syntaxmatrix 2.5.5.5__py3-none-any.whl → 2.5.6__py3-none-any.whl

syntaxmatrix/__init__.py

@@ -44,8 +44,8 @@ get_widget_value = _app_instance.get_widget_value
 save_embed_model = _app_instance.save_embed_model
 load_embed_model = _app_instance.load_embed_model
 delete_embed_key = _app_instance.delete_embed_key
-set_prompt_profile = _app_instance.set_prompt_profile
-set_prompt_instructions = _app_instance.set_prompt_instructions
+set_smxai_identity = _app_instance.set_smxai_identity
+set_smxai_instructions = _app_instance.set_smxai_instructions
 set_website_description = _app_instance.set_website_description
 smiv_index = _app_instance.smiv_index
 smpv_search  = _app_instance.smpv_search
@@ -54,6 +54,7 @@ process_query_stream = _app_instance.process_query_stream
 process_query = _app_instance.process_query
 embed_query = _app_instance.embed_query
 enable_user_files = _app_instance.enable_user_files
+enable_registration = _app_instance.enable_registration
 stream_write = _app_instance.stream_write
 enable_stream = _app_instance.enable_stream
 stream = _app_instance.stream

syntaxmatrix/auth.py

@@ -41,6 +41,19 @@ def init_auth_db():
     );
     """)
 
+    # Ensure new must_reset_password flag exists for mandatory first-login reset
+    try:
+        cur = conn.execute("PRAGMA table_info(users)")
+        cols = [row[1] for row in cur.fetchall()]
+        if "must_reset_password" not in cols:
+            conn.execute(
+                "ALTER TABLE users "
+                "ADD COLUMN must_reset_password INTEGER NOT NULL DEFAULT 0"
+            )
+    except Exception:
+        # Best-effort migration; if this fails we still let the app start
+        pass
+
     # --- Roles table ---
     conn.execute("""
     CREATE TABLE IF NOT EXISTS roles (
@@ -302,6 +315,60 @@ def register_user(email:str, username:str, password:str, role:str = "user") -> b
     finally:
         conn.close()
 
+def set_must_reset_by_email(email: str, must_reset: bool = True) -> None:
+    """
+    Mark a user account as requiring a password reset (or clear the flag) by email.
+    Used when an admin creates a user with a temporary password.
+    """
+    if not email:
+        return
+    conn = _get_conn()
+    try:
+        conn.execute(
+            "UPDATE users SET must_reset_password = ? WHERE email = ?",
+            (1 if must_reset else 0, email),
+        )
+        conn.commit()
+    finally:
+        conn.close()
+
+
+def user_must_reset_password(user_id: int) -> bool:
+    """
+    Check whether this user is currently forced to change their password.
+    """
+    if not user_id:
+        return False
+    conn = _get_conn()
+    try:
+        cur = conn.execute(
+            "SELECT must_reset_password FROM users WHERE id = ?",
+            (user_id,),
+        )
+        row = cur.fetchone()
+    finally:
+        conn.close()
+    if not row:
+        return False
+    return bool(row[0])
+
+
+def clear_must_reset(user_id: int) -> None:
+    """
+    Clear the mandatory-reset flag (called after the user has changed their password).
+    """
+    if not user_id:
+        return
+    conn = _get_conn()
+    try:
+        conn.execute(
+            "UPDATE users SET must_reset_password = 0 WHERE id = ?",
+            (user_id,),
+        )
+        conn.commit()
+    finally:
+        conn.close()
+
 def authenticate(email:str, password:str) -> Optional[Dict]:
     """Return user dict if creds match, else None."""
     conn = _get_conn()
@@ -315,15 +382,85 @@ def authenticate(email:str, password:str) -> Optional[Dict]:
         return {"id": row[0], "email":row[1], "username": row[2], "role": row[4]}
     return None
 
+def verify_password(user_id: int, candidate: str) -> bool:
+    """
+    Check whether `candidate` matches the current password of the user.
+    Used by the change-password flow.
+    """
+    if not user_id or not candidate:
+        return False
+
+    conn = _get_conn()
+    try:
+        cur = conn.execute(
+            "SELECT password FROM users WHERE id = ?",
+            (user_id,),
+        )
+        row = cur.fetchone()
+    finally:
+        conn.close()
+
+    if not row:
+        return False
+    return check_password_hash(row[0], candidate)
+
+
+def update_password(user_id: int, new_password: str) -> None:
+    """
+    Overwrite the user's password with a new hash.
+    """
+    if not user_id or not new_password:
+        return
+
+    hashed = generate_password_hash(new_password)
+    conn = _get_conn()
+    try:
+        conn.execute(
+            "UPDATE users SET password = ? WHERE id = ?",
+            (hashed, user_id),
+        )
+        conn.commit()
+    finally:
+        conn.close()
+
+def update_password(user_id: int, new_password: str) -> bool:
+    """
+    Update the stored password hash for a given user id.
+    Returns True on success, False if something goes wrong.
+    """
+    hashed = generate_password_hash(new_password)
+    conn = _get_conn()
+    try:
+        conn.execute(
+            "UPDATE users SET password = ? WHERE id = ?",
+            (hashed, user_id),
+        )
+        conn.commit()
+        return True
+    except Exception:
+        # We do not raise inside auth; caller shows a friendly message instead.
+        return False
+    finally:
+        conn.close()
+
 def login_required(f):
     @wraps(f)
-    def decorated(*args, **kwargs):
-        if not session.get("user_id"):
-            flash("Please log in to access this page.")
+    def wrapper(*args, **kwargs):
+        if "user_id" not in session:
+            flash("Please log in.")
             return redirect(url_for("login", next=request.path))
-        return f(*args, **kwargs)
-    return decorated
 
+        # If the account is flagged for a mandatory reset, force the user
+        # to the change-password screen before allowing anything else.
+        if session.get("must_reset_password") and request.endpoint not in (
+            "change_password",
+            "logout",
+        ):
+            flash("Please set a new password before continuing.")
+            return redirect(url_for("change_password"))
+
+        return f(*args, **kwargs)
+    return wrapper
 
 def admin_required(view):
     @wraps(view)

syntaxmatrix/core.py

@@ -54,7 +54,7 @@ class SyntaxMUI:
             port="5080", 
             user_icon="👩🏿‍🦲",
             bot_icon="<img src='/static/icons/favicon.png' width=20' alt='bot'/>",
-            favicon="/static/icons/favicon.png",      
+            favicon="",  # /static/icons/favicon.png",      
             site_logo="<img src='/static/icons/logo.png' width='30' alt='logo'/>",           
             site_title="SyntaxMatrix", 
             project_name="smxAI", 
@@ -75,6 +75,7 @@ class SyntaxMUI:
         self.ui_mode = ui_mode
         self.theme_toggle_enabled = False
         self.user_files_enabled = False
+        self.registration_enabled = False
         self.smxai_identity = SMXAI_CHAT_ID
         self.smxai_instructions = SMXAI_CHAT_INSTRUCTIONS    
         self.website_description = SMXAI_WEBSITE_DESCRIPTION
@@ -311,6 +312,9 @@ class SyntaxMUI:
     
     def enable_user_files(self):
         self.user_files_enabled = True
+
+    def enable_registration(self):
+        self.registration_enabled = True
     
     @staticmethod
     def columns(components):
@@ -514,12 +518,12 @@ class SyntaxMUI:
     # ──────────────────────────────────────────────────────────────
     #  *********** LLM CLIENT HELPERS  **********************
     # ──────────────────────────────────────────────────────────────
-    def set_prompt_profile(self, profile):
-        self.ai_chat_id = profile
+    def set_smxai_identity(self, profile):
+        self.set_smxai_identity = profile
     
 
-    def set_prompt_instructions(self, instructions):
-        self.ai_chat_instructions = instructions
+    def set_smxai_instructions(self, instructions):
+        self.set_smxai_instructions = instructions
 
 
     def set_website_description(self, desc):

syntaxmatrix/generate_page.py

@@ -35,15 +35,25 @@ _SMX_FADEIN_CSS = '''
 </style>
 '''.strip()
 
-_SMX_LAYOUT_CSS = '''
+_SMX_LAYOUT_CSS = """
 <style>
-.smx-hero{max-width:1200px;margin:0 auto;padding:clamp(1.5rem,3vw,2.5rem);}
-.smx-hero .smx-img{aspect-ratio:16/9;width:100%;max-height:min(56vh,560px);object-fit:cover;border-radius:1rem;}
-.smx-card{border-radius:1rem;box-shadow:0 6px 20px rgba(2,6,23,0.06);}
-#smx-root,[id^="smx-"]{margin-top:clamp(16px,2vw,32px);margin-bottom:clamp(24px,3vw,48px);padding-inline:clamp(12px,2vw,24px);}
-#smx-root .smx-container,[id^="smx-"] .smx-container{max-width:1200px;margin-inline:auto;}
+    #smx-root,
+    [id^="smx-"]{
+        margin-top: 0;
+        margin-bottom: 40px;
+        /* No side padding on desktop */
+        padding-inline: 0;
+    }
+
+    /* Keep a bit of breathing room on small screens */
+    @media (max-width: 768px) {
+        #smx-root,
+        [id^="smx-"]{
+            padding-inline: 12px;
+        }
+    }
 </style>
-'''.strip()
+""".strip()
 
 def smx_strip_fences(html: str) -> str:
     s = (html or '').strip()