Feature: add admin login, toggle-based API key setup, and support for OpenAI

Author: Dev Nirwal

chat/templates/chat/index.html

@@ -3,7 +3,7 @@
 <head>
     <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <title>PDF Chat with Gemini</title>
+    <title>PDF Chat with Gemini & OpenAI</title>
     <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
     <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css">
     <style>
@@ -151,6 +151,30 @@
             color: #667eea;
             font-weight: 600;
         }
+
+        .api-toggle {
+            display: flex;
+            background: rgba(255,255,255,0.1);
+            border-radius: 10px;
+            padding: 4px;
+            margin-bottom: 15px;
+        }
+        .api-toggle-btn {
+            flex: 1;
+            border: none;
+            background: transparent;
+            color: white;
+            padding: 6px;
+            border-radius: 8px;
+            font-size: 0.8rem;
+            font-weight: 600;
+            transition: all 0.2s;
+        }
+        .api-toggle-btn.active {
+            background: white;
+            color: #764ba2;
+            box-shadow: 0 2px 5px rgba(0,0,0,0.1);
+        }
     </style>
 </head>
 <body>
@@ -160,11 +184,52 @@
             <div class="col-md-3 col-lg-3 sidebar d-flex flex-column">
                 <div class="mb-4 text-center">
                     <h3 class="mt-2"><i class="fas fa-file-pdf me-2"></i>DocuChat AI</h3>
-                    <p class="small text-light opacity-75">Powered by Gemini</p>
+                    {% if is_admin %}
+                        <div class="d-flex align-items-center justify-content-center">
+                            <span class="badge bg-warning text-dark"><i class="fas fa-user-shield me-1"></i>Admin Mode</span>
+                            <a href="{% url 'logout' %}" class="text-light small ms-2"><i class="fas fa-sign-out-alt"></i></a>
+                        </div>
+                    {% else %}
+                        <a href="{% url 'login' %}" class="text-light small text-decoration-none opacity-75">Admin Login</a>
+                    {% endif %}
                 </div>
 
+                {% if not is_admin %}
+                <!-- API Key Section for Users -->
+                <div class="api-section bg-white bg-opacity-10 p-3 rounded-3 mb-4">
+                    <h5 class="mb-3 small text-uppercase ls-1"><i class="fas fa-key me-2"></i>Provider Setup</h5>
+                    
+                    <div class="api-toggle">
+                        <button onclick="toggleApi('gemini')" id="toggle-gemini" class="api-toggle-btn active">Gemini</button>
+                        <button onclick="toggleApi('openai')" id="toggle-openai" class="api-toggle-btn">OpenAI</button>
+                    </div>
+
+                    <div id="api-input-container">
+                        <input type="password" id="api-key-input" class="form-control form-control-sm mb-2" placeholder="Enter Gemini Key">
+                        <button onclick="submitKey()" id="check-key-btn" class="btn btn-primary btn-sm w-100 py-2" style="font-size: 0.75rem;">
+                            <i class="fas fa-plug me-1"></i> Connect API
+                        </button>
+                    </div>
+
+                    <div id="active-keys" class="mt-3">
+                        {% if has_gemini_key %}
+                            <div class="d-flex justify-content-between align-items-center mb-1">
+                                <span class="small"><i class="fas fa-check-circle text-success me-1"></i> Gemini Active</span>
+                                <button onclick="clearKeys()" class="btn btn-link text-light p-0 small" style="font-size: 0.65rem; text-decoration:none;">Clear</button>
+                            </div>
+                        {% endif %}
+                        {% if has_openai_key %}
+                            <div class="d-flex justify-content-between align-items-center">
+                                <span class="small"><i class="fas fa-check-circle text-success me-1"></i> OpenAI Active</span>
+                                <button onclick="clearKeys()" class="btn btn-link text-light p-0 small" style="font-size: 0.65rem; text-decoration:none;">Clear</button>
+                            </div>
+                        {% endif %}
+                    </div>
+                </div>
+                {% endif %}
+
                 <div class="upload-section bg-white bg-opacity-10 p-3 rounded-3 mb-4">
-                    <h5 class="mb-3"><i class="fas fa-cloud-upload-alt me-2"></i>Upload PDF</h5>
+                    <h5 class="mb-3 small text-uppercase ls-1"><i class="fas fa-cloud-upload-alt me-2"></i>Upload PDF</h5>
                     <form action="{% url 'upload_pdf' %}" method="post" enctype="multipart/form-data">
                         {% csrf_token %}
                         <div class="mb-2">
@@ -173,11 +238,16 @@ <h5 class="mb-3"><i class="fas fa-cloud-upload-alt me-2"></i>Upload PDF</h5>
                         <div class="mb-3">
                             <input type="file" name="file" class="form-control form-control-sm" required id="id_file" accept=".pdf">
                         </div>
-                        <button type="submit" class="btn btn-primary w-100 btn-sm"><i class="fas fa-cogs me-1"></i> Process Document</button>
+                        <button type="submit" class="btn btn-primary w-100 btn-sm" id="upload-btn" {% if not is_admin and not has_gemini_key and not has_openai_key %}disabled{% endif %}>
+                            <i class="fas fa-cogs me-1"></i> Process Document
+                        </button>
+                        {% if not is_admin and not has_gemini_key and not has_openai_key %}
+                            <p class="text-center small text-warning mt-2 mb-0" style="font-size: 0.7rem;">Connect an API to unlock</p>
+                        {% endif %}
                     </form>
                 </div>
 
-                <h5 class="mb-3 mt-2"><i class="fas fa-book me-2"></i>My Library</h5>
+                <h5 class="mb-3 mt-2 small text-uppercase ls-1"><i class="fas fa-book me-2"></i>My Library</h5>
                 <div id="pdf-list" class="flex-grow-1 overflow-auto pe-2">
                     {% for doc in documents %}
                         <div class="pdf-item {% if doc.status == 'FAILED' %}border-danger{% endif %}" data-id="{{ doc.id }}" data-status="{{ doc.status }}">
@@ -210,10 +280,10 @@ <h5 class="mb-3 mt-2"><i class="fas fa-book me-2"></i>My Library</h5>
                 <div class="chat-header d-flex justify-content-between align-items-center">
                     <h4 class="m-0 text-secondary" id="current-doc-title">Select a document to begin</h4>
                     <div class="d-flex align-items-center">
-                        <label for="model-selector" class="me-2 mb-0 small text-muted">Model:</label>
-                        <select id="model-selector" class="form-select form-select-sm shadow-sm">
+                        <label for="model-selector" class="me-2 mb-0 small text-muted">Active Model:</label>
+                        <select id="model-selector" class="form-select form-select-sm shadow-sm" style="min-width: 200px;">
                             {% for model in available_models %}
-                                <option value="{{ model.name }}" {% if model.name == "models/gemini-1.5-flash" %}selected{% endif %}>
+                                <option value="{{ model.name }}" {% if model.name == "models/gemini-1.5-flash" or model.name == "gpt-4o" %}selected{% endif %}>
                                     {{ model.display_name }}
                                 </option>
                             {% empty %}
@@ -245,6 +315,49 @@ <h5>Welcome to DocuChat!</h5>
 
     <script>
         let selectedDocId = null;
+        let activeApiType = 'gemini';
+
+        function toggleApi(type) {
+            activeApiType = type;
+            document.getElementById('toggle-gemini').classList.toggle('active', type === 'gemini');
+            document.getElementById('toggle-openai').classList.toggle('active', type === 'openai');
+            document.getElementById('api-key-input').placeholder = `Enter ${type === 'gemini' ? 'Gemini' : 'OpenAI'} Key`;
+            document.getElementById('api-key-input').value = '';
+        }
+
+        async function submitKey() {
+            const input = document.getElementById('api-key-input');
+            const key = input.value.trim();
+            if (!key) return;
+
+            const btn = document.getElementById('check-key-btn');
+            const originalText = btn.innerHTML;
+            btn.innerHTML = '<i class="fas fa-spinner fa-spin me-1"></i> Connecting...';
+            btn.disabled = true;
+
+            const formData = new FormData();
+            formData.append('key_type', activeApiType);
+            formData.append('key', key);
+
+            try {
+                const response = await fetch("{% url 'validate_api_key' %}", {
+                    method: 'POST',
+                    headers: { 'X-CSRFToken': '{{ csrf_token }}' },
+                    body: formData
+                });
+                const data = await response.json();
+                if (data.success) {
+                    location.reload();
+                } else {
+                    alert('Invalid Key: ' + data.error);
+                }
+            } catch (e) {
+                alert('Connection error');
+            } finally {
+                btn.innerHTML = originalText;
+                btn.disabled = false;
+            }
+        }
 
         document.querySelectorAll('.pdf-item').forEach(item => {
             item.addEventListener('click', function() {
@@ -282,16 +395,12 @@ <h5>Welcome to DocuChat!</h5>
             if (!query || !selectedDocId) return;
 
             const chatMessages = document.getElementById('chat-messages');
-            
-            // Add user message
             const userMsgDiv = document.createElement('div');
             userMsgDiv.className = 'message user-message shadow-sm';
             userMsgDiv.innerText = query;
             chatMessages.appendChild(userMsgDiv);
-            
             input.value = '';
 
-            // Add loading message
             const loadingMsgDiv = document.createElement('div');
             loadingMsgDiv.className = 'message bot-message loading shadow-sm';
             loadingMsgDiv.innerHTML = '<i class="fas fa-robot me-2 text-primary opacity-50"></i>Analyzing document';
@@ -325,10 +434,9 @@ <h5>Welcome to DocuChat!</h5>
                 chatMessages.removeChild(loadingMsgDiv);
                 const botMsgDiv = document.createElement('div');
                 botMsgDiv.className = 'message bot-message border-danger text-danger shadow-sm';
-                botMsgDiv.innerHTML = `<i class="fas fa-exclamation-triangle me-2"></i>Connection error. Please try again.`;
+                botMsgDiv.innerHTML = `<i class="fas fa-exclamation-triangle me-2"></i>Connection error.`;
                 chatMessages.appendChild(botMsgDiv);
             }
-            
             chatMessages.scrollTop = chatMessages.scrollHeight;
         }
 
@@ -338,54 +446,37 @@ <h5>Welcome to DocuChat!</h5>
         });
 
         async function deleteDocument(event, docId) {
-            event.stopPropagation(); // Prevent selecting the document when clicking delete
-            
-            if (!confirm('Are you sure you want to delete this document and its chat history? This action cannot be undone.')) {
-                return;
-            }
+            event.stopPropagation();
+            if (!confirm('Are you sure?')) return;
 
             const item = document.querySelector(`.pdf-item[data-id="${docId}"]`);
-            const originalOpacity = item.style.opacity;
             item.style.opacity = '0.5';
-            item.style.pointerEvents = 'none';
 
             try {
                 const response = await fetch(`/delete/${docId}/`, {
                     method: 'POST',
-                    headers: {
-                        'X-CSRFToken': '{{ csrf_token }}'
-                    }
+                    headers: { 'X-CSRFToken': '{{ csrf_token }}' }
                 });
-                
                 const data = await response.json();
-                
                 if (data.success) {
-                    item.style.transform = 'translateX(-20px)';
-                    item.style.opacity = '0';
-                    setTimeout(() => {
-                        item.remove();
-                        if (selectedDocId == docId) {
-                            selectedDocId = null;
-                            document.getElementById('query-input').disabled = true;
-                            document.getElementById('send-btn').disabled = true;
-                            document.getElementById('current-doc-title').innerText = 'Select a document to begin';
-                            document.getElementById('chat-messages').innerHTML = `
-                                <div class="text-center mt-5 text-muted">
-                                    <i class="fas fa-comments fa-4x mb-3 opacity-25"></i>
-                                    <h5>Welcome to DocuChat!</h5>
-                                    <p>Select a processed document from the sidebar to ask questions about its content.</p>
-                                </div>`;
-                        }
-                    }, 300);
-                } else {
-                    alert('Error: ' + (data.error || 'Failed to delete document'));
-                    item.style.opacity = originalOpacity;
-                    item.style.pointerEvents = 'auto';
+                    item.remove();
+                    if (selectedDocId == docId) location.reload();
                 }
             } catch (error) {
-                alert('Connection error. Failed to delete document.');
-                item.style.opacity = originalOpacity;
-                item.style.pointerEvents = 'auto';
+                alert('Error deleting');
+                item.style.opacity = '1';
+            }
+        }
+
+        async function clearKeys() {
+            try {
+                await fetch("{% url 'clear_keys' %}", {
+                    method: 'POST',
+                    headers: { 'X-CSRFToken': '{{ csrf_token }}' }
+                });
+                location.reload();
+            } catch (e) {
+                alert('Error clearing keys');
             }
         }
     </script>

chat/templates/chat/login.html

@@ -0,0 +1,80 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>Admin Login - DocuChat AI</title>
+    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
+    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css">
+    <style>
+        body {
+            background: linear-gradient(135deg, #667eea 0%, #764ba2 100%);
+            height: 100vh;
+            display: flex;
+            align-items: center;
+            justify-content: center;
+            font-family: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif;
+        }
+        .login-card {
+            background: white;
+            padding: 40px;
+            border-radius: 20px;
+            box-shadow: 0 10px 25px rgba(0,0,0,0.2);
+            width: 100%;
+            max-width: 400px;
+        }
+        .login-card h2 {
+            color: #764ba2;
+            font-weight: 700;
+            margin-bottom: 30px;
+            text-align: center;
+        }
+        .btn-primary {
+            background-color: #667eea;
+            border: none;
+            padding: 12px;
+            font-weight: 600;
+            border-radius: 10px;
+            width: 100%;
+            transition: all 0.3s;
+        }
+        .btn-primary:hover {
+            background-color: #764ba2;
+            transform: translateY(-2px);
+        }
+        .form-control {
+            padding: 12px;
+            border-radius: 10px;
+            margin-bottom: 20px;
+        }
+        .back-link {
+            display: block;
+            text-align: center;
+            margin-top: 20px;
+            color: #667eea;
+            text-decoration: none;
+        }
+    </style>
+</head>
+<body>
+    <div class="login-card">
+        <h2><i class="fas fa-user-shield me-2"></i>Admin Login</h2>
+        {% if error %}
+            <div class="alert alert-danger">{{ error }}</div>
+        {% endif %}
+        <form method="post">
+            {% csrf_token %}
+            <div class="mb-3">
+                <label class="form-label">Username</label>
+                <input type="text" name="username" class="form-control" placeholder="Enter username" required>
+            </div>
+            <div class="mb-3">
+                <label class="form-label">Password</label>
+                <input type="password" name="password" class="form-control" placeholder="Enter password" required>
+            </div>
+            <button type="submit" class="btn btn-primary">Login</button>
+        </form>
+        <a href="{% url 'index' %}" class="back-link"><i class="fas fa-arrow-left me-1"></i> Back to App</a>
+    </div>
+</body>
+</html>

chat/urls.py

@@ -6,4 +6,8 @@
     path('upload/', views.upload_pdf, name='upload_pdf'),
     path('ask/', views.ask_question, name='ask_question'),
     path('delete/<int:doc_id>/', views.delete_document, name='delete_document'),
+    path('login/', views.login_view, name='login'),
+    path('logout/', views.logout_view, name='logout'),
+    path('validate-key/', views.validate_api_key, name='validate_api_key'),
+    path('clear-keys/', views.clear_keys, name='clear_keys'),
 ]