improved styling and logout button

authentication with username & password
create admin account on first start
2025-02-17 20:16:40 +01:00 · 2025-02-17 19:53:43 +01:00 · 2025-02-17 19:15:34 +01:00
16 changed files with 381 additions and 91 deletions
--- a/go.mod
+++ b/go.mod
@ -1,5 +1,13 @@
 module tms

-go 1.22.0
+go 1.23

-require github.com/mattn/go-sqlite3 v1.14.24 // indirect
+toolchain go1.23.6
+
+require golang.org/x/crypto v0.33.0
+
+require (
+	github.com/gorilla/securecookie v1.1.2 // indirect
+	github.com/gorilla/sessions v1.4.0 // indirect
+	github.com/mattn/go-sqlite3 v1.14.24 // indirect
+)
--- a/go.sum
+++ b/go.sum
@ -1,2 +1,8 @@
+github.com/gorilla/securecookie v1.1.2 h1:YCIWL56dvtr73r6715mJs5ZvhtnY73hBvEF8kXD8ePA=
+github.com/gorilla/securecookie v1.1.2/go.mod h1:NfCASbcHqRSY+3a8tlWJwsQap2VX5pwzwo4h3eOamfo=
+github.com/gorilla/sessions v1.4.0 h1:kpIYOp/oi6MG/p5PgxApU8srsSw9tuFbt46Lt7auzqQ=
+github.com/gorilla/sessions v1.4.0/go.mod h1:FLWm50oby91+hl7p/wRxDth9bWSuk0qVL2emc7lT5ik=
 github.com/mattn/go-sqlite3 v1.14.24 h1:tpSp2G2KyMnnQu99ngJ47EIkWVmliIizyZBfPrBWDRM=
 github.com/mattn/go-sqlite3 v1.14.24/go.mod h1:Uh1q+B4BYcTPb+yiD3kU8Ct7aC0hY9fxUwlHK0RXw+Y=
+golang.org/x/crypto v0.33.0 h1:IOBPskki6Lysi0lo9qQvbxiQ+FvsCC/YWOecCHAixus=
+golang.org/x/crypto v0.33.0/go.mod h1:bVdXmD7IV/4GdElGPozy6U7lWdRXA4qyRVGJV57uQ5M=
--- a/main.go
+++ b/main.go
@ -5,9 +5,13 @@ import (
 	"embed"
 	"fmt"
 	"html/template"
+	"log"
 	"net/http"
 	"time"

+	"github.com/gorilla/sessions"
+	"golang.org/x/crypto/bcrypt"
+
 	_ "github.com/mattn/go-sqlite3"
 )

@ -17,6 +21,9 @@ var templatesFS embed.FS
 //go:embed schema.sql
 var schemaSQL string

+// Store for sessions (adjust the key to something secure)
+var store = sessions.NewCookieStore([]byte("your-secret-key"))
+
 type Trainer struct {
 	ID    int
 	Name  string
@ -62,13 +69,15 @@ func initDB() {
 	var err error
 	db, err = sql.Open("sqlite3", "training.db")
 	if err != nil {
-		panic(err)
+		log.Fatalf("Error opening database: %v", err)
 	}

 	_, err = db.Exec(schemaSQL)
 	if err != nil {
-		panic(err)
+		log.Fatalf("Error initializing database schema: %v", err)
 	}
+
+	log.Println("Database initialized successfully")
 }

 var tmpl *template.Template
@ -77,26 +86,33 @@ func initTemplates() {
 	var err error
 	tmpl, err = template.ParseFS(templatesFS, "templates/*.html")
 	if err != nil {
-		panic(fmt.Sprintf("Error parsing templates: %v", err))
+		log.Fatalf("Error parsing templates: %v", err)
 	}
+
+	log.Println("Templates loaded successfully")
 }

 func homeHandler(w http.ResponseWriter, r *http.Request) {
+	log.Println("Handling home page request")
 	err := tmpl.ExecuteTemplate(w, "home.html", nil)
 	if err != nil {
+		log.Printf("Error in templating page home.html: %v", err)
 		http.Error(w, fmt.Sprintf("Error in templating page %v", err), http.StatusInternalServerError)
 	}
 }

 func trainingAreaListHandler(w http.ResponseWriter, r *http.Request) {
+	log.Println("Fetching training areas and trainers")
 	areas, err := fetchTrainingAreasWithTrainers()
 	if err != nil {
+		log.Printf("Error fetching training areas: %v", err)
 		http.Error(w, "Database error", http.StatusInternalServerError)
 		return
 	}

 	trainers, err := fetchTrainers()
 	if err != nil {
+		log.Printf("Error fetching trainers: %v", err)
 		http.Error(w, "Database error", http.StatusInternalServerError)
 		return
 	}
@ -111,12 +127,16 @@ func trainingAreaListHandler(w http.ResponseWriter, r *http.Request) {

 	err = tmpl.ExecuteTemplate(w, "training_area_list.html", data)
 	if err != nil {
+		log.Printf("Error in templating page training_area_list.html: %v", err)
 		http.Error(w, fmt.Sprintf("Error in templating page %v", err), http.StatusInternalServerError)
 		return
 	}
+
+	log.Println("Training areas and trainers displayed successfully")
 }

 func fetchTrainingAreasWithTrainers() ([]TrainingArea, error) {
+	log.Println("Executing query to fetch training areas with trainers")
 	rows, err := db.Query(`
 		SELECT ta.id, ta.name, t.id, t.name, t.email 
 		FROM training_areas ta
@ -124,6 +144,7 @@ func fetchTrainingAreasWithTrainers() ([]TrainingArea, error) {
 		LEFT JOIN trainers t ON tta.trainer_id = t.id
 		ORDER BY ta.id, t.name`)
 	if err != nil {
+		log.Printf("Database error while fetching training areas: %v", err)
 		return nil, err
 	}
 	defer rows.Close()
@ -139,6 +160,7 @@ func fetchTrainingAreasWithTrainers() ([]TrainingArea, error) {

 		err := rows.Scan(&areaID, &areaName, &trainerID, &trainerName, &trainerEmail)
 		if err != nil {
+			log.Printf("Error scanning row for training area: %v", err)
 			return nil, err
 		}

@ -162,55 +184,67 @@ func fetchTrainingAreasWithTrainers() ([]TrainingArea, error) {
 		areas = append(areas, *area)
 	}

+	log.Printf("Found %d training areas", len(areas))
 	return areas, nil
 }

 func assignTrainerToAreaHandler(w http.ResponseWriter, r *http.Request) {
+	log.Println("Handling trainer assignment to training area")
 	if r.Method == http.MethodPost {
 		trainerID := r.FormValue("trainer_id")
 		areaID := r.FormValue("training_area_id")

 		if trainerID == "" || areaID == "" {
+			log.Println("Missing trainer or training area ID")
 			http.Error(w, "Trainer and Training Area are required", http.StatusBadRequest)
 			return
 		}

 		_, err := db.Exec("INSERT OR IGNORE INTO trainer_training_areas (trainer_id, training_area_id) VALUES (?, ?)", trainerID, areaID)
 		if err != nil {
+			log.Printf("Error assigning trainer to area: %v", err)
 			http.Error(w, "Database error", http.StatusInternalServerError)
 			return
 		}

+		log.Println("Trainer assigned to area successfully")
 		http.Redirect(w, r, "/training-areas", http.StatusSeeOther)
 	}
 }

 func addTrainingAreaHandler(w http.ResponseWriter, r *http.Request) {
+	log.Println("Handling request to add a new training area")
 	if r.Method == http.MethodPost {
 		name := r.FormValue("name")
 		if name == "" {
+			log.Println("Training area name is required")
 			http.Error(w, "Name is required", http.StatusBadRequest)
 			return
 		}

 		_, err := db.Exec("INSERT INTO training_areas (name) VALUES (?)", name)
 		if err != nil {
+			log.Printf("Error adding training area: %v", err)
 			http.Error(w, "Database error", http.StatusInternalServerError)
 			return
 		}
+		log.Println("New training area added successfully")
 		http.Redirect(w, r, "/training-areas", http.StatusSeeOther)
 		return
 	}

 	err := tmpl.ExecuteTemplate(w, "add_training_area.html", nil)
 	if err != nil {
+		log.Printf("Error in templating page add_training_area.html: %v", err)
 		http.Error(w, fmt.Sprintf("Error in templating page %v", err), http.StatusInternalServerError)
 	}
 }

 func fetchTrainings() ([]Training, error) {
+	log.Println("Fetching trainings from the database")
 	rows, err := db.Query("SELECT id, title, training_type, mode, start, end, status FROM trainings")
 	if err != nil {
+		log.Printf("Error fetching trainings: %v", err)
 		return nil, err
 	}
 	defer rows.Close()
@ -221,31 +255,39 @@ func fetchTrainings() ([]Training, error) {
 		var start, end string
 		err := rows.Scan(&t.ID, &t.Title, &t.TrainingType, &t.Mode, &start, &end, &t.Status)
 		if err != nil {
+			log.Printf("Error scanning row for training: %v", err)
 			return nil, err
 		}
 		t.Start, _ = time.Parse("2006-01-02 15:04:05", start)
 		t.End, _ = time.Parse("2006-01-02 15:04:05", end)
 		trainings = append(trainings, t)
 	}
+
+	log.Printf("Found %d trainings", len(trainings))
 	return trainings, nil
 }

 func trainingListHandler(w http.ResponseWriter, r *http.Request) {
+	log.Println("Handling training list request")
 	trainings, err := fetchTrainings()
 	if err != nil {
+		log.Printf("Error fetching trainings: %v", err)
 		http.Error(w, "Database error", http.StatusInternalServerError)
 		return
 	}

 	err = tmpl.ExecuteTemplate(w, "training_list.html", trainings)
 	if err != nil {
+		log.Printf("Error in templating page training_list.html: %v", err)
 		http.Error(w, fmt.Sprintf("Error in templating page %v", err), http.StatusInternalServerError)
 	}
 }

 func fetchTrainers() ([]Trainer, error) {
+	log.Println("Fetching trainers from the database")
 	rows, err := db.Query("SELECT id, name, email FROM trainers")
 	if err != nil {
+		log.Printf("Error fetching trainers: %v", err)
 		return nil, err
 	}
 	defer rows.Close()
@ -255,62 +297,256 @@ func fetchTrainers() ([]Trainer, error) {
 		var t Trainer
 		err := rows.Scan(&t.ID, &t.Name, &t.Email)
 		if err != nil {
+			log.Printf("Error scanning row for trainer: %v", err)
 			return nil, err
 		}
 		trainers = append(trainers, t)
 	}
+
+	log.Printf("Found %d trainers", len(trainers))
 	return trainers, nil
 }

 func trainerListHandler(w http.ResponseWriter, r *http.Request) {
+	log.Println("Handling trainer list request")
 	trainers, err := fetchTrainers()
 	if err != nil {
+		log.Printf("Error fetching trainers: %v", err)
 		http.Error(w, "Database error", http.StatusInternalServerError)
 		return
 	}

 	err = tmpl.ExecuteTemplate(w, "trainer_list.html", trainers)
 	if err != nil {
+		log.Printf("Error in templating page trainer_list.html: %v", err)
 		http.Error(w, fmt.Sprintf("Error in templating page %v", err), http.StatusInternalServerError)
 	}
 }

 func addTrainerHandler(w http.ResponseWriter, r *http.Request) {
+	log.Println("Handling request to add a new trainer")
 	if r.Method == http.MethodPost {
 		name := r.FormValue("name")
 		email := r.FormValue("email")
 		if name == "" || email == "" {
+			log.Println("Trainer name and email are required")
 			http.Error(w, "Name and Email are required", http.StatusBadRequest)
 			return
 		}

 		_, err := db.Exec("INSERT INTO trainers (name, email) VALUES (?, ?)", name, email)
 		if err != nil {
+			log.Printf("Error adding trainer: %v", err)
 			http.Error(w, "Database error", http.StatusInternalServerError)
 			return
 		}
+		log.Println("New trainer added successfully")
 		http.Redirect(w, r, "/trainers", http.StatusSeeOther)
 		return
 	}

 	err := tmpl.ExecuteTemplate(w, "add_trainer.html", nil)
 	if err != nil {
+		log.Printf("Error in templating page add_trainer.html: %v", err)
 		http.Error(w, fmt.Sprintf("Error in templating page %v", err), http.StatusInternalServerError)
 	}
+}

+func hashPassword(password string) (string, error) {
+	log.Println("Hashing password")
+	bytes, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
+	return string(bytes), err
+}
+
+func setupAdminHandler(w http.ResponseWriter, r *http.Request) {
+	// Check if an admin exists
+	var count int
+	err := db.QueryRow("SELECT COUNT(*) FROM admins").Scan(&count)
+	if err != nil {
+		http.Error(w, "Database error", http.StatusInternalServerError)
+		return
+	}
+
+	// If an admin exists, redirect to login
+	if count > 0 {
+		http.Redirect(w, r, "/login", http.StatusSeeOther)
+		return
+	}
+
+	// If it's a POST request, create the admin
+	if r.Method == http.MethodPost {
+		name := r.FormValue("name")
+		email := r.FormValue("email")
+		password := r.FormValue("password")
+
+		if email == "" || password == "" || name == "" {
+			http.Error(w, "Name, email and password are required", http.StatusBadRequest)
+			return
+		}
+
+		// Hash the password
+		hashedPassword, err := hashPassword(password)
+		if err != nil {
+			http.Error(w, "Error hashing password", http.StatusInternalServerError)
+			return
+		}
+
+		// Insert the admin into the database
+		_, err = db.Exec("INSERT INTO admins (name, email, password) VALUES (?, ?, ?)", name, email, hashedPassword)
+		if err != nil {
+			http.Error(w, "Error saving admin", http.StatusInternalServerError)
+			return
+		}
+
+		// Redirect to login after setup
+		http.Redirect(w, r, "/login", http.StatusSeeOther)
+		return
+	}
+
+	// Show the admin setup page
+	err = tmpl.ExecuteTemplate(w, "setup_admin.html", nil)
+	if err != nil {
+		http.Error(w, "Template rendering error", http.StatusInternalServerError)
+	}
+}
+
+func redirectIfNoAdmin(next http.Handler) http.Handler {
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		var count int
+		err := db.QueryRow("SELECT COUNT(*) FROM admins").Scan(&count)
+		if err != nil || count == 0 {
+			http.Redirect(w, r, "/setup-admin", http.StatusSeeOther)
+			return
+		}
+
+		session, err := store.Get(r, "user-session")
+		if err != nil || session.Values["username"] == nil {
+			http.Redirect(w, r, "/login", http.StatusSeeOther)
+			return
+		}
+
+		next.ServeHTTP(w, r)
+	})
+}
+
+func checkPasswordHash(password, hash string) bool {
+	err := bcrypt.CompareHashAndPassword([]byte(hash), []byte(password))
+	return err == nil
+}
+
+// / loginHandler handles the user login
+func loginHandler(w http.ResponseWriter, r *http.Request) {
+	if r.Method == http.MethodGet {
+		// Show the login page
+		log.Println("Rendering login page.")
+		err := tmpl.ExecuteTemplate(w, "login.html", nil)
+		if err != nil {
+			log.Println("Error rendering login template:", err)
+			http.Error(w, "Template rendering error", http.StatusInternalServerError)
+		}
+		return
+	}
+
+	if r.Method == http.MethodPost {
+		username := r.FormValue("username")
+		password := r.FormValue("password")
+
+		log.Printf("Received login attempt for username: %s", username)
+
+		// Query the admin table for the password hash
+		var storedHash string
+		err := db.QueryRow("SELECT password FROM admins WHERE email = $1", username).Scan(&storedHash)
+		if err != nil {
+			if err == sql.ErrNoRows {
+				// User doesn't exist
+				log.Println("Invalid username or password: no matching user found.")
+				http.Error(w, "Invalid username or password", http.StatusUnauthorized)
+			} else {
+				// Database error
+				log.Println("Error querying database:", err)
+				http.Error(w, "Database error", http.StatusInternalServerError)
+			}
+			return
+		}
+
+		// Check if the provided password matches the stored hash
+		if !checkPasswordHash(password, storedHash) {
+			log.Println("Invalid username or password: password mismatch.")
+			http.Error(w, "Invalid username or password", http.StatusUnauthorized)
+			return
+		}
+
+		// Password is correct; set up a session
+		session, err := store.Get(r, "user-session")
+		if err != nil {
+			log.Println("Error creating session:", err)
+			http.Error(w, "Internal server error", http.StatusInternalServerError)
+			return
+		}
+
+		// Store username in the session
+		session.Values["username"] = username
+		err = session.Save(r, w)
+		if err != nil {
+			log.Println("Error saving session:", err)
+			http.Error(w, "Internal server error", http.StatusInternalServerError)
+			return
+		}
+
+		log.Printf("User '%s' successfully logged in.", username)
+
+		// Redirect to the home page (or dashboard)
+		http.Redirect(w, r, "/", http.StatusSeeOther)
+	}
+}
+
+// logoutHandler logs the user out by destroying their session
+func logoutHandler(w http.ResponseWriter, r *http.Request) {
+	log.Println("Logging out user.")
+	session, err := store.Get(r, "user-session")
+	if err != nil {
+		log.Println("Error fetching session:", err)
+		http.Error(w, "Internal server error", http.StatusInternalServerError)
+		return
+	}
+
+	// Clear the session
+	session.Options.MaxAge = -1
+	err = session.Save(r, w)
+	if err != nil {
+		log.Println("Error saving session:", err)
+		http.Error(w, "Internal server error", http.StatusInternalServerError)
+		return
+	}
+
+	log.Println("User successfully logged out.")
+
+	// Redirect to the login page or home page
+	http.Redirect(w, r, "/login", http.StatusSeeOther)
+}
+
+func initServerHandlers() {
+	http.Handle("/", redirectIfNoAdmin(http.HandlerFunc(homeHandler)))
+	http.Handle("/trainings", redirectIfNoAdmin(http.HandlerFunc(trainingListHandler)))
+	http.Handle("/trainers", redirectIfNoAdmin(http.HandlerFunc(trainerListHandler)))
+	http.Handle("/trainers/add", redirectIfNoAdmin(http.HandlerFunc(addTrainerHandler)))
+	http.Handle("/training-areas", redirectIfNoAdmin(http.HandlerFunc(trainingAreaListHandler)))
+	http.Handle("/training-areas/add", redirectIfNoAdmin(http.HandlerFunc(addTrainingAreaHandler)))
+	http.Handle("/training-areas/assign-trainer", redirectIfNoAdmin(http.HandlerFunc(assignTrainerToAreaHandler)))
+
+	http.HandleFunc("/setup-admin", setupAdminHandler)
+	http.HandleFunc("/login", loginHandler)
+	http.HandleFunc("/logout", logoutHandler)
 }

 func main() {
 	initDB()
 	initTemplates()
-	http.HandleFunc("/", homeHandler)
-	http.HandleFunc("/trainings", trainingListHandler)
-	http.HandleFunc("/trainers", trainerListHandler)
-	http.HandleFunc("/trainers/add", addTrainerHandler)
-	http.HandleFunc("/training-areas", trainingAreaListHandler)
-	http.HandleFunc("/training-areas/add", addTrainingAreaHandler)
-	http.HandleFunc("/training-areas/assign-trainer", assignTrainerToAreaHandler)
+	initServerHandlers()

-	fmt.Println("Server running on http://localhost:8080")
-	http.ListenAndServe(":8080", nil)
+	log.Println("Starting server on :8080")
+	err := http.ListenAndServe(":8080", nil)
+	if err != nil {
+		log.Fatalf("Error starting server: %v", err)
+	}
 }
--- a/schema.sql
+++ b/schema.sql
@ -42,3 +42,10 @@ CREATE TABLE IF NOT EXISTS training_training_areas (
    FOREIGN KEY (training_id) REFERENCES trainings(id),
    FOREIGN KEY (training_area_id) REFERENCES training_areas(id)
 );
+
+CREATE TABLE IF NOT EXISTS admins (
+    id INTEGER PRIMARY KEY AUTOINCREMENT,
+    name TEXT NOT NULL,
+    email TEXT UNIQUE NOT NULL,
+    password TEXT NOT NULL
+);
--- a/templates/add_trainer.html
+++ b/templates/add_trainer.html
@ -1,12 +1,6 @@
-<!DOCTYPE html>
-<html>
-{{template "head.html" .}} <!-- Include header template -->
-
-<body>
-{{template "header.html" .}}
-    <h1>Add Trainer</h1>
-    <a href="/">Back to Home</a>
-    <form action="/trainers/add" method="POST">
+{{ template "preamble.html" }}
+<h1>Add Trainer</h1>
+<form action="/trainers/add" method="POST">
    <label for="name">Name:</label>
    <input type="text" id="name" name="name" required><br><br>
    
@ -14,6 +8,5 @@
    <input type="email" id="email" name="email" required><br><br>
    
    <button type="submit">Add Trainer</button>
-    </form>
-</body>
-</html>
+</form>
+{{template "epilogue.html" }}
--- a/templates/add_training_area.html
+++ b/templates/add_training_area.html
@ -1,18 +1,8 @@
-<!DOCTYPE html>
-<html>
-{{template "head.html" .}} <!-- Include header template -->
-
-<body>
-{{template "header.html" .}}
+{{ template "preamble.html" }}
    <h1>Add New Training Area</h1>
    <form action="/training-areas/add" method="post">
        <label for="name">Training Area Name:</label>
        <input type="text" id="name" name="name" required>
        <button type="submit">Add</button>
    </form>
-    <br>
-    <a href="/training-areas">Back to Training Areas</a>
-    <br><br>
-    <a href="/">Back to Home</a>
-</body>
-</html>
+{{template "epilogue.html" }}
--- a/templates/css.html
+++ b/templates/css.html
@ -12,19 +12,53 @@

    header {
        background-color: #06041f;
+        color: #fff;
        padding: 20px;
        text-align: center;
    }

-    header img {
-        width: 150px;
+    .header-content {
+        display: flex;
+        justify-content: space-between;
+        align-items: center;
+        max-width: 1200px;
+        margin: 0 auto;
+    }
+
+    .logo {
+        width: 50px;
        height: auto;
    }

    header h1 {
+        flex-grow: 1;
+        margin: 0;
+        font-size: 2em;
        color: #47d7ac;
    }

+    .nav-buttons a {
+        text-decoration: none;
+        margin: 0 10px;
+        padding: 10px 20px;
+        background-color: #47d7ac;
+        color: #fff;
+        border-radius: 5px;
+        font-weight: bold;
+        transition: background-color 0.3s ease;
+        display: inline-flex;
+        align-items: center;
+        justify-content: center;
+    }
+
+    .nav-buttons a:hover {
+        background-color: #35a895;
+    }
+
+    .nav-buttons i {
+        margin-right: 8px;
+    }
+
    /* home */
    .tiles ul {
        list-style-type: none;
@ -88,7 +122,7 @@

    button {
        background-color: #47d7ac;
-        color: #fff;
+        color: #06041f;
        padding: 8px 16px;
        border: none;
        cursor: pointer;
@ -98,4 +132,9 @@
    button:hover {
        background-color: #35a895;
    }
+
+    .main {
+        margin-left: 20px;
+        margin-right: 20px;
+    }
 </style>
--- a/templates/epilogue.html
+++ b/templates/epilogue.html
@ -0,0 +1,3 @@
+    </div>
+</body>
+</html>
--- a/templates/header.html
+++ b/templates/header.html
@ -1,4 +1,10 @@
 <header>
-    <img src="logo.png" alt="Training Management Logo"> 
+    <div class="header-content">
+        <img src="logo.png" alt="Training Management Logo" class="logo">
        <h1>Nagarro Training Solutions</h1>
+        <nav class="nav-buttons">
+            <a href="/" class="btn"><i class="fas fa-home"></i> Home</a>
+            <a href="/logout" class="btn"><i class="fas fa-sign-out-alt"></i> Logout</a>
+        </nav>
+    </div>
 </header>
--- a/templates/home.html
+++ b/templates/home.html
@ -1,9 +1,4 @@
-<!DOCTYPE html>
-<html>
-{{template "head.html" .}} <!-- Include header template -->
-
-<body>
-{{template "header.html" .}}
+{{ template "preamble.html" }}
 <h1>Welcome to the Training Management System</h1>
 <div class="tiles">
    <ul>
@ -29,5 +24,4 @@
        </li>
    </ul>
 </div>
-</body>
-</html>
+{{template "epilogue.html" }}
--- a/templates/login.html
+++ b/templates/login.html
@ -0,0 +1,12 @@
+{{ template "preamble.html" }}
+    <h2>Please log in to continue</h2>
+    <form action="/login" method="POST">
+    <label for="username">Username:</label>
+    <input type="text" id="username" name="username" required><br><br>
+
+    <label for="password">Password:</label>
+    <input type="password" id="password" name="password" required><br><br>
+
+    <button type="submit">Login</button>
+</form>
+{{template "epilogue.html" }}
--- a/templates/preamble.html
+++ b/templates/preamble.html
@ -0,0 +1,7 @@
+<!DOCTYPE html>
+<html>
+{{template "head.html" .}} <!-- Include header template -->
+
+<body>
+{{template "header.html" .}}
+    <div class="main">
--- a/templates/setup_admin.html
+++ b/templates/setup_admin.html
@ -0,0 +1,14 @@
+{{ template "preamble.html" }}
+    <h2>Setup Admin Account</h2>
+    <form method="post">
+        <label>Name:</label>
+        <input type="text", name="name" required><br>
+        <label>Email:</label>
+        <input type="email" name="email" required><br>
+
+        <label>Password:</label>
+        <input type="password" name="password" required><br>
+
+        <button type="submit">Create Admin</button>
+    </form>
+{{template "epilogue.html" }}
--- a/templates/trainer_list.html
+++ b/templates/trainer_list.html
@ -1,13 +1,6 @@
-<!DOCTYPE html>
-<html>
-{{template "head.html" .}} <!-- Include header template -->
-
-<body>
-{{template "header.html" .}}
-
+{{ template "preamble.html" }}
    <h1>Trainers</h1>
-    <a href="/">Back to Home</a>
-    <a href="/trainers/add">Add Trainer</a>
+    <a href="/trainers/add"><button>Add Trainer</button></a>
    <table border="1">
        <tr>
            <th>Name</th>
@ -20,5 +13,4 @@
        </tr>
        {{ end }}
    </table>
-</body>
-</html>
+{{template "epilogue.html" }}
--- a/templates/training_area_list.html
+++ b/templates/training_area_list.html
@ -1,12 +1,6 @@
-<!DOCTYPE html>
-<html>
-{{template "head.html" .}} <!-- Include header template -->
-
-<body>
-{{template "header.html" .}}
-
+{{ template "preamble.html" }}
 <h1>Training Areas</h1>
-<a href="/training-areas/add">Add Training Area</a>
+<a href="/training-areas/add"><button>Add Training Area</button></a>

 <table>
    <thead>
@ -34,8 +28,4 @@
        {{end}}
    </tbody>
 </table>
-
-<a href="/">Back to Home</a>
-
-</body>
-</html>
+{{template "epilogue.html" }}
--- a/templates/training_list.html
+++ b/templates/training_list.html
@ -1,11 +1,5 @@
-<!DOCTYPE html>
-<html>
-{{template "head.html" .}} <!-- Include header template -->
-
-<body>
-{{template "header.html" .}}
+{{ template "preamble.html" }}
    <h1>Trainings</h1>
-    <a href="/">Back to Home</a>
    <table border="1">
        <tr>
            <th>Title</th>
@ -26,5 +20,4 @@
        </tr>
        {{ end }}
    </table>
-</body>
-</html>
+{{template "epilogue.html" }}
Author	SHA1	Message	Date
Daniel Eder	9fd841229b	improved styling and logout button	2025-02-17 20:16:40 +01:00
Daniel Eder	3d9c710985	authentication with username & password	2025-02-17 19:53:43 +01:00
Daniel Eder	0e080dd391	create admin account on first start	2025-02-17 19:15:34 +01:00