From d8dad25d1996d376ea72cdcfc72f42c097fe8dcc Mon Sep 17 00:00:00 2001
From: fathonidf <daffafathoni@gmail.com>
Date: Wed, 15 Nov 2023 16:37:45 +0700
Subject: [PATCH] tutorial 7 selesai

---
 authentication/__init__.py                    |   0
 authentication/admin.py                       |   3 ++
 authentication/apps.py                        |   6 +++
 authentication/migrations/__init__.py         |   0
 authentication/models.py                      |   3 ++
 authentication/tests.py                       |   3 ++
 authentication/urls.py                        |   9 ++++
 authentication/views.py                       |  49 ++++++++++++++++++
 main/templates/main.html                      |   4 +-
 main/urls.py                                  |   5 +-
 main/views.py                                 |  24 ++++++++-
 .../__pycache__/settings.cpython-311.pyc      | Bin 3131 -> 3403 bytes
 .../__pycache__/urls.cpython-311.pyc          | Bin 1180 -> 1274 bytes
 shopping_list/settings.py                     |  12 ++++-
 shopping_list/urls.py                         |   3 +-
 15 files changed, 113 insertions(+), 8 deletions(-)
 create mode 100644 authentication/__init__.py
 create mode 100644 authentication/admin.py
 create mode 100644 authentication/apps.py
 create mode 100644 authentication/migrations/__init__.py
 create mode 100644 authentication/models.py
 create mode 100644 authentication/tests.py
 create mode 100644 authentication/urls.py
 create mode 100644 authentication/views.py

diff --git a/authentication/__init__.py b/authentication/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/authentication/admin.py b/authentication/admin.py
new file mode 100644
index 0000000..8c38f3f
--- /dev/null
+++ b/authentication/admin.py
@@ -0,0 +1,3 @@
+from django.contrib import admin
+
+# Register your models here.
diff --git a/authentication/apps.py b/authentication/apps.py
new file mode 100644
index 0000000..8bab8df
--- /dev/null
+++ b/authentication/apps.py
@@ -0,0 +1,6 @@
+from django.apps import AppConfig
+
+
+class AuthenticationConfig(AppConfig):
+    default_auto_field = 'django.db.models.BigAutoField'
+    name = 'authentication'
diff --git a/authentication/migrations/__init__.py b/authentication/migrations/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/authentication/models.py b/authentication/models.py
new file mode 100644
index 0000000..71a8362
--- /dev/null
+++ b/authentication/models.py
@@ -0,0 +1,3 @@
+from django.db import models
+
+# Create your models here.
diff --git a/authentication/tests.py b/authentication/tests.py
new file mode 100644
index 0000000..7ce503c
--- /dev/null
+++ b/authentication/tests.py
@@ -0,0 +1,3 @@
+from django.test import TestCase
+
+# Create your tests here.
diff --git a/authentication/urls.py b/authentication/urls.py
new file mode 100644
index 0000000..7a4c9b9
--- /dev/null
+++ b/authentication/urls.py
@@ -0,0 +1,9 @@
+from django.urls import path
+from authentication.views import login, logout
+
+app_name = 'authentication'
+
+urlpatterns = [
+    path('login/', login, name='login'),
+    path('logout/', logout, name='logout'),
+]
\ No newline at end of file
diff --git a/authentication/views.py b/authentication/views.py
new file mode 100644
index 0000000..a01cdec
--- /dev/null
+++ b/authentication/views.py
@@ -0,0 +1,49 @@
+from django.shortcuts import render
+from django.contrib.auth import authenticate, login as auth_login
+from django.http import JsonResponse
+from django.views.decorators.csrf import csrf_exempt
+from django.contrib.auth import logout as auth_logout
+
+@csrf_exempt
+def login(request):
+    username = request.POST['username']
+    password = request.POST['password']
+    user = authenticate(username=username, password=password)
+    if user is not None:
+        if user.is_active:
+            auth_login(request, user)
+            # Status login sukses.
+            return JsonResponse({
+                "username": user.username,
+                "status": True,
+                "message": "Login sukses!"
+            }, status=200)
+        else:
+            return JsonResponse({
+                "status": False,
+                "message": "Login gagal, akun dinonaktifkan."
+            }, status=401)
+
+    else:
+        return JsonResponse({
+            "status": False,
+            "message": "Login gagal, periksa kembali email atau kata sandi."
+        }, status=401)
+    
+
+@csrf_exempt
+def logout(request):
+    username = request.user.username
+
+    try:
+        auth_logout(request)
+        return JsonResponse({
+            "username": username,
+            "status": True,
+            "message": "Logout berhasil!"
+        }, status=200)
+    except:
+        return JsonResponse({
+        "status": False,
+        "message": "Logout gagal."
+        }, status=401)
\ No newline at end of file
diff --git a/main/templates/main.html b/main/templates/main.html
index 0cdf496..8e0b2ed 100644
--- a/main/templates/main.html
+++ b/main/templates/main.html
@@ -106,11 +106,11 @@ <h1 class="modal-title fs-5" id="exampleModalLabel">Add New Product</h1>
 <br />
 
 
-<a href="{% url 'main:create_product' %}">
+<!-- <a href="{% url 'main:create_product' %}">
     <button>
         Add New Product
     </button>
-</a>
+</a> -->
 
 <h5>Sesi terakhir login: {{ last_login }}</h5>
 
diff --git a/main/urls.py b/main/urls.py
index a328b0f..718eddb 100644
--- a/main/urls.py
+++ b/main/urls.py
@@ -1,5 +1,5 @@
 from django.urls import path
-from main.views import show_main, create_product, show_xml, show_json, show_xml_by_id, show_json_by_id, register, login_user, logout_user, edit_product, delete_product, \
+from main.views import create_product_flutter, show_main, create_product, show_xml, show_json, show_xml_by_id, show_json_by_id, register, login_user, logout_user, edit_product, delete_product, \
                         get_product_json, add_product_ajax
 
 app_name = 'main'
@@ -17,5 +17,6 @@
     path('json/<int:id>/', show_json_by_id, name='show_json_by_id'),
     path('', show_main, name='show_main'),
     path('get-product/', get_product_json, name='get_product_json'),
-    path('create-product-ajax/', add_product_ajax, name='add_product_ajax')
+    path('create-product-ajax/', add_product_ajax, name='add_product_ajax'),
+    path('create-flutter/', create_product_flutter, name='create_product_flutter'),
 ]
\ No newline at end of file
diff --git a/main/views.py b/main/views.py
index e844f31..f64c569 100644
--- a/main/views.py
+++ b/main/views.py
@@ -1,6 +1,7 @@
 import datetime
+import json
 from django.shortcuts import render
-from django.http import HttpResponseRedirect
+from django.http import HttpResponseNotFound, HttpResponseRedirect, JsonResponse
 from main.forms import ProductForm
 from django.urls import reverse
 from main.models import Product
@@ -127,4 +128,23 @@ def add_product_ajax(request):
 
         return HttpResponse(b"CREATED", status=201)
 
-    return HttpResponseNotFound()
\ No newline at end of file
+    return HttpResponseNotFound()
+
+@csrf_exempt
+def create_product_flutter(request):
+    if request.method == 'POST':
+        
+        data = json.loads(request.body)
+
+        new_product = Product.objects.create(
+            user = request.user,
+            name = data["name"],
+            price = int(data["price"]),
+            description = data["description"]
+        )
+
+        new_product.save()
+
+        return JsonResponse({"status": "success"}, status=200)
+    else:
+        return JsonResponse({"status": "error"}, status=401)
\ No newline at end of file
diff --git a/shopping_list/__pycache__/settings.cpython-311.pyc b/shopping_list/__pycache__/settings.cpython-311.pyc
index 9f0de9d4ad8f11beffe41933ecf2f4492abaa334..caede6bec947ce606300bf2cd262c70ab3d9172f 100644
GIT binary patch
delta 416
zcmdljaaxLRIWI340}y<y3rUR@n8+u=_-Ld0DMnfLD8&@^C?z0P24a;Ir6^S(R!d<H
zX3$jL{EcxoBO~YJNz8NPZ}BCTmSm*nm1HI-mSpDV-QrHpFDlMRO-xBGD%RxKY`~Jt
zD6NVlrk9(Ul9H2Jo>-Ks=bT@(xt;YKBby-52~{4G1K311=d&9#a@=C^%g;;IRNuUW
zBb2fJmYB1DP;k7XkB@&ih>Z6S@^ts~3q}!l4svyI^$YQI^a;Kt<QyF27Vqru@9pUt
zAMENJ8svIQG}tvb*wfz+O;`j)siUuJuxE(tEpcSU+#o}sGLwIDrf}H<UCRi>#UCc8
zb4^y_5@Pzm03#asK1gu#0R>=01J?(!%`)5~jQS5GWiK#@-GGpyk{1|+Zb-;nU=Y0_
U4ip!;A*FDEK^%gLY=Nc&0P)CuasU7T

delta 153
zcmX>twOfL3IWI340}#C7;z{-5pU5Y{cxt2iDMnW2U<OU4&3sI=85!9puVS9Vq{+TH
zl_i;R^Ly4qjBNZs9aSEa896jI-)EO+WYSdJ%*GkYIQc183YQsBjuD89&rA;Ho~*<n
m#PopyMl|q!5aHkh2|$Skt`8!cIe0`Exi2sX0a1|&P$vLKyCe+&

diff --git a/shopping_list/__pycache__/urls.cpython-311.pyc b/shopping_list/__pycache__/urls.cpython-311.pyc
index 21bb483bb18983da1f6f2e315e1214e084c714e7..a9217bf1acd2c341a73972b493798939c7e9345e 100644
GIT binary patch
delta 160
zcmbQk`HNG1IWI340}uq&hon|AGcY^`abSQ0%J{rwqI$Uy6GJLX3OkTwP2pI^$iT3g
zabkiPS2}YPM+#>!gC^I;6?>V)s#p_COEUDUgh5nlUP)$hVo7HH<ap)-jD3?8SaP&(
ruy8cEbcjz-pP+t0O8=se!4)Bci!6p$SPVa~v+y%DaD!kGAJAq1SMMl>

delta 89
zcmeyxIfqkyIWI340}#C7;z@O3W?*;>;=lkql<~P{qIx-3I#U!!3VSevCdbALdzmJ$
bWZuPCGC74MN8kf1Ge1)UHwYH-0kr@C6k!tN

diff --git a/shopping_list/settings.py b/shopping_list/settings.py
index 6eed3df..9e03049 100644
--- a/shopping_list/settings.py
+++ b/shopping_list/settings.py
@@ -43,7 +43,9 @@
     'django.contrib.sessions',
     'django.contrib.messages',
     'django.contrib.staticfiles',
-    'main'
+    'main',
+    'authentication',
+    'corsheaders',
 ]
 
 MIDDLEWARE = [
@@ -54,6 +56,7 @@
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
+    'corsheaders.middleware.CorsMiddleware'
 ]
 
 ROOT_URLCONF = 'shopping_list.urls'
@@ -137,3 +140,10 @@
 # https://docs.djangoproject.com/en/4.2/ref/settings/#default-auto-field
 
 DEFAULT_AUTO_FIELD = 'django.db.models.BigAutoField'
+
+CORS_ALLOW_ALL_ORIGINS = True
+CORS_ALLOW_CREDENTIALS = True
+CSRF_COOKIE_SECURE = True
+SESSION_COOKIE_SECURE = True
+CSRF_COOKIE_SAMESITE = 'None'
+SESSION_COOKIE_SAMESITE = 'None'
\ No newline at end of file
diff --git a/shopping_list/urls.py b/shopping_list/urls.py
index 88f607e..f87aaac 100644
--- a/shopping_list/urls.py
+++ b/shopping_list/urls.py
@@ -19,5 +19,6 @@
 
 urlpatterns = [
     path('admin/', admin.site.urls),
-    path('', include('main.urls'))
+    path('', include('main.urls')),
+    path('auth/', include('authentication.urls')),
 ]