Enhance certificate management and verification features

- Updated CSS for improved layout and responsiveness of the verification page.
- Modified CRUD operations to ensure unique certificate IDs and added new fields for certificate details.
- Implemented API key protection for documentation endpoints.
- Added new fields to certificate schemas and updated the certificate creation script for additional inputs.
- Removed obsolete database seeding and viewing scripts.

Co-authored-by: Copilot <copilot@github.com>

Author: orabe

assets/css/style.css

@@ -2267,8 +2267,49 @@ textarea.form-input::-webkit-resizer {
 
   .main-content {
     position: relative;
-    width: max-content;
-    margin: auto;
+    flex: 1;
+    width: 100%;
+    min-width: 0;
+    margin: 0;
+    display: flex;
+    flex-direction: column;
+    align-items: stretch;
+    gap: 25px;
+  }
+
+  .main-content article {
+    width: 100%;
+    margin-top: 0;
+    flex: 1;
+  }
+
+  .verify-certificate {
+    display: flex;
+    flex-direction: column;
+    height: 100%;
+  }
+
+  .verify-certificate .service,
+  .verify-certificate .verify-card {
+    width: 100%;
+    max-width: 950px;
+    margin-inline: auto;
+  }
+
+  .verify-certificate .service {
+    flex: 1;
+    display: flex;
+  }
+
+  .verify-certificate .verify-card {
+    flex: 1;
+    display: flex;
+    flex-direction: column;
+  }
+
+  .verify-certificate .verify-content {
+    width: 100%;
+    flex: 1;
   }
 
 
@@ -2278,17 +2319,23 @@ textarea.form-input::-webkit-resizer {
      */
 
   .navbar {
-    position: absolute;
+    position: relative;
     bottom: auto;
-    top: 20px;
+    top: auto;
     left: auto;
-    right: 30px;
-    width: max-content;
+    right: auto;
+    width: 100%;
+    max-width: 950px;
+    margin: 0 auto;
     border-radius: 12px 12px 12px 12px;
     padding: 0 20px;
     box-shadow: var(--shadow-2)
   }
 
+  .main-content article header {
+    clear: both;
+  }
+
   .navbar-list {
     gap: 30px;
     padding: 0 20px;
@@ -2372,7 +2419,7 @@ textarea.form-input::-webkit-resizer {
     border: 5px solid var(--smoky-black);
     background: hsla(0, 0%, 100%, 0.1);
     border-radius: 20px;
-    /* box-shadow: inset 1px 1px 0 hsla(0, 0%, 100%, 0.11), */
+    box-shadow: inset 1px 1px 0 hsla(0, 0%, 100%, 0.11),
       inset -1px -1px 0 hsla(0, 0%, 100%, 0.11);
   }
 

backend/app/crud.py

@@ -11,18 +11,24 @@ def get_certificate_by_public_id(db: Session, certificate_id: str):
     return db.query(models.Certificate).filter(models.Certificate.certificate_id == certificate_id).first()
 
 def create_certificate(db: Session, cert_in: schemas.CertificateCreate):
-    year = datetime.now().year
-    cert_id = generate_certificate_id(year)
+    year = datetime.utcnow().year
+
+    while True:
+        cert_id = generate_certificate_id(year)
+        if not get_certificate_by_public_id(db, cert_id):
+            break
+
     cert = models.Certificate(
         certificate_id=cert_id,
         student_name=cert_in.student_name,
         course_title=cert_in.course_title,
         completion_date=cert_in.completion_date,
         duration_hours=cert_in.duration_hours,
-        issuer=cert_in.issuer,
-        instructor=cert_in.instructor,
-        status=models.CertificateStatus.valid
+        issuer=cert_in.issuer or "MathCodeLab",
+        instructor=cert_in.instructor or "Mohammad Orabe",
+        status=models.CertificateStatus.valid,
     )
+
     db.add(cert)
     db.commit()
     db.refresh(cert)

backend/app/database.py

@@ -2,10 +2,10 @@
 from sqlalchemy import create_engine
 from sqlalchemy.orm import sessionmaker, declarative_base
 
-DATABASE_URL = os.getenv("DATABASE_URL", "sqlite:///./certificates.db")
+DATABASE_URL = os.getenv("DATABASE_URL")
+if not DATABASE_URL:
+    raise RuntimeError("DATABASE_URL is not set")
 
-# SQLite needs check_same_thread=False.
-# PostgreSQL does not need extra connect_args.
 connect_args = {}
 
 if DATABASE_URL.startswith("sqlite"):

backend/app/main.py

@@ -5,6 +5,7 @@
 from starlette.responses import JSONResponse
 from datetime import datetime
 from . import models, schemas, crud, database, security
+from fastapi import Request
 
 app = FastAPI(title="MathCodeLab Certificate Verification API")
 models.Base.metadata.create_all(bind=database.engine)
@@ -19,6 +20,14 @@
     allow_headers=["*"],
 )
 
+@app.middleware("http")
+async def protect_docs(request: Request, call_next):
+    if request.url.path.startswith("/docs") or request.url.path.startswith("/openapi"):
+        auth = request.headers.get("authorization")
+        if auth != f"Bearer {os.getenv('ADMIN_API_KEY')}":
+            return JSONResponse(status_code=401, content={"detail": "Unauthorized"})
+    return await call_next(request)
+
 @app.get("/")
 def root():
     return {
@@ -83,3 +92,11 @@ def revoke_certificate(
     if not cert:
         raise HTTPException(status_code=404, detail="Certificate not found")
     return cert
+
+@app.get("/admin/certificates")
+def list_certificates(
+    db: Session = Depends(get_db),
+    api_key: str = Depends(security.verify_api_key)
+):
+    certs = db.query(models.Certificate).all()
+    return certs

backend/app/models.py

@@ -15,6 +15,12 @@ class Certificate(Base):
     course_title = Column(String, nullable=False)
     completion_date = Column(String, nullable=False)
     duration_hours = Column(Integer, nullable=False)
+    attendance_percentage = Column(Integer, nullable=True)
+    assignment_completion_percentage = Column(Integer, nullable=True)
+    course_level = Column(String, nullable=True)
+    course_format = Column(String, nullable=True)
+    instruction_language = Column(String, nullable=True)
+    
     issuer = Column(String, default="MathCodeLab", nullable=False)
     instructor = Column(String, default="Mohammad Orabe", nullable=False)
     status = Column(Enum(CertificateStatus), default=CertificateStatus.valid, nullable=False)

backend/app/schemas.py

@@ -32,6 +32,11 @@ class CertificateVerificationResponse(BaseModel):
     verified_at: Optional[str] = None
     revocation_reason: Optional[str] = None
     message: Optional[str] = None
-
+    attendance_percentage: Optional[int] = None
+    assignment_completion_percentage: Optional[int] = None
+    course_level: Optional[str] = None
+    course_format: Optional[str] = None
+    instruction_language: Optional[str] = None
+    
 class CertificateRevoke(BaseModel):
     revocation_reason: Optional[str] = None

backend/app/security.py

@@ -1,5 +1,5 @@
 import os
-from fastapi import Header, HTTPException, status, Depends
+from fastapi import Header, HTTPException, status
 
 def verify_api_key(authorization: str = Header(...)):
     api_key = os.getenv("ADMIN_API_KEY")

backend/scripts/create_certificate.py

@@ -7,18 +7,30 @@
 def main():
     db = next(database.get_db())
     print("Enter certificate details:")
+    
     student_name = input("Student name: ")
     course_title = input("Course title: ")
     completion_date = input("Completion date (YYYY-MM-DD): ")
     duration_hours = int(input("Duration (hours): "))
+    attendance_percentage = int(input("Attendance percentage (0-100): "))
+    assignment_completion_percentage = int(input("Assignment completion percentage (0-100): "))
+    course_level = input("Course level (e.g. Master-level, Bachelor-level, High School-level): ")
+    course_format = input("Course format (e.g. Online (via Zoom), In-person, Hybrid): ")
+    instruction_language = input("Instruction language (e.g. English, German, Arabic): ") 
     cert_in = schemas.CertificateCreate(
         student_name=student_name,
         course_title=course_title,
         completion_date=completion_date,
-        duration_hours=duration_hours
+        duration_hours=duration_hours,
+        attendance_percentage=attendance_percentage,
+        assignment_completion_percentage=assignment_completion_percentage,
+        course_level=course_level,
+        course_format=course_format,
+        instruction_language=instruction_language
     )
     cert = crud.create_certificate(db, cert_in)
     print(f"Created certificate: {cert.certificate_id}")
+    print(f"Verification URL: https://mathcodelab.de/verify/?id={cert.certificate_id}")
 
 if __name__ == "__main__":
     main()