In [1]:
#Week 07 - Lab
#Simple user authentication setup using bcrypt

In [2]:
#Make sure bcrypt is installed before running this file
#Run once in terminal: pip install bcrypt

import bcrypt
import os

#File used to store user login information (hashed passwords)
USER_DATA_FILE = "users.txt"

In [3]:
def hash_password(plain_text_password):
    #Hashes a password securely using bcrypt
    #Turns a plain password into a safe, stored version
    
    password_bytes = plain_text_password.encode("utf-8")
    salt = bcrypt.gensalt()
    hashed = bcrypt.hashpw(password_bytes, salt)
    return hashed.decode("utf-8")

In [4]:
def verify_password(plain_text_password, hashed_password):
    #Turn the password into bytes
    password_bytes = plain_text_password.encode("utf-8")

    #Turn the stored hash into bytes
    hashed_bytes = hashed_password.encode("utf-8")

    #Check if the password matches the hash
    return bcrypt.checkpw(password_bytes, hashed_bytes)

In [5]:
#Test password hashing and verification

#Sample password to test with
test_password = "SecurePassword123"

#Hash the password
hashed = hash_password(test_password)
print(f"Original password: {test_password}")
print(f"Hashed password: {hashed}")

#Check using the correct password
result1 = verify_password(test_password, hashed)
print(f"\nCorrect password result: {result1}")

#Check using an incorrect password
result2 = verify_password("WrongPassword", hashed)
print(f"Wrong password result: {result2}")

Original password: SecurePassword123
Hashed password: $2b$12$zLb/2Yq0iAjLRaRjglYXqeHxuXZORHRYdBRJsVORv.TQeZ9TobdwS

Correct password result: True
Wrong password result: False


In [6]:
def user_exists(username):
    #If the user file does not exist, no users exist yet
    if not os.path.exists(USER_DATA_FILE):
        return False

    #Read each line and check the username
    with open(USER_DATA_FILE, 'r') as file:
        for line in file:
            stored_username = line.strip().split(',')
            if stored_username == username:
                return True

    #Username not found
    return False

In [7]:
def register_user(username, password):
    #Check if the username is already taken
    if user_exists(username):
        print(f"Error: Username '{username}' already exists.")
        return False

    #Hash the user's password
    hashed_password = hash_password(password)

    #Save the username and hashed password to the file
    with open(USER_DATA_FILE, 'a') as file:
        file.write(f"{username},{hashed_password}\n")

    #Confirm successful registration
    print(f"Success: User '{username}' registered successfully!")
    return True

In [8]:
def login_user(username, password):
    #If the user file does not exist, no users are registered
    if not os.path.exists(USER_DATA_FILE):
        print("Error: No users registered yet.")
        return False

    #Go through the file to find the user
    with open(USER_DATA_FILE, 'r') as file:
        for line in file:
            #Split each line into username and hashed password
            parts = line.strip().split(',')
            if len(parts) == 2:
                stored_username, stored_hash = parts

                #Check if the username matches
                if stored_username == username:
                    #Verify the password
                    if verify_password(password, stored_hash):
                        print(f"Success: Welcome, {username}!")
                        return True
                    else:
                        print("Error: Invalid password.")
                        return False

    #Username was not found in the file
    print("Error: Username not found.")
    return False


In [9]:
def validate_username(username):
    #Username cannot be empty
    if not username:
        return (False, "Username cannot be empty.")

    #Username length checks
    if len(username) < 3:
        return (False, "Username must be at least 3 characters long.")
    if len(username) > 20:
        return (False, "Username must be no more than 20 characters long.")

    #Username should only contain letters and numbers
    if not username.isalnum():
        return (False, "Username must contain only letters and numbers.")

    #Username is valid
    return (True, "")

In [10]:
def validate_password(password):
    #Password cannot be empty
    if not password:
        return (False, "Password cannot be empty.")

    #Password length checks
    if len(password) < 6:
        return (False, "Password must be at least 6 characters long.")
    if len(password) > 50:
        return (False, "Password must be no more than 50 characters long.")

    #Password is valid
    return (True, "")

In [11]:
def display_menu():
    #Show the main menu for the authentication system
    print("\n" + "=" * 50)
    print("  MULTI-DOMAIN INTELLIGENCE PLATFORM")
    print("  Secure Authentication System")
    print("=" * 50)

    #Menu options
    print("\n Register a new user")
    print(" Login")
    print(" Exit")
    print("-" * 50)


In [None]:
def main():
    #Entry point for the program
    print("\nWelcome to the Week 7 Authentication System!")

    while True:
        display_menu()
        choice = input("\nPlease select an option (1-3): ").strip()

        if choice == '1':
            #User registration flow
            print("\n--- USER REGISTRATION ---")
            username = input("Enter a username: ").strip()

            #Validate username
            is_valid, error_msg = validate_username(username)
            if not is_valid:
                print(f"Error: {error_msg}")
                continue

            password = input("Enter a password: ").strip()

            #Validate password
            is_valid, error_msg = validate_password(password)
            if not is_valid:
                print(f"Error: {error_msg}")
                continue

            #Confirm password
            password_confirm = input("Confirm password: ").strip()
            if password != password_confirm:
                print("Error: Passwords do not match.")
                continue

            #Register the user
            register_user(username, password)

        elif choice == '2':
            #User login flow
            print("\n--- USER LOGIN ---")
            username = input("Enter your username: ").strip()
            password = input("Enter your password: ").strip()

            #Attempt login
            if login_user(username, password):
                print("\nYou are now logged in.")
                input("\nPress Enter to return to main menu...")

        elif choice == '3':
            #Exit the program
            print("\nThank you for using the authentication system.")
            print("Made with <3 by Paarth")
            print("Exiting...")
            break

        else:
            #Invalid menu option
            print("\nError: Invalid option. Please select 1, 2, or 3.")

#Start the program
if __name__ == "__main__":
    main()



Welcome to the Week 7 Authentication System!

  MULTI-DOMAIN INTELLIGENCE PLATFORM
  Secure Authentication System

 Register a new user
 Login
 Exit
--------------------------------------------------



Please select an option (1-3):  1



--- USER REGISTRATION ---


Enter a username:  maryam
Enter a password:  Onay1221!
Confirm password:  onay1221!


Error: Passwords do not match.

  MULTI-DOMAIN INTELLIGENCE PLATFORM
  Secure Authentication System

 Register a new user
 Login
 Exit
--------------------------------------------------


In [None]:
#Start the authentication system
main()

In [None]:
#Name:Maryam Ayesha Khan
#MISIS:M01041338