Amélioration app Gestion users

2025-08-21 09:31:40 +02:00
parent d3e192591e
commit e784c85e36
1 changed files with 234 additions and 131 deletions
--- a/app/creer_user.py
+++ b/app/creer_user.py
@@ -1,4 +1,4 @@
-# app_users.py — création + modification de champs (sans sidebar, .env only)
+# app_users.py — création + modification de champs (wide + onglets + grille)
 import os
 import re
 from datetime import date, datetime
@@ -9,7 +9,20 @@ from mysql.connector import errorcode
 import streamlit as st
 from dotenv import load_dotenv

+# -----------------------
+# Auth minimale
+# -----------------------
 def require_login():
+    st.markdown(
+        """
+        <style>
+        body {
+            background-color: #f2f2f2;
+        }
+        </style>
+        """,
+        unsafe_allow_html=True
+    )
    load_dotenv()
    admin_user = os.getenv("ADMIN_USER", "admin")
    admin_hash = os.getenv("ADMIN_PASS_HASH")
@@ -22,21 +35,36 @@ def require_login():
        st.session_state.auth_ok = False

    if not st.session_state.auth_ok:
-        st.title("🔐 Accès restreint")
-        u = st.text_input("Utilisateur")
-        p = st.text_input("Mot de passe", type="password")
-        if st.button("Se connecter"):
+        st.markdown("<h2 style='text-align:center;'>🔐 Accès restreint</h2>", unsafe_allow_html=True)
+
+        # conteneur centré
+        login_left, login_center, login_right = st.columns([1, 2, 1])
+        with login_center:
+            st.markdown(
+                """
+                <div style='border:1px solid #ddd; border-radius:12px; padding:2rem; background:#fafafa;'>
+                """,
+                unsafe_allow_html=True
+            )
+            u = st.text_input("Utilisateur", key="login_user")
+            p = st.text_input("Mot de passe", type="password", key="login_pass")
+
+            if st.button("Se connecter", use_container_width=True):
                if u == admin_user and bcrypt.checkpw(p.encode(), admin_hash.encode()):
                    st.session_state.auth_ok = True
-                st.rerun()   # ✅ nouvelle fonction
+                    st.rerun()
                else:
                    st.error("Identifiants invalides")
+
+            st.markdown("</div>", unsafe_allow_html=True)
+
        st.stop()

 require_login()
-# ======================
-# Connexion MySQL via .env
-# ======================
+
+# -----------------------
+# Connexion MySQL
+# -----------------------
@st.cache_resource
 def get_connection():
    load_dotenv()
@@ -56,9 +84,9 @@ def get_connection():
        host=host, port=port, user=user, password=pwd, database=db, autocommit=True
    )

-# ======================
+# -----------------------
 # Utilitaires
-# ======================
+# -----------------------
 EMAIL_RE = re.compile(r"^[^@\s]+@[^@\s]+\.[^@\s]+$")

 def normalize_phone(phone: str | None) -> str | None:
@@ -69,7 +97,6 @@ def normalize_phone(phone: str | None) -> str | None:
 def to_sql_date(d: date | str) -> str:
    if isinstance(d, date):
        return d.strftime("%Y-%m-%d")
-    # accepte JJ/MM/AAAA
    for fmt in ("%Y-%m-%d", "%d/%m/%Y"):
        try:
            return datetime.strptime(d, fmt).strftime("%Y-%m-%d")
@@ -156,7 +183,6 @@ def update_field(cnx, username: str, field: str, value):
        raise ValueError("Champ non autorisé.")
    sql_field = allowed[field]

-    # validations
    if field == "email":
        if not EMAIL_RE.match(str(value)):
            raise ValueError("Email invalide.")
@@ -180,14 +206,27 @@ def update_password(cnx, username: str, new_password: str):
        )
    return pwd_hash

+# -----------------------
+# UI
+# -----------------------
+st.set_page_config(page_title="Acces.Utilisateurs", page_icon="👤", layout="wide")

-# ======================
-# UI Streamlit
-# ======================
-st.set_page_config(page_title="Acces.Utilisateurs", page_icon="👤", layout="centered")
-st.title("Acces.Utilisateurs")
+# CSS doux
+st.markdown(
+    """
+    <style>
+      .block-container {padding-top: 1.25rem; padding-bottom: 2rem; max-width: 1400px;}
+      button[kind="primary"], .stButton>button {height: 2.6rem;}
+      .stForm {border: 1px solid #eee; padding: 1rem; border-radius: 12px;}
+      .soft-card {border:1px solid #eee; padding:0.75rem 1rem; border-radius:12px; background:#fafafa;}
+    </style>
+    """,
+    unsafe_allow_html=True
+)

-# Connexion
+st.title("👤 Acces.Utilisateurs")
+
+# Connexion DB (badge)
 try:
    cnx = get_connection()
    st.caption("Connexion MySQL via `.env` : **OK** ✅")
@@ -195,25 +234,80 @@ except Exception as e:
    st.error(f"Connexion MySQL impossible : {e}")
    st.stop()

-# --- Création ---
+# Bouton Sortie / Exit
+hdr_l, hdr_r = st.columns([1, 0.18])
+with hdr_r:
+    if st.button("🔒 SORTIE / EXIT", use_container_width=True, help="Se déconnecter et verrouiller l'accès"):
+        st.session_state.auth_ok = False
+        st.rerun()
+
+# -----------------------
+# Onglets
+# -----------------------
+tab_list, tab_create, tab_edit, tab_security = st.tabs(
+    ["📋 Liste", "🆕 Créer", "✏️ Modifier", "🔐 Sécurité"]
+)
+
+# --- Onglet Liste ---
+with tab_list:
+    st.subheader("Utilisateurs récents")
+    try:
+        import pandas as pd
+        rows = list_users(cnx, limit=1000)
+        df = pd.DataFrame(rows)
+
+        if not df.empty:
+            df["DateExpiration"] = pd.to_datetime(df["DateExpiration"], errors="coerce").dt.date
+
+            from datetime import date as _date
+            today = _date.today()
+            expired_mask = df["DateExpiration"] <= today
+
+            col_a, col_b = st.columns(2)
+            col_a.metric("Total utilisateurs", len(df))
+            col_b.metric("Comptes périmés", int(expired_mask.sum()))
+
+            def style_expired(row):
+                if row["DateExpiration"] <= today:
+                    return ["color: white; background-color: #d32f2f;"] * len(row)
+                return [""] * len(row)
+            styled = df.style.apply(style_expired, axis=1)
+
+            visible_rows = len(df)
+            row_px = 36
+            header_px = 48
+            padding_px = 24
+            height = min(1000, header_px + row_px * visible_rows + padding_px)
+
+            st.dataframe(
+                styled,
+                use_container_width=True,
+                hide_index=True,
+                height=height,
+            )
+        else:
+            st.info("Aucun utilisateur à afficher.")
+    except Exception as e:
+        st.warning(f"Impossible de lister les utilisateurs : {e}")
+
+# --- Onglet Créer ---
+with tab_create:
    with st.form("create_user_form", clear_on_submit=False):
        st.subheader("Nouveau compte")

-    col1, col2 = st.columns(2)
-    username   = col1.text_input("NomUtilisateur", placeholder="ex: cjaquier")
-    full_name  = col2.text_input("Nom_complet", placeholder="Clément JAQUIER")
+        c1, c2, c3 = st.columns([1.2, 1.5, 1])
+        username   = c1.text_input("NomUtilisateur", placeholder="ex: cjaquier")
+        full_name  = c2.text_input("Nom_complet", placeholder="Clément JAQUIER")
+        site       = c3.text_input("Site", placeholder="Roissy", value="Roissy")

-    col3, col4 = st.columns(2)
-    site   = col3.text_input("Site", placeholder="Roissy", value="Roissy")
-    email  = col4.text_input("email", placeholder="prenom.nom@domaine.com")
+        c4, c5, c6 = st.columns([1.4, 1, 1])
+        email   = c4.text_input("email", placeholder="prenom.nom@domaine.com")
+        phone   = c5.text_input("Téléphone", placeholder="06 12 12 35 32")
+        expires = c6.date_input("DateExpiration", value=date.today())

-    col5, col6 = st.columns(2)
-    phone   = col5.text_input("Téléphone", placeholder="06 12 12 35 32")
-    expires = col6.date_input("DateExpiration", value=date.today())
-
-    col7, col8 = st.columns(2)
-    password = col7.text_input("Mot de passe (saisie)", type="password")
-    confirm  = col8.text_input("Confirmer mot de passe", type="password")
+        c7, c8 = st.columns(2)
+        password = c7.text_input("Mot de passe (saisie)", type="password")
+        confirm  = c8.text_input("Confirmer mot de passe", type="password")

        store_plain = st.checkbox("Remplir aussi MotDePasse en clair (déconseillé)", value=False)
        submitted = st.form_submit_button("Créer l’utilisateur", use_container_width=True)
@@ -247,12 +341,10 @@ with st.form("create_user_form", clear_on_submit=False):
                except Exception as e:
                    st.error(f"Erreur : {e}")

-st.divider()
-
-# --- Modification d'un champ ---
+# --- Onglet Modifier ---
+with tab_edit:
    st.subheader("Modifier un utilisateur existant")

-# chargement liste
    try:
        users = list_users(cnx, limit=1000)
        usernames = [u["NomUtilisateur"] for u in users]
@@ -261,22 +353,16 @@ except Exception as e:
        usernames = []
        st.warning(f"Impossible de charger la liste des utilisateurs : {e}")

-colA, colB = st.columns([2, 3])
-with colA:
-    sel_user = st.selectbox("Utilisateur", usernames, placeholder="Choisir un utilisateur")
-with colB:
-    if sel_user:
-        details = get_user(cnx, sel_user)
-        if details:
-            st.caption(f"Actuel — Nom: **{details['Nom_complet']}**, Site: **{details['Site']}**, "
-                       f"Expiration: **{details['DateExpiration']}**, Tél: **{details['Telephone']}**, "
-                       f"Email: **{details['email']}**")
+    top_left, top_right = st.columns([1.2, 2])
+
+    with top_left:
+        sel_user = st.selectbox("Utilisateur", usernames, placeholder="Choisir un utilisateur")
+
+        field = st.selectbox(
+            "Champ à modifier",
+            ["Nom_complet", "Site", "Telephone", "DateExpiration", "email"]
+        )

-col1, col2 = st.columns(2)
-with col1:
-    field = st.selectbox("Champ à modifier", ["Nom_complet", "Site", "Telephone", "DateExpiration", "email"])
-with col2:
-    # widget adapté au champ
        if field == "DateExpiration":
            new_value = st.date_input("Nouvelle valeur (date)", value=date.today(), key="new_date")
        elif field == "Telephone":
@@ -284,9 +370,25 @@ with col2:
        else:
            new_value = st.text_input("Nouvelle valeur", key="new_text")

-btn_update = st.button("Mettre à jour le champ", type="primary", use_container_width=True, disabled=not sel_user)
+        update_btn = st.button(
+            "Mettre à jour le champ",
+            type="primary",
+            use_container_width=True,
+            disabled=not sel_user,
+        )

-if btn_update and sel_user:
+    with top_right:
+        if sel_user:
+            details = get_user(cnx, sel_user)
+            if details:
+                c1, c2, c3, c4, c5 = st.columns(5, gap="small")
+                c1.markdown(f"<div class='soft-card'><b>Nom</b><br>{details['Nom_complet'] or ''}</div>", unsafe_allow_html=True)
+                c2.markdown(f"<div class='soft-card'><b>Site</b><br>{details['Site'] or ''}</div>", unsafe_allow_html=True)
+                c3.markdown(f"<div class='soft-card'><b>Expire</b><br>{details['DateExpiration'] or ''}</div>", unsafe_allow_html=True)
+                c4.markdown(f"<div class='soft-card'><b>Tél</b><br>{details['Telephone'] or ''}</div>", unsafe_allow_html=True)
+                c5.markdown(f"<div class='soft-card'><b>Email</b><br>{details['email'] or ''}</div>", unsafe_allow_html=True)
+
+    if update_btn and sel_user:
        try:
            update_field(cnx, sel_user, field, new_value)
            st.success(f"✅ {field} mis à jour pour {sel_user}")
@@ -295,13 +397,22 @@ if btn_update and sel_user:
        except Exception as e:
            st.error(f"Erreur : {e}")

-# --- Réinitialisation mot de passe (optionnel) ---
-with st.expander("🔐 Réinitialiser le mot de passe (bcrypt)"):
-    user_pw = st.selectbox("Utilisateur", usernames, key="pw_user", placeholder="Choisir un utilisateur")
+# --- Onglet Sécurité ---
+with tab_security:
+    st.subheader("Réinitialiser le mot de passe (bcrypt)")
+    try:
+        if 'user_cache_for_pw' not in st.session_state:
+            st.session_state.user_cache_for_pw = [u["NomUtilisateur"] for u in list_users(cnx, limit=1000)]
+        pw_user_list = st.session_state.user_cache_for_pw
+    except Exception:
+        pw_user_list = []
+
+    user_pw = st.selectbox("Utilisateur", pw_user_list, key="pw_user", placeholder="Choisir un utilisateur")
    colp1, colp2 = st.columns(2)
    new_pw  = colp1.text_input("Nouveau mot de passe", type="password")
    new_pw2 = colp2.text_input("Confirmer", type="password")
-    if st.button("Mettre à jour le mot de passe", disabled=not user_pw):
+
+    if st.button("Mettre à jour le mot de passe", disabled=not user_pw, use_container_width=True):
        if not new_pw:
            st.error("Mot de passe vide.")
        elif new_pw != new_pw2:
@@ -314,11 +425,3 @@ with st.expander("🔐 Réinitialiser le mot de passe (bcrypt)"):
                st.code(h)
            except Exception as e:
                st.error(f"Erreur : {e}")
-
-st.divider()
-st.subheader("Utilisateurs récents")
-try:
-    rows = list_users(cnx, limit=200)
-    st.dataframe(rows, use_container_width=True, hide_index=True)
-except Exception as e:
-    st.warning(f"Impossible de lister les utilisateurs : {e}")