diff --git a/admin/login.html b/admin/login.html index 6858d94..db09ac9 100644 --- a/admin/login.html +++ b/admin/login.html @@ -25,9 +25,64 @@ + + document.addEventListener('DOMContentLoaded', async () => { + const formBlock = document.getElementById('login-form-block'); + const blankBlock = document.getElementById('blank-setup-block'); + + try { + const res = await fetch(`${API_URL}?action=check_security_status`); + const data = await res.json(); + + if (data.is_blank === true) { + formBlock.style.display = 'none'; + blankBlock.style.display = 'block'; + } else { + formBlock.style.display = 'block'; + blankBlock.style.display = 'none'; + } + } catch(e) { + console.error("Erreur API :", e); + alert("Erreur de connexion au serveur."); + } + }); + + async function doLoginBlank() { await performLogin(""); } + async function doLogin() { + const pwd = document.getElementById('login-pwd').value; + await performLogin(pwd); + } + + async function performLogin(pwd) { + try { + const res = await fetch(`${API_URL}?action=login`, { + method: 'POST', + headers: { 'Content-Type': 'application/json' }, + body: JSON.stringify({ password: pwd }) + }); + const data = await res.json(); + if (data.success) { + localStorage.setItem('token', data.token); + if (data.blank === true) { + const newPwd = prompt("Définissez votre mot de passe (min 4 caractères) :"); + if (newPwd && newPwd.length >= 4) { + await fetch(`${API_URL}?action=setup_admin`, { + method: 'POST', + headers: { 'Content-Type': 'application/json', 'Authorization': data.token }, + body: JSON.stringify({ password: newPwd }) + }); + } + } + window.location.href = 'dashboard.html'; + } else { + alert("Erreur : " + (data.error || "Mot de passe incorrect")); + } + } catch(e) { + alert("Erreur technique : " + e.message); + } + } + \ No newline at end of file