File size: 11,616 Bytes
5cf429e cc34811 94b8a3f 5cf429e 94b8a3f 7191e6a 5cf429e d1be50a 7191e6a 48a48d2 5cf429e 7191e6a 5cf429e 94b8a3f 1d61e4b 2a5b992 7191e6a 5cf429e d1be50a 5cf429e 7191e6a 2a5b992 7191e6a 2a5b992 d1be50a 2a5b992 7191e6a 2a5b992 7191e6a 2a5b992 7191e6a 5cf429e 7191e6a 5cf429e 7191e6a 5cf429e 94b8a3f 7191e6a 5cf429e 7191e6a 5cf429e d1be50a 94b8a3f d1be50a 7191e6a d1be50a 94b8a3f 7191e6a 94b8a3f 5cf429e 7191e6a 94b8a3f 7191e6a 94b8a3f 5cf429e 94b8a3f 7191e6a d1be50a 7191e6a d1be50a 7191e6a 5cf429e d1be50a 5cf429e d1be50a 5cf429e 7191e6a 5cf429e 7191e6a 5cf429e 7191e6a d1be50a 7191e6a 94b8a3f 5cf429e 7191e6a d1be50a 7191e6a 90e469d 5cf429e 94b8a3f d1be50a 94b8a3f d1be50a 7191e6a 94b8a3f 5cf429e 7191e6a 90e469d 5cf429e 94b8a3f d1be50a 7191e6a 2a5b992 7191e6a 2a5b992 7191e6a 2a5b992 d1be50a 7191e6a 5cf429e 2a5b992 5cf429e d1be50a 7191e6a 5cf429e |
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 |
import gradio as gr
from gradio_client import Client
from PIL import Image
import base64
import io
import json
import logging
import requests
import tempfile
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives.asymmetric import rsa
# --- Configure Logging ---
logging.basicConfig(level=logging.INFO, format='%(asctime)s - %(name)s - %(levelname)s - %(message)s')
logger = logging.getLogger(__name__)
# ==============================================================================
# CONFIGURATION: IDs AND URLs OF THE REMOTE SERVICES
# ==============================================================================
CREATOR_SPACE_ID = "broadfield-dev/KeyLock-Auth-Creator"
SERVER_SPACE_ID = "broadfield-dev/KeyLock-Auth-Server"
CREATOR_ENDPOINTS_JSON_URL = "https://huggingface.co/spaces/broadfield-dev/KeyLock-Auth-Creator/raw/main/endpoints.json"
BASE_HF_URL = "https://huggingface.co/spaces/"
CREATOR_URL = f"{BASE_HF_URL}{CREATOR_SPACE_ID}"
SERVER_URL = f"{BASE_HF_URL}{SERVER_SPACE_ID}"
CREATOR_APP_PY_URL = f"{CREATOR_URL}/blob/main/app.py"
SERVER_APP_PY_URL = f"{SERVER_URL}/blob/main/app.py"
# ==============================================================================
# API CALL WRAPPER FUNCTIONS (Your working versions)
# ==============================================================================
def get_creator_endpoints():
"""Fetches the list of supported endpoints by making an HTTP request to the Creator's JSON file."""
status = f"Fetching endpoint list from {CREATOR_ENDPOINTS_JSON_URL}..."
yield gr.Dropdown(choices=[], value=None, label="β³ Fetching..."), status, [] # Initial state
try:
response = requests.get(CREATOR_ENDPOINTS_JSON_URL, timeout=10)
response.raise_for_status()
endpoints = response.json()
endpoint_names = [e['name'] for e in endpoints]
status = f"β
Success! Found {len(endpoint_names)} endpoints."
yield gr.Dropdown(choices=endpoint_names, value=endpoint_names[0] if endpoint_names else None, label="Target Service"), status, endpoints
except Exception as e:
logger.error(f"Failed to get endpoints from creator's JSON file: {e}", exc_info=True)
status = f"β Error: Could not fetch configuration. Check the URL and if the 'endpoints.json' file is public. Details: {e}"
yield gr.Dropdown(choices=[], value=None, label="Error fetching services"), status, []
def create_image_via_api(service_name: str, secret_data: str, available_endpoints: list):
"""Calls the Creator Space API to generate an encrypted image for a selected service."""
if not all([service_name, secret_data]):
raise gr.Error("Please select a service and provide secret data.")
status = f"Looking up public key for '{service_name}'..."
yield None, None, status
public_key = next((e['public_key'] for e in available_endpoints if e['name'] == service_name), None)
if not public_key:
raise gr.Error(f"Could not find public key for '{service_name}' in the fetched configuration.")
status = f"Connecting to Creator: {CREATOR_SPACE_ID}..."
yield None, None, status
try:
client = Client(src=CREATOR_SPACE_ID)
temp_filepath = client.predict(secret_data, public_key, api_name="/create_image")
if not temp_filepath: raise gr.Error("Creator API did not return an image.")
# --- PNG FIX ---
# The API returns a path to a temp file which could be any format.
# We open it, ensure it's saved as PNG, and return that path.
created_image = Image.open(temp_filepath)
with tempfile.NamedTemporaryFile(suffix=".png", delete=False) as png_file:
created_image.save(png_file.name, "PNG")
png_filepath = png_file.name
status = f"β
Success! Image created for '{service_name}'."
yield created_image, png_filepath, status
except Exception as e:
logger.error(f"Creator API call failed: {e}", exc_info=True)
yield None, None, f"β Error calling Creator API: {e}"
def decrypt_image_via_api(image: Image.Image):
"""Calls the Server Space API to decrypt an image."""
if image is None: raise gr.Error("Please upload an image to decrypt.")
status = f"Connecting to Server: {SERVER_SPACE_ID}..."
yield None, status
try:
client = Client(src=SERVER_SPACE_ID)
with io.BytesIO() as buffer:
image.save(buffer, format="PNG")
b64_string = base64.b64encode(buffer.getvalue()).decode("utf-8")
status = f"Calling API on {SERVER_SPACE_ID}..."
yield None, status
decrypted_json = client.predict(b64_string, api_name="/keylock-auth-decoder")
status = "β
Success! Data decrypted by the Server."
yield decrypted_json, status
except Exception as e:
logger.error(f"Server API call failed: {e}", exc_info=True)
yield None, f"β Error calling Server API: {e}"
def generate_rsa_keys():
"""Generates a new RSA key pair."""
private_key = rsa.generate_private_key(public_exponent=65537, key_size=2048)
private_pem = private_key.private_bytes(
encoding=serialization.Encoding.PEM, format=serialization.PrivateFormat.PKCS8,
encryption_algorithm=serialization.NoEncryption()
).decode('utf-8')
public_pem = private_key.public_key().public_bytes(
encoding=serialization.Encoding.PEM, format=serialization.PublicFormat.SubjectPublicKeyInfo
).decode('utf-8')
return private_pem, public_pem
# ==============================================================================
# GRADIO DASHBOARD INTERFACE
# ==============================================================================
theme = gr.themes.Base(
primary_hue=gr.themes.colors.blue, secondary_hue=gr.themes.colors.sky, neutral_hue=gr.themes.colors.slate,
font=(gr.themes.GoogleFont("Inter"), "system-ui", "sans-serif"),
).set(
body_background_fill="#F1F5F9", panel_background_fill="white", block_background_fill="white",
block_border_width="1px", block_shadow="*shadow_drop_lg",
button_primary_background_fill="*primary_600", button_primary_background_fill_hover="*primary_700",
)
with gr.Blocks(theme=theme, title="KeyLock Operations Dashboard") as demo:
endpoints_state = gr.State([])
gr.Markdown("# π KeyLock Operations Dashboard")
gr.Markdown("A centralized dashboard to manage and demonstrate the entire KeyLock ecosystem, powered by live API calls to dedicated services.")
with gr.Tabs() as tabs:
with gr.TabItem("β Auth Creator", id=0):
gr.Markdown("## Create an Encrypted Authentication Image")
gr.Markdown(f"This tool calls the **[{CREATOR_SPACE_ID}]({CREATOR_URL})** service to encrypt data for a chosen target. The list of targets is fetched live from the Creator's configuration.")
with gr.Row(variant="panel"):
with gr.Column(scale=2):
with gr.Row():
creator_service_dropdown = gr.Dropdown(label="Target Service", interactive=True, info="Select the API server you want to encrypt data for.")
refresh_button = gr.Button("π", scale=0, size="sm", tooltip="Refresh Target Service List")
creator_secret_input = gr.Textbox(lines=8, label="Secret Data to Encrypt", placeholder="API_KEY: sk-123...\nUSER: demo-user")
creator_button = gr.Button("β¨ Create Auth Image via API", variant="primary")
with gr.Column(scale=1):
creator_status = gr.Textbox(label="Status", interactive=False, lines=2)
creator_image_output = gr.Image(label="Image from Creator Service", type="pil", show_download_button=False) # Download handled by gr.File
# --- PNG FIX ---
# Use a dedicated, visible File component for reliable PNG downloads.
creator_download_output = gr.File(label="Download Image as PNG", interactive=False)
with gr.TabItem("β‘ Client / Decoder", id=1):
gr.Markdown("## Decrypt an Authentication Image")
gr.Markdown(f"This tool acts as a client, calling the **[{SERVER_SPACE_ID}]({SERVER_URL})** service to decrypt an image using its securely stored private key.")
with gr.Row(variant="panel"):
with gr.Column(scale=1):
client_image_input = gr.Image(type="pil", label="Upload Encrypted Auth Image", sources=["upload", "clipboard"])
client_button = gr.Button("π Decrypt Image via Server API", variant="primary")
with gr.Column(scale=1):
client_status = gr.Textbox(label="Status", interactive=False, lines=2)
client_json_output = gr.JSON(label="Decrypted Data from Server")
with gr.TabItem("βΉοΈ Service Information", id=2):
gr.Markdown("## Ecosystem Architecture")
gr.Markdown("This dashboard coordinates separate Hugging Face Spaces to demonstrate a secure, decoupled workflow. Each service has a specific role.")
with gr.Row():
with gr.Column():
gr.Markdown(f"### π Auth Creator Service\n- **Space:** [{CREATOR_SPACE_ID}]({CREATOR_URL})\n- **Role:** Provides an API to encrypt data for various targets defined in its `endpoints.json` file.\n- **Source Code:** [app.py]({CREATOR_APP_PY_URL})")
with gr.Column():
gr.Markdown(f"### π‘ Decoder Server\n- **Space:** [{SERVER_SPACE_ID}]({SERVER_URL})\n- **Role:** The trusted authority. It holds a secret private key and provides a secure API to decrypt images.\n- **Source Code:** [app.py]({SERVER_APP_PY_URL})")
# --- Generate Keys moved to a closed Accordion ---
with gr.Accordion("π RSA Key Pair Generator", open=False):
gr.Markdown("Create a new public/private key pair. The public key can be added to a service's configuration to allow it to be a target for the Auth Creator.")
with gr.Row():
with gr.Column():
output_public_key = gr.Textbox(lines=10, label="Generated Public Key (Share This)", interactive=False, show_copy_button=True)
with gr.Column():
output_private_key = gr.Textbox(lines=10, label="Generated Private Key (Keep Secret!)", interactive=False, show_copy_button=True)
gen_keys_button = gr.Button("Generate New 2048-bit Key Pair", variant="secondary")
# --- Wire up the component logic ---
gen_keys_button.click(fn=generate_rsa_keys, inputs=None, outputs=[output_private_key, output_public_key])
def refresh_endpoints():
*_, last_yield = get_creator_endpoints()
return last_yield
refresh_button.click(fn=refresh_endpoints, outputs=[creator_service_dropdown, creator_status, endpoints_state])
demo.load(fn=refresh_endpoints, outputs=[creator_service_dropdown, creator_status, endpoints_state])
creator_button.click(
fn=create_image_via_api,
inputs=[creator_service_dropdown, creator_secret_input, endpoints_state],
outputs=[creator_image_output, creator_download_output, creator_status] # Now outputs to the gr.File component
)
client_button.click(fn=decrypt_image_via_api, inputs=[client_image_input], outputs=[client_json_output, client_status])
if __name__ == "__main__":
demo.launch() |