Tech Stack Advisor - Code Viewer

# Tech Stack Advisor - Modern Web UI

## ✅ Complete Interactive Web Interface

### Overview

A modern, production-ready web application using HTML/CSS/JavaScript that provides an intuitive interface for the Tech Stack Advisor AI system with user authentication, Google OAuth integration, and admin dashboard.

---

## 🎨 Key Features

### 1. **User Authentication**
- Local registration and login system
- Google OAuth 2.0 integration ("Continue with Google")
- JWT-based session management
- Secure password hashing (bcrypt)
- "Remember me" functionality
- Email-based user identification

### 2. **Main Application Interface**
- Clean, modern responsive design
- Text area for detailed project descriptions
- Real-time API integration with JWT authentication
- Interactive agent results display
- Loading animations with status updates
- Download results as JSON

### 3. **Admin Dashboard**
- User management interface (view all users)
- Feedback viewing system
- System statistics and monitoring
- Admin-only access control (admin@example.com)

### 4. **User Feedback System**
- Email-based feedback collection
- "Need Help or Have Feedback?" footer section
- Direct contact: ranjana.rajendran@gmail.com

---

## 📁 Files Structure

```
backend/static/
├── index.html          # Main application interface
├── login.html          # User login page
├── register.html       # User registration page
├── admin.html          # Admin dashboard
├── auth.js             # Authentication helper functions
└── GOOGLE_OAUTH_SETUP.md  # Google OAuth setup guide
```

---

## 🚀 Running the Frontend

The frontend is served directly by the FastAPI backend - no separate server needed!

### Quick Start

```bash
# One command to start everything
./run_app.sh

# Or manually
python -m backend.src.api.main
```

### Access Points

- **Main UI**: http://localhost:8000
- **Login**: http://localhost:8000/login.html
- **Register**: http://localhost:8000/register.html
- **Admin Panel**: http://localhost:8000/admin.html
- **API Docs**: http://localhost:8000/docs

---

## 🔐 Authentication Flow

### Local Registration/Login

1. User visits `/register.html`
2. Enters email and password
3. Backend creates user with hashed password (bcrypt)
4. User redirected to login page
5. User logs in at `/login.html`
6. Backend generates JWT token
7. Token stored in localStorage
8. User redirected to main application

### Google OAuth Flow

1. User clicks "Continue with Google" on login page
2. Backend generates random state and redirects to Google
3. User authenticates with Google (password stays at Google)
4. Google redirects back with authorization code
5. Backend exchanges code for user info
6. Backend creates/updates user in database
7. Backend generates JWT token
8. User automatically logged in and redirected

---

## 🎨 UI Components

### 1. Login Page (`login.html`)

**Features:**
- Email and password fields
- "Remember me" checkbox
- "Continue with Google" button
- Link to registration page
- Modern gradient background
- Responsive design

**Authentication Methods:**
- Local login (email/password)
- Google OAuth 2.0
- JWT token generation

### 2. Registration Page (`register.html`)

**Features:**
- Email and password fields
- Password confirmation
- Terms acceptance checkbox
- Link back to login
- Input validation
- Success/error messages

### 3. Main Application (`index.html`)

**Header:**
- Logo and app title
- User info display (email)
- Logout button

**Main Content:**
- Query input text area
- "Get Recommendations" button
- Loading spinner during processing
- Results display area:
  - Parsed context card
  - 4 agent tabs (Database, Infrastructure, Cost, Security)
  - Interactive visualizations
  - Download JSON button

**Footer:**
- "Need Help or Have Feedback?" section
- Email contact: ranjana.rajendran@gmail.com
- Copyright notice

### 4. Admin Dashboard (`admin.html`)

**Features:**
- User list view (email, role, created date)
- Feedback list view (user, message, timestamp)
- Admin-only access (checks role from JWT)
- Logout button
- Modern table design

---

## 🔧 Technical Implementation

### Authentication Helper (`auth.js`)

```javascript
// Core functions
- checkAuth(): Verify JWT token and redirect if invalid
- logout(): Clear token and redirect to login
- redirectIfAuthenticated(): Send logged-in users to main app
- checkAdminAuth(): Verify admin role for admin pages
```

### JWT Token Management

**Storage:** localStorage with key `token`

**Payload:**
```json
{
  "sub": "user@example.com",
  "role": "user",
  "exp": 1234567890
}
```

**Usage:**
- Included in all API requests as `Authorization: Bearer <token>`
- Checked on page load for authentication state
- Automatically refreshed before expiration

### API Integration

**Making Authenticated Requests:**
```javascript
const response = await fetch('/recommend', {
    method: 'POST',
    headers: {
        'Content-Type': 'application/json',
        'Authorization': `Bearer ${token}`
    },
    body: JSON.stringify({ query: userQuery })
});
```

---

## 📊 User Flows

### First-Time User

1. Visits http://localhost:8000
2. Redirected to `/login.html` (no token found)
3. Clicks "Register here"
4. Fills registration form at `/register.html`
5. Redirected to `/login.html`
6. Logs in with credentials
7. Redirected to `/` (main app)
8. Can now get recommendations

### Returning User (Local Login)

1. Visits http://localhost:8000
2. Redirected to `/login.html` (token expired/missing)
3. Enters email and password
4. Receives JWT token
5. Redirected to main app
6. Token stored in localStorage
7. Future visits skip login (until token expires)

### Google OAuth User

1. Visits `/login.html`
2. Clicks "Continue with Google"
3. Redirected to Google login
4. Authenticates with Google account
5. Google redirects back to app
6. Backend creates user session
7. Receives JWT token
8. Redirected to main app

### Admin User

1. Logs in as admin@example.com
2. Visits `/admin.html`
3. Views all users and feedback
4. Admin role verified from JWT token
5. Can manage system

---

## 🔒 Security Features

### Authentication Security

- **Password Hashing**: bcrypt with salt rounds
- **JWT Tokens**: Signed with secret key, 1-hour expiration
- **Google OAuth**: State parameter for CSRF protection
- **HTTP-Only Cookies**: Optional (currently using localStorage)

### Access Control

- **Public Routes**: `/login.html`, `/register.html`, `/docs`
- **Protected Routes**: `/` (main app), `/recommend`
- **Admin Routes**: `/admin.html`, `/admin/*`

### Input Validation

- Email format validation
- Password strength requirements (min 8 chars)
- Query length validation (10-1000 chars)
- CSRF protection via JWT

---

## 🎨 Styling & Design

### Color Scheme

- **Primary**: #FF6B6B (coral red)
- **Secondary**: #4ECDC4 (turquoise)
- **Background**: #F7F7F7 (light gray)
- **Text**: #333333 (dark gray)
- **Accent**: #95E1D3 (mint green)

### Typography

- **Headings**: 'Segoe UI', sans-serif
- **Body**: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif
- **Code**: 'Courier New', monospace

### Responsive Design

- Mobile-first approach
- Flexbox layouts
- Max-width containers (1200px)
- Touch-friendly buttons (min 44px height)
- Responsive tables (horizontal scroll on mobile)

---

## 📱 Browser Support

- **Chrome**: 90+
- **Firefox**: 88+
- **Safari**: 14+
- **Edge**: 90+
- **Mobile**: iOS Safari 14+, Chrome Mobile 90+

---

## 🧪 Testing the UI

### Manual Testing Checklist

- [ ] Registration with new email works
- [ ] Login with valid credentials works
- [ ] Login with invalid credentials shows error
- [ ] Google OAuth flow works end-to-end
- [ ] Logout clears token and redirects
- [ ] Protected pages redirect to login when not authenticated
- [ ] JWT token expires after 1 hour
- [ ] Query submission works
- [ ] Results display correctly in all 4 tabs
- [ ] Download JSON works
- [ ] Admin dashboard loads (for admin users)
- [ ] Feedback section displays email link
- [ ] Responsive design works on mobile

### Example Test Flow

1. **Register**: Create new account at `/register.html`
2. **Login**: Log in with credentials
3. **Query**: Submit test query: "Chat app for 100K users"
4. **Results**: Verify all 4 agent tabs show recommendations
5. **Download**: Download JSON and verify format
6. **Feedback**: Check footer has email link
7. **Admin**: (If admin) Visit `/admin.html` and view users
8. **Logout**: Log out and verify redirect to login

---

## 🔮 Future Enhancements

### Immediate
- [ ] Add password reset functionality
- [ ] Implement "remember me" persistence (beyond localStorage)
- [ ] Add user profile page
- [ ] Enable query history for users

### Short-term
- [ ] Add more OAuth providers (Microsoft, LinkedIn)
- [ ] Implement real-time notifications
- [ ] Add cost visualization charts
- [ ] Enable collaborative workspaces

### Long-term
- [ ] Progressive Web App (PWA) support
- [ ] Offline mode
- [ ] Mobile app (React Native)
- [ ] Team collaboration features

---

## 📖 Configuration

### Google OAuth Setup

See `backend/static/GOOGLE_OAUTH_SETUP.md` for detailed instructions.

**Quick steps:**
1. Create Google Cloud project
2. Enable Google+ API
3. Create OAuth 2.0 credentials
4. Add redirect URI: `http://localhost:8000/auth/google/callback`
5. Add credentials to `.env`:
   ```bash
   GOOGLE_CLIENT_ID=your_client_id.apps.googleusercontent.com
   GOOGLE_CLIENT_SECRET=your_client_secret
   GOOGLE_REDIRECT_URI=http://localhost:8000/auth/google/callback
   ```

### Environment Variables

```bash
# JWT Secret (auto-generated if not set)
SECRET_KEY=your-secret-key-here

# Google OAuth (optional)
GOOGLE_CLIENT_ID=your_client_id.apps.googleusercontent.com
GOOGLE_CLIENT_SECRET=your_client_secret
GOOGLE_REDIRECT_URI=http://localhost:8000/auth/google/callback
```

---

## ✅ Summary

| Feature | Status | Technology |
|---------|--------|------------|
| User Registration | ✅ | FastAPI + bcrypt |
| User Login | ✅ | JWT tokens |
| Google OAuth | ✅ | OAuth 2.0 flow |
| Main Application | ✅ | HTML/CSS/JavaScript |
| Admin Dashboard | ✅ | Role-based access |
| Feedback System | ✅ | Email-based |
| Responsive Design | ✅ | CSS Flexbox |
| API Integration | ✅ | Fetch API + JWT |

---

**Status:** ✅ **Production-Ready**
**Date Completed:** 2025-11-20
**UI Framework:** HTML/CSS/JavaScript (Vanilla JS)
**Authentication:** Local + Google OAuth 2.0
**Lines of Code:** ~1,500 (HTML + CSS + JS)

**Access:** http://localhost:8000 🚀

**Complete modern web interface with authentication and admin features!**