials['username']}: {error_data}")
            return None
            
    except requests.exceptions.ConnectionError:
        print(f"❌ Could not connect to server at {SERVER_URL}")
        print("Make sure the Flask server is running!")
        return None
    except Exception as e:
        print(f"❌ Error creating account {credentials['username']}: {e}")
        return None

# Create admin accounts
print("🚀 Creating admin accounts...")
print("=" * 50)

created_accounts = []
for user, creds in ADMIN_CREDENTIALS.items():
    print(f"\nCreating account for {creds['username']}...")
    result = create_admin_account(creds)
    if result:
        created_accounts.append(creds['username'])

print(f"\n🎉 Successfully created {len(created_accounts)} admin accounts!")
print(f"Created: {', '.join(created_accounts)}")


🚀 Creating admin accounts...

Creating account for james...
❌ Failed to create account james: {'error': {'username': 'Username already taken.', 'email': 'Email already registered.'}}

Creating account for admin...
❌ Failed to create account admin: {'error': {'username': 'Username already taken.', 'email': 'Email already registered.'}}

🎉 Successfully created 0 admin accounts!
Created: 


In [20]:
# Check if accounts already exist and test login
def test_admin_login(username, password):
    """Test if we can login with the admin credentials"""
    url = f"{SERVER_URL}/api/login"
    
    try:
        response = requests.post(url, json={"username": username, "password": password})
        
        if response.status_code == 200:
            print(f"✅ Login successful for {username}")
            return response.json()
        else:
            error_data = response.json()
            print(f"❌ Login failed for {username}: {error_data}")
            return None
            
    except Exception as e:
        print(f"❌ Error testing login for {username}: {e}")
        return None

print("🔍 Testing login with existing accounts...")
print("=" * 50)

# Test login with the credentials from the notebook
for user, creds in ADMIN_CREDENTIALS.items():
    print(f"\nTesting login for {creds['username']}...")
    result = test_admin_login(creds['username'], creds['password'])
    if result:
        print(f"  User ID: {result.get('id')}")
        print(f"  Email: {result.get('email')}")
        print(f"  Name: {result.get('first_name')} {result.get('last_name')}")

print("\n🎉 Admin accounts are ready to use!")
print("You can now login at /#/admin with these credentials.")


🔍 Testing login with existing accounts...

Testing login for james...
✅ Login successful for james
  User ID: 1
  Email: james@example.com
  Name: James Trapp

Testing login for admin...
✅ Login successful for admin
  User ID: 2
  Email: admin@example.com
  Name: Admin User

🎉 Admin accounts are ready to use!
You can now login at /#/admin with these credentials.
