From 02d191853bdabdb77c67578c78a85b4155bfc84b Mon Sep 17 00:00:00 2001
From: c-d-p <cam.junk@depaoli.id.au>
Date: Tue, 22 Apr 2025 22:54:31 +0200
Subject: [PATCH] Dockerized everything and added CI/CD deployment

---
 .github/workflows/deploy.yml                  |  90 ++++++++++
 backend/.env                                  |   4 +-
 backend/Dockerfile                            |  19 +++
 backend/core/__init__.py                      |   0
 .../core/__pycache__/__init__.cpython-312.pyc | Bin 0 -> 141 bytes
 .../__pycache__/celery_app.cpython-312.pyc    | Bin 544 -> 467 bytes
 .../core/__pycache__/config.cpython-312.pyc   | Bin 1083 -> 1889 bytes
 backend/core/celery_app.py                    |  16 +-
 backend/core/config.py                        |  30 ++--
 backend/docker-compose.yml                    |  88 ++++++++--
 .../admin/__pycache__/api.cpython-312.pyc     | Bin 2506 -> 1691 bytes
 .../admin/__pycache__/tasks.cpython-312.pyc   | Bin 0 -> 1742 bytes
 backend/modules/admin/api.py                  |  21 +--
 backend/modules/admin/tasks.py                |  35 ++++
 backend/requirements.in                       |  17 ++
 backend/requirements.txt                      | 161 ++++++++++++++++--
 .../nativeapp/src/screens/AdminScreen.tsx     |  24 ++-
 17 files changed, 434 insertions(+), 71 deletions(-)
 create mode 100644 .github/workflows/deploy.yml
 create mode 100644 backend/Dockerfile
 create mode 100644 backend/core/__init__.py
 create mode 100644 backend/core/__pycache__/__init__.cpython-312.pyc
 create mode 100644 backend/modules/admin/__pycache__/tasks.cpython-312.pyc
 create mode 100644 backend/modules/admin/tasks.py
 create mode 100644 backend/requirements.in

diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml
new file mode 100644
index 0000000..a27b975
--- /dev/null
+++ b/.github/workflows/deploy.yml
@@ -0,0 +1,90 @@
+# .github/workflows/deploy.yml
+
+name: Build and Deploy Backend
+on:
+  # Triggers the workflow on push events but only for the main branch
+  push:
+    branches: [ main ]
+    paths: # Only run if backend code or Docker config changes
+      - 'backend/**'
+      - '.github/workflows/deploy.yml'
+      - 'backend/docker-compose.yml'
+
+  # Allows running of this workflow manually from the Actions tab
+  workflow_dispatch:
+
+  # Ensures the project will never be out of date by running a cron for this job
+  # Currently set to every Sunday at 3 AM UTC
+  schedule:
+    - cron: '0 3 * * 0'
+
+jobs:
+  build-and-deploy:
+    runs-on: ubuntu-latest
+    steps:
+      # Checks out the repo under $GITHUB_WORKSPACE
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      # ------------------------------------------------------------------
+      # Login to Container Registry (Using GHCR)
+      # ------------------------------------------------------------------
+      - name: Log in to GitHub Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.repository_owner }} # GitHub username
+          password: ${{ secrets.DOCKER_REGISTRY_TOKEN }} # Uses the PAT stored in secrets
+
+      # ------------------------------------------------------------------
+      # Set up Docker Buildx for advanced build features
+      # ------------------------------------------------------------------
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      # ------------------------------------------------------------------
+      # Build and Push Docker Image
+      # ------------------------------------------------------------------
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v5
+        with:
+          context: ./backend
+          file: ./backend/Dockerfile # Explicit path to Dockerfile
+          push: true # Push the image after building
+          tags: | # Use SHA for version specific, latest for general
+            ghcr.io/${{ github.repository_owner }}/MAIA:${{ github.sha }}
+            ghcr.io/${{ github.repository_owner }}/MAIA:latest
+          # Pull latest base image updates when building (good for scheduled runs)
+          pull: true
+          cache-from: type=gha # Github Actions cache
+          cache-to: type=gha,mode=max
+
+      # ------------------------------------------------------------------
+      # Deploy to mara via SSH
+      # ------------------------------------------------------------------
+      - name: Deploy to Server
+        uses: appleboy/ssh-action@v1.0.3
+        with:
+          host: ${{ secrets.SSH_HOST }}
+          username: ${{ secrets.SSH_USER }}
+          key: ${{ secrets.SSH_PRIVATE_KEY }}
+          script: |
+            set -e # Exit script on first error
+            cd ${{ secrets.DEPLOY_PATH }}
+            echo "Logged into server: $(pwd)"
+
+            # Pull the specific image version built in this workflow
+            # Using the Git SHA ensures we deploy exactly what was just built
+            docker pull ghcr.io/${{ github.repository_owner }}/MAIA:${{ github.sha }}
+
+            # Also pull latest for other services to keep up to date
+            docker-compose pull redis db
+
+            # Uses sed to update the compose file with the new image tag
+            sed -i 's|image: ghcr.io/${{ github.repository_owner }}/MAIA:.*|image: ghcr.io/${{ github.repository_owner }}/MAIA:${{ github.sha }}|g' docker-compose.yml
+            echo "Updated docker-compose.yml image tag"
+
+            # Restart the services using the new image(s)
+            echo "Bringing compose stack down and up with new image..."
+            docker-compose up -d --force-recreate --remove-orphans api worker db redis
+            echo "Deployment complete!"
\ No newline at end of file
diff --git a/backend/.env b/backend/.env
index d0c81d1..6530144 100644
--- a/backend/.env
+++ b/backend/.env
@@ -1,3 +1,5 @@
+POSTGRES_USER = "maia"
+POSTGRES_PASSWORD = "maia"
 PEPPER = "LsD7%"
 JWT_SECRET_KEY="1c8cf3ca6972b365f8108dad247e61abdcb6faff5a6c8ba00cb6fa17396702bf"
-GOOGLE_API_KEY="AIzaSyBrte_mETZJce8qE6cRTSz_fHOjdjlShBk"
\ No newline at end of file
+GOOGLE_API_KEY="AIzaSyBrte_mETZJce8qE6cRTSz_fHOjdjlShBk"
diff --git a/backend/Dockerfile b/backend/Dockerfile
new file mode 100644
index 0000000..84b4a3f
--- /dev/null
+++ b/backend/Dockerfile
@@ -0,0 +1,19 @@
+# backend/Dockerfile
+FROM python:3.12-slim
+
+WORKDIR /app
+
+# Set environment variables to prevent buffering issues with logs
+ENV PYTHONDONTWRITEBYTECODE=1
+ENV PYTHONUNBUFFERED=1
+
+# Install dependencies
+COPY ./requirements.txt /app/requirements.txt
+RUN pip install --no-cache-dir --upgrade pip && \
+    pip install --no-cache-dir -r requirements.txt
+
+# Copy application code (AFTER installing dependencies for better caching)
+COPY . /app/
+
+RUN adduser --disabled-password --gecos "" appuser && chown -R appuser /app
+USER appuser
\ No newline at end of file
diff --git a/backend/core/__init__.py b/backend/core/__init__.py
new file mode 100644
index 0000000..e69de29
diff --git a/backend/core/__pycache__/__init__.cpython-312.pyc b/backend/core/__pycache__/__init__.cpython-312.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..1415239e7a959e623073d16ecb06fa895f583407
GIT binary patch
literal 141
zcmX@j%ge<81evGVGC=fW5P=Rpvj9b=GgLBYGWxA#C}INgK7-W!($UYz&rQ`&PASk&
z&QD3z_jUAi)K5xG&Q8rs0g4o*>c_`t=4F<|$LkeT{^GF7%}*)KNwq6t1!`sl;$jfv
NBQql-V-Yiu1pv`_9~=Mx

literal 0
HcmV?d00001

diff --git a/backend/core/__pycache__/celery_app.cpython-312.pyc b/backend/core/__pycache__/celery_app.cpython-312.pyc
index 9e9d3f7d686304411ebeda974e02c1dd6585a2c0..8919cbeb61af57c6425b61dea27c34e6371d3c48 100644
GIT binary patch
delta 271
zcmZ3$a+z8EG%qg~0}zBBWy@e-Vqka-;=lkql<_%XqPntJDsvVGOa?(uoF^uh!ji(8
z&a{SYH48*Mimj4elVjpJ87;Q*{G#mCqAH=>{FKt1)MCBF(vl3llEmWd;woXdSW0eY
z-ee(06-M^S=8Ouag3hi!u0fIUPC@?Ou0ipkK|Z%cp+Z5f!J$4O@lKA;-mZQwx44p1
zb5e^c;}Z)CCg(AF+ZY4w|G>=1$oP~&@-BnILtfz<EIc>3g|Bm~UgTE2!6R~=N9!Vw
a)(u|83(6K3cr3qgvhguBaux9d^#K63JVa*z

delta 328
zcmcc2ynsdhG%qg~0}vSg{+n*g$iVOz#DM`$DC6^@iR#KSDJ-eXSsXAq1U;J}g>_<r
zm=cg?o6AZ-l@w4FJ5UuzI^!D7)hrNGq8KW<G`T1C$Y`+SCT1p9aTKMdWENZL>;Gc3
zs$$YN0Aj-`q1^nG(wx*{y~NUzjER?27}+L%R}kk4a&_?xj`#2n4!H$o2lxktO!i^)
zPLBhc{(+g1k?|>m<Xr}Zhn)O3Sh#NRicZM5E~a@=O!I=M)(XWH9@lm3FY4G|&~`Y$
zbb;IX2A|l3itFN97sa(Mh-t4dToG|y*WseB!v!73140*gTyF3xUf@ys!pX|T)W}xE
H53~XRjQdkc

diff --git a/backend/core/__pycache__/config.cpython-312.pyc b/backend/core/__pycache__/config.cpython-312.pyc
index fd74792d2af74f79a1c5bef5949f7c6b0d44ae39..3a175ae9012a56c935aa12167410a412897010bc 100644
GIT binary patch
literal 1889
zcmb7_&rcgi6vt=1>mL{!WAmfn6eqMzsNKqrfY5|SP-8aW0Jghp3TzQ0*Rusvdzb7w
zl|WTQrBsU43!I2g#wVxZ(qsOFO1-SKJ)o&7QMEmwURse;PMukd<w(7F4&Qk*@6G4E
z8Lwx4_IllbG~p-5)(sATKj`49*&D{iXT&%H2q2~iN{qxX)V39El8y9iku7l&#{e6U
zxs%2cI+_EBdkT<UW=`14X~|Av>{l_8W7igToKshr!Je6%E{k%xTu?Uk6q)EOsyPIa
zT9%cs^9`)kkut4z@u!WJB?E~;K(Z|Znca3Zd@bE}XUm{rA_mz`$ZFaohwPMHh`CSf
zHV7=@nuHFEz_v-SBS(|qmODue_BIJl<Z2Q;Rt?TJ2^}p2uSMu+li)_3%^JEag1b$E
z2YH(WpLGtNHVIwG*CcdXgswIT-N@f0_^n-Zw@C=J5CRq<&?cd$h0tRWdMIJHH{6F^
zSN{y`n4N*k!s1?JN7c)lnyf!6PR3%TTp>3}<&&bC&lR_bZ}QIg*r?^eZh@aoif}$H
zW^qR|;A%RP7P5uE2LQnS1i#1&Yj8$LFYtnuW<ZlsK_?lS%O)qrKDrmXjr$tG0xvEv
zX5macvB0NhvG?Ih7RDFn(n2yjzl81c;^>_Td@Y_x@S+H_1e}8WY9=Z0a4DHu&hp}U
zi0l#%3j70tntwB7HohjFJE`B1;WHUtzyNpA3?iQp_$*xD*KpTdIz6|@!+0i1$Ek2H
zc0s7*N-~7l4Pi+|kBijyK=|l!uGsL{R2@6X-BQq01+$xSS+nx6dRfCh2y=>}mUHET
zs^}1E^j^{EO^MlpQr75|qIsxzsrab)sq|3kqtZ|02XH|YypF`S)RG*_qn%h@MRIH@
zo{Y!7$mPG16+~t<;!>3_3!BlMUClukQ=uvK_ZR@a1E+!BqsU?8D0&z@9xy&wF$1gn
z51u7VZuP8x;As1B`$#!dj@N(u*zBL)e|W%}-1O-ij&Za9?xo}I+0gZ>RFSG1l?~&=
zX(Rr*IkawYeFwV9t)C9RTMyQP^-wKj+@3R%d2<*U+~D&ulS5~N*Q&uvuo|j_Uie<V
zWe&#omkx*{emWAa@74C|Pijw$3DH<yF-KMn?)q^LE$`+?U8+g-joOAWo;E%e%$uUY
z4Lv8x#Ix2-y%;qE(aSwWPlIn)Bb7)sT8SFrdoM@L;M9KVfb4ea?EgK#a8ugw)v<-0
z*uS%ja!R?7hkD~Z(dYxD1&LtC<%^=xSHwDJ>}p2cpmP@K9b&z9-M{>FrnFmRNPY>R
uzfa^JmSLE`K;&1@@f!&J4mzKDUvYkB`q?+H0O|g{1w6gqPk!sNNdE!XkCPDq

delta 765
zcmYjP&1(}u9G%&n{b-WieDs4DY?`1=UD2WuQ;<@yR-2Z#DM^Yj9zt=K7|4h0rb0n%
z1eJ=Hlsz=ZUZodLg7_zRFt8$Zp^zMUC|)e|<jI+d2_2ZX@BQBV-p=e!SN$rh-xS3I
z$oT$VeD;dlQ^V7ksC}RV9hN}_VhAbc%3OuVJmY*BRRk<RzyU+pTc1dZgouYUg$yih
zi<)#wsRmu&{HA5(jC#FPEm}m2MWb$1U+lFecRrI9`@jGg>Hu>a<b9YokRj;YEOB%m
zi%cP=1S}ac@kFL1Jj6VisUhrPo`)$f_A=$8ifqiME4q5f5kUr4Sf4_?#h&TEV5-dY
z4;lj(JU{aS)Y}efAy@7n%KpONl*EPk!bWz*KI4aPr8BvF>30|a*OPs?u#_vTXR>)$
zNavDwQ?9c7IA6HGvY5#(<<qODQ4(htQ4~t{I~27)q8l(^|3p_gQ?^whGEIMt=_TOu
zrE1+&sPt0^Qa}_!6h<hF+E0X;9f?v3GMUyEfw$l&G}m~v`@lhSow0ahxyd^yel!;8
zu}J4qtg+g><Dl5ll-5QQ2g451I+KYu8gE$+N_0cvR`?+4gc7}w#IH!K9l!l4=|obE
zwI+#8bqAFlR{DWb=6HW2Ynto^pKt4%)q3e^!TNt0OrH2ISF_kLTv4yli(v}=E>|9`
zyi98>j()Gd@@%E1Z<UQX^9qrWOzRqfKRkr+WC~nA2BXIy+6CS>$~jWu%<ju`Kptl?
N;2ZgH@3qXL{sD}dwZ#Ac

diff --git a/backend/core/celery_app.py b/backend/core/celery_app.py
index 8057de0..51e7355 100644
--- a/backend/core/celery_app.py
+++ b/backend/core/celery_app.py
@@ -1,10 +1,14 @@
 # core/celery_app.py
 from celery import Celery
-from core.config import settings
+from core.config import settings # Import your settings
 
-celery = Celery(
-    "maia",
-    broker=f"redis://{settings.REDIS_HOST}:{settings.REDIS_PORT}/0",
-    backend=f"redis://{settings.REDIS_HOST}:{settings.REDIS_PORT}/1",
-    include=["modules.auth.tasks"],  # List all task modules here
+celery_app = Celery(
+    "worker",
+    broker=settings.REDIS_URL,
+    backend=settings.REDIS_URL,
+    include=["modules.auth.tasks", "modules.admin.tasks"] # Add paths to modules containing tasks
+    # Add other modules with tasks here, e.g., "modules.some_other_module.tasks"
 )
+
+# Optional: Update Celery configuration directly if needed
+# celery_app.conf.update(task_track_started=True)
\ No newline at end of file
diff --git a/backend/core/config.py b/backend/core/config.py
index a0794b9..80c6211 100644
--- a/backend/core/config.py
+++ b/backend/core/config.py
@@ -1,24 +1,30 @@
 # core/config.py
 from pydantic_settings import BaseSettings
-from os import getenv
-from dotenv import load_dotenv
-
-load_dotenv()  # Load .env file
+from pydantic import Field # Import Field for potential default values if needed
+import os
 
 class Settings(BaseSettings):
-    DB_URL: str = "postgresql://maia:maia@localhost:5432/maia"
+    # Database settings - reads DB_URL from environment or .env
+    DB_URL: str
 
-    REDIS_HOST: str = "localhost"
-    REDIS_PORT: int = 6379
+    # Redis settings - reads REDIS_URL from environment or .env, also used for Celery.
+    REDIS_URL: str
 
+    # JWT settings - reads from environment or .env
     JWT_ALGORITHM: str = "HS256"
     ACCESS_TOKEN_EXPIRE_MINUTES: int = 30
-    # ACCESS_TOKEN_EXPIRE_MINUTES: int = 1
     REFRESH_TOKEN_EXPIRE_DAYS: int = 7
-    
-    PEPPER: str = getenv("PEPPER", "")
-    JWT_SECRET_KEY: str = getenv("JWT_SECRET_KEY", "")
+    PEPPER: str
+    JWT_SECRET_KEY: str
 
-    GOOGLE_API_KEY: str = getenv("GOOGLE_API_KEY", "")
+    # Other settings
+    GOOGLE_API_KEY: str = "" # Example with a default
 
+    class Config:
+        # Tell pydantic-settings to load variables from a .env file
+        env_file = '.env'
+        env_file_encoding = 'utf-8'
+        extra = 'ignore'
+
+# Create a single instance of the settings
 settings = Settings()
diff --git a/backend/docker-compose.yml b/backend/docker-compose.yml
index 2d9c274..f834afc 100644
--- a/backend/docker-compose.yml
+++ b/backend/docker-compose.yml
@@ -1,23 +1,81 @@
 # docker-compose.yml
 services:
-  postgres:
-    image: postgres:14
-    environment:
-      POSTGRES_USER: maia
-      POSTGRES_PASSWORD: maia
-      POSTGRES_DB: maia
-    ports:
-      - "5432:5432"
+  # ----- Backend API (Uvicorn/FastAPI/Django etc.) -----
+  api:
+    build:
+      context: .
+      dockerfile: Dockerfile
+    container_name: MAIA-API
+    command: uvicorn main:app --host 0.0.0.0 --port 8000 --reload
     volumes:
-      - postgres_data:/var/lib/postgresql/data
-
-  redis:
-    image: redis:7
+      - .:/app
     ports:
-      - "6379:6379"
+      - "8000:8000"
+    environment:
+      - DB_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@db:5432/maia
+      - REDIS_URL=redis://redis:6379/0
+    depends_on:
+      - db
+      - redis
+    networks:
+      - maia_network
+    env_file:
+      - ./.env
+    restart: unless-stopped
+
+  # ----- Celery Worker -----
+  worker:
+    build:
+      context: .
+      dockerfile: Dockerfile
+    container_name: MAIA-Worker
+    command: celery -A core.celery_app worker --loglevel=info
+    volumes:
+      - .:/app
+    environment:
+      - DB_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@db:5432/maia
+      - REDIS_URL=redis://redis:6379/0
+    depends_on:
+      - db
+      - redis
+    env_file:
+      - ./.env
+    networks:
+      - maia_network
+    restart: unless-stopped
+
+  # ----- Database (PostgreSQL) -----
+  db:
+    image: postgres:15 # Use a specific version
+    container_name: MAIA-DB
+    volumes:
+      - postgres_data:/var/lib/postgresql/data # Persist data using a named volume
+    environment:
+      - POSTGRES_USER=${POSTGRES_USER}
+      - POSTGRES_PASSWORD=${POSTGRES_PASSWORD}
+      - POSTGRES_DB=maia
+    env_file:
+      - ./.env
+    networks:
+      - maia_network
+    restart: unless-stopped
+
+  # ----- Cache (Redis) -----
+  redis:
+    image: redis:7 # Use a specific version
+    container_name: MAIA-Redis
     volumes:
       - redis_data:/data
+    networks:
+      - maia_network
+    restart: unless-stopped
 
+# ----- Volumes Definition -----
 volumes:
-  postgres_data:
-  redis_data:
\ No newline at end of file
+  postgres_data: # Define the named volume for PostgreSQL
+  redis_data:    # Define the named volume for Redis
+
+# ----- Network Definition -----
+networks:
+  maia_network:   # Define a custom bridge network
+    driver: bridge
\ No newline at end of file
diff --git a/backend/modules/admin/__pycache__/api.cpython-312.pyc b/backend/modules/admin/__pycache__/api.cpython-312.pyc
index 6f2b3a92d54ea3c67b71415359b4215f09ba09c9..e2753a4cfd558da600bb4db2ef4f6bdc140627b9 100644
GIT binary patch
delta 648
zcmX>lJe!yAG%qg~0}!|zW6R)WnaC%>s54PL(<_A|g)>JeS2#+Tk%5UJl{tkgg*%-Q
z$YMzqT+Im5z`&5sxQ1snGlU%_!o=Xtkiy%-kiwVB4i^<o6`A-)!Kj5{HAERhlz6I0
zmLZgbM5Vw@O%X~JO%a}~z$h&!(!v7QCs`?~DK^=Mu}t74$a+o2TkOd>sfk4?Ns|vT
zzE=<hiWPwfJ|He;2NJCeH@Ns(yozMOGLtVdx!A~nm|y}dC<o-;;wnl_Oo>lS$<53w
zQUVGH0&y`fkZ53dz#}@L_5!!+1s2sJ*~x*->Y5<Wg79ZIATgbxh9L_`qk~$e66VQ_
zEHVN$Ot6q*WT<4+WSYF1b#uL+CUcP(P)iX%khsN~lA4oP2^3NW38{bxkYq8)5(Nc?
zBCr!Vz#ffHNh(qY3WMb(fs6)*4}1(f!u>X#HVrO!Sh(AL8+|9JTxAgld)ZG@>K0o`
zWkF_MdJ)L9TkL6x#U+W8!#Vl_SxXX&vx^}vU@OWmElDi`hutma^wbh?DBNNx$S*Dd
z+lLllzc_4i^HWN5QtgV2fyRR3qIl+HElvfty9`nfIfW+sbNcGBGfGUz`@jICR%mW;
g-x+=&Y<K(x6Q7G(zMnvXpP3n$BtJ3%SzxCE08QG4=Kufz

delta 1396
zcma)6OK2NM7@mD<wbIIZM7I2hyDbsPI*toY(w3rzwy2~ybq`5MilK<LXX;4Si`jLl
zgN%G|X-o~a*h3slaY7C;IEO+{r4-sjFU@5|T&ygn<j_kGp-$3MPMsNLZKL+kANHSr
z{`vO%AM;q(eoaIkXqpO${PMGW?JKzvNpX7Pc)rd9BtQiQr#WJYD7M8>5CGHMeRWG{
z+Y@mfoCh$p2w)fm_Pq%dFBomaVGT8(14b6X*2|@dBtf4#jAM4=i6){1j5)(xe=NQz
z?!$ZL62=kd6Yg{8ckVAeLBN=*2>Gl4QD1_V8d)5}{cOc~!e=vm)MSb|2guY@F*0G!
zgr$5L>%<WwpQRDC03L^vtMhIs?TTsK@05h&A&K~D$<L4R&W11`*LYmDdFMxA;N1d^
z*&#Kq5bSV~sb9f;&Tj(;+9cNsp?|~wKM6t7#5=?f#{tMgA<tcU8EmXTTh$>2T7HN4
z1oJ{o$bwHV0x&PuL@3U@Njk+X2iv*V|BJ3B_7bvr$)-EQ1WGk=9el$dluoiv`l|<H
zO)B&p%zVpF<>2q-%OYTPr+v)+=!03|GA-N)IDZP?)eX)QC-Y^9Um@7*$*gIclct4q
zj4Wj9Cq8`dV%G4aSqow7dNhlQ$j+Cibpk4)w{_z2@l!=)Vg!vaK0=5v-D*!MA=`um
z;VBSTsyVY*^pt62=V(Arog$~LZX@QFrz)jV-u7h1Y<c1gnzKBqit}aL3!pF1)U1s>
z8PWuhA>&tRkk_bU;ZD+UD*HEAHcQBp+B`Dx>r5~^;0jAK2Pg3;S?LC#4y;GSS^#?y
z5KgRQmNE<3M}g2EN_a(E(sq==rZRZ@{d*VgT(~>#Dudg~=&rw{Hx>Q%<h_|YGj~g_
zqHil_T8g?7Tna9STG3v&f7I<d?JB4LmO;Gx=F!H{omjdVOYg*nnz5mWvEdtXt51Jc
z2U76ljj_jFy=zw=b{*SI4Qyz)w4Ky&Gc~+9(M-LyD(yy-ZtBEl-)7kDKD!-#qZN(c
zR2%Br*^SJt%=)?CqC<NjLb4YI!O)@br`)a)R~cbf{$nFWIy+Y-TZieD^#Y%nmTgw^
z*cp_*{y@eR(p}7+3{M~%#4f)lRx6gx8rAVmyihWw3Y;yXbNC&?M&Ced&3Pf|(o-3z
v2}hU5M|!x|SIc{V44cNc=fA)D)0H1`?wOC8L*vh=^SJ={-lsgVSc3lm?}aRb

diff --git a/backend/modules/admin/__pycache__/tasks.cpython-312.pyc b/backend/modules/admin/__pycache__/tasks.cpython-312.pyc
new file mode 100644
index 0000000000000000000000000000000000000000..5e01d07e0bc78bab4893d8e0dadea563640b61c9
GIT binary patch
literal 1742
zcmah}-%A`<6uvV%GdnZ8qq_#v)mC?!YLij33kkMCY=YKGTWngAmV!`ZoO{>Zb$)E`
z%tDk|uuy11g(OcZA(%&t{R8?B6k7VSixxLS1w)_uW+Q#cQ}3PKskT;fAMTv{%{kw9
z?#JQ&q9`&TYx+l__%jE<@AMF@SUWfxBf%Pg05T@9m|2Dah$)lo|1QX)Sb>GHuet5^
zuUT%1)A&E=Nn--pKqkUVb9$u`a77(MgE>LLlbA{#jj*8{16e9pBXW>|F_X1oH8zYn
zle73*ER1<mu;Mk20W9ztKUPkiU~GrmZIv2Na#$!p!RNn^Z?~^k69_6q4cFp6z%xEq
z?mEp=?mmqXCNbh?z!`O~ytFP}?m3+k^+fI|LAk`-K8wHibZxosG#2sIL|>c&U)%(s
zCixOfEWQnZ%dARgbpJo>zC_!t$zC>6fk|I_1Rk>|yoi@ykNzHieYyO`@hOU;&W@{B
zKjDD?a#s}Uiq^6GSXRk;*F-v2y&_Vf?&<Toi&VNn)v-hLBAvO5YQfYOa$!LWc;{1G
zMPup|b}FiFLlq+fBi%!)Zkj6LF_HVP^l9C6X+9Zdl0>D{0(Pu+s*3IysN$(r7vXjt
zCIe09Uup5qA$y@@BLXB{<hmutw)91W$ys!f=auXQm&Dv8X?<FY1+rfC9K*4!k{3uc
zE|^uf7;y6?8)^(r67C>w5h8s7Eq6~vH^+#Osh8fLxHY8(eAvx$D(smEw0a#=2@>TS
z)I0>Wu0VFbG<DM`B5Mf?l)d8^$T`@;aSA332cw+f*oD#p7Ac~HNMt>hC?-rz&V6=k
zCJ-&;>GW41LgMorv6egsq0M0|v@a;M{0_K9wB!bS1($3uh@(5msCp<6VCcD)!1VPA
zn+ux>_1l6ibA#mVmbEjEp_>5<=W&MiBZvHRwr-(-Z)qh6PN%26UR=o+9Sh|RSjig>
zMEQ><KA6bQ>&7CoVcv3JmCQq4hgQkXd%C;m<|<1;JamtU(BY;Ji+e=274TOF;I(~j
zc%K{C=Po=`de^UQ-q^UYqYST1KRuV-8vWtDpM>3WAFs?jmAb#}UzvOsPaKHJ`^r6K
zPwa1q{ZFRrV*jo<+>AiAA*xRbby3|FFE>T`zI0DoO*B(I^;fUdJFnKotA_&UI=|NU
zux~Ft*hmlVrH2~np`G-|U7^{lJ_o!seD}kH&YtzpcRB}}nb$Uz4P`Gg(#VW#%{DUE
z9`L`Vy6c%sTfJM!`uWk_)LYF|*P8rLULV~Y-xz;%{nymcVS<nxCV`YVp?<mEnX8LA
zdTnr1<AcuDc>MF=W9mx4QOC&WI*u7y^&P+i1jiT1_Cg$QxqBUJ<VYWFcaUs{F@|CG
g!J7w6;+yPO*+VwV<R1(?2jp`U18n+F3WPL&1OM!olmGw#

literal 0
HcmV?d00001

diff --git a/backend/modules/admin/api.py b/backend/modules/admin/api.py
index 9ca6f98..63990fa 100644
--- a/backend/modules/admin/api.py
+++ b/backend/modules/admin/api.py
@@ -6,7 +6,7 @@ from sqlalchemy.orm import Session
 from core.database import Base, get_db
 from modules.auth.models import User, UserRole
 from modules.auth.dependencies import admin_only
-
+from .tasks import cleardb
 
 router = APIRouter(prefix="/admin", tags=["admin"], dependencies=[Depends(admin_only)])
 
@@ -27,20 +27,5 @@ def clear_db(payload: ClearDbRequest, db: Annotated[Session, Depends(get_db)]):
     'hard'=False: Delete data from tables except users.
     """
     hard = payload.hard # Get 'hard' from the payload
-    if hard:
-        # ... existing hard clear logic ...
-        Base.metadata.drop_all(bind=db.get_bind())
-        Base.metadata.create_all(bind=db.get_bind())
-        db.commit()
-        return {"message": "Database reset (HARD)"}
-    else:
-        # ... existing soft clear logic ...
-        tables = Base.metadata.tables.keys()
-        for table_name in tables:
-            # delete all tables that isn't the users table
-            if table_name != "users":
-                table = Base.metadata.tables[table_name]
-                print(f"Deleting table: {table_name}")
-                db.execute(table.delete())
-        db.commit()
-        return {"message": "Database cleared"}
\ No newline at end of file
+    cleardb.delay(hard)
+    return {"message": "Clearing database in the background", "hard": hard}
diff --git a/backend/modules/admin/tasks.py b/backend/modules/admin/tasks.py
new file mode 100644
index 0000000..3c03c28
--- /dev/null
+++ b/backend/modules/admin/tasks.py
@@ -0,0 +1,35 @@
+from core.celery_app import celery_app
+
+@celery_app.task
+def cleardb(hard: bool):
+    """
+    Clear the database based on the 'hard' flag.
+    'hard'=True: Drop and recreate all tables.
+    'hard'=False: Delete data from tables except users.
+    """
+    from sqlalchemy import create_engine
+    from sqlalchemy.orm import sessionmaker
+    from core.config import settings
+    from core.database import Base
+
+    engine = create_engine(settings.DB_URL)
+    SessionLocal = sessionmaker(autocommit=False, autoflush=False, bind=engine)
+    db = SessionLocal()
+
+    if hard:
+        # Drop and recreate all tables
+        Base.metadata.drop_all(bind=engine)
+        Base.metadata.create_all(bind=engine)
+        db.commit()
+        return {"message": "Database reset (HARD)"}
+    else:
+        # Delete data from tables except users
+        tables = Base.metadata.tables.keys()
+        for table_name in tables:
+            # delete all tables that isn't the users table
+            if table_name != "users":
+                table = Base.metadata.tables[table_name]
+                print(f"Deleting table: {table_name}")
+                db.execute(table.delete())
+        db.commit()
+        return {"message": "Database cleared"}
\ No newline at end of file
diff --git a/backend/requirements.in b/backend/requirements.in
new file mode 100644
index 0000000..11d6226
--- /dev/null
+++ b/backend/requirements.in
@@ -0,0 +1,17 @@
+alembic
+argon2-cffi
+celery
+fastapi
+gevent
+google-auth
+google-genai
+psycopg2-binary
+pydantic
+pydantic-settings
+python-dotenv
+python-jose
+python-multipart
+redis
+SQLAlchemy
+starlette
+uvicorn
\ No newline at end of file
diff --git a/backend/requirements.txt b/backend/requirements.txt
index 4f680bb..cf3a264 100644
--- a/backend/requirements.txt
+++ b/backend/requirements.txt
@@ -1,46 +1,175 @@
+#
+# This file is autogenerated by pip-compile with Python 3.12
+# by the following command:
+#
+#    pip-compile
+#
+alembic==1.15.2
+    # via -r requirements.in
 amqp==5.3.1
+    # via kombu
 annotated-types==0.7.0
+    # via pydantic
 anyio==4.9.0
-bcrypt==4.3.0
+    # via
+    #   google-genai
+    #   httpx
+    #   starlette
+argon2-cffi==23.1.0
+    # via -r requirements.in
+argon2-cffi-bindings==21.2.0
+    # via argon2-cffi
 billiard==4.2.1
+    # via celery
+cachetools==5.5.2
+    # via google-auth
 celery==5.5.1
+    # via -r requirements.in
+certifi==2025.1.31
+    # via
+    #   httpcore
+    #   httpx
+    #   requests
 cffi==1.17.1
+    # via argon2-cffi-bindings
+charset-normalizer==3.4.1
+    # via requests
 click==8.1.8
+    # via
+    #   celery
+    #   click-didyoumean
+    #   click-plugins
+    #   click-repl
+    #   uvicorn
 click-didyoumean==0.3.1
+    # via celery
 click-plugins==1.1.1
+    # via celery
 click-repl==0.3.0
-cryptography==44.0.2
+    # via celery
 ecdsa==0.19.1
+    # via python-jose
 fastapi==0.115.12
-greenlet==3.1.1
+    # via -r requirements.in
+gevent==25.4.1
+    # via -r requirements.in
+google-auth==2.39.0
+    # via
+    #   -r requirements.in
+    #   google-genai
+google-genai==1.11.0
+    # via -r requirements.in
+greenlet==3.2.0
+    # via
+    #   gevent
+    #   sqlalchemy
 h11==0.14.0
+    # via
+    #   httpcore
+    #   uvicorn
+httpcore==1.0.8
+    # via httpx
+httpx==0.28.1
+    # via google-genai
 idna==3.10
-iniconfig==2.1.0
-kombu==5.5.2
-packaging==24.2
-passlib==1.7.4
-pluggy==1.5.0
-prompt_toolkit==3.0.50
+    # via
+    #   anyio
+    #   httpx
+    #   requests
+kombu==5.5.3
+    # via celery
+mako==1.3.10
+    # via alembic
+markupsafe==3.0.2
+    # via mako
+prompt-toolkit==3.0.51
+    # via click-repl
 psycopg2-binary==2.9.10
+    # via -r requirements.in
 pyasn1==0.4.8
+    # via
+    #   pyasn1-modules
+    #   python-jose
+    #   rsa
+pyasn1-modules==0.4.1
+    # via google-auth
 pycparser==2.22
+    # via cffi
 pydantic==2.11.3
-pydantic_core==2.33.1
-pytest==8.3.5
+    # via
+    #   -r requirements.in
+    #   fastapi
+    #   google-genai
+    #   pydantic-settings
+pydantic-core==2.33.1
+    # via pydantic
+pydantic-settings==2.9.1
+    # via -r requirements.in
 python-dateutil==2.9.0.post0
+    # via celery
 python-dotenv==1.1.0
+    # via
+    #   -r requirements.in
+    #   pydantic-settings
 python-jose==3.4.0
+    # via -r requirements.in
 python-multipart==0.0.20
+    # via -r requirements.in
 redis==5.2.1
-rsa==4.9
+    # via -r requirements.in
+requests==2.32.3
+    # via google-genai
+rsa==4.9.1
+    # via
+    #   google-auth
+    #   python-jose
 six==1.17.0
+    # via
+    #   ecdsa
+    #   python-dateutil
 sniffio==1.3.1
-SQLAlchemy==2.0.40
+    # via anyio
+sqlalchemy==2.0.40
+    # via
+    #   -r requirements.in
+    #   alembic
 starlette==0.46.2
+    # via
+    #   -r requirements.in
+    #   fastapi
+typing-extensions==4.13.2
+    # via
+    #   alembic
+    #   anyio
+    #   fastapi
+    #   google-genai
+    #   pydantic
+    #   pydantic-core
+    #   sqlalchemy
+    #   typing-inspection
 typing-inspection==0.4.0
-typing_extensions==4.13.2
+    # via
+    #   pydantic
+    #   pydantic-settings
 tzdata==2025.2
-uvicorn==0.34.1
+    # via kombu
+urllib3==2.4.0
+    # via requests
+uvicorn==0.34.2
+    # via -r requirements.in
 vine==5.1.0
+    # via
+    #   amqp
+    #   celery
+    #   kombu
 wcwidth==0.2.13
-alembic
+    # via prompt-toolkit
+websockets==15.0.1
+    # via google-genai
+zope-event==5.0
+    # via gevent
+zope-interface==7.2
+    # via gevent
+
+# The following packages are considered to be unsafe in a requirements file:
+# setuptools
diff --git a/interfaces/nativeapp/src/screens/AdminScreen.tsx b/interfaces/nativeapp/src/screens/AdminScreen.tsx
index 9785771..06d0e87 100644
--- a/interfaces/nativeapp/src/screens/AdminScreen.tsx
+++ b/interfaces/nativeapp/src/screens/AdminScreen.tsx
@@ -1,13 +1,18 @@
 import React, { useState } from 'react';
 import { View, StyleSheet } from 'react-native';
 import { Button, Checkbox, Text, ActivityIndicator, Snackbar } from 'react-native-paper';
-import { clearDatabase } from '../api/admin'; // Revert to standard import without extension
+import { clearDatabase } from '../api/admin';
+// Remove useNavigation import if no longer needed elsewhere in this file
+// import { useNavigation } from '@react-navigation/native';
+import { useAuth } from '../contexts/AuthContext'; // Import useAuth
 
 const AdminScreen = () => {
   const [isHardClear, setIsHardClear] = useState(false);
   const [isLoading, setIsLoading] = useState(false);
   const [snackbarVisible, setSnackbarVisible] = useState(false);
   const [snackbarMessage, setSnackbarMessage] = useState('');
+  // const navigation = useNavigation(); // Remove if not used elsewhere
+  const { logout } = useAuth(); // Get the logout function from context
 
   const handleClearDb = async () => {
     setIsLoading(true);
@@ -16,12 +21,25 @@ const AdminScreen = () => {
       const response = await clearDatabase(isHardClear);
       setSnackbarMessage(response.message || 'Database cleared successfully.');
       setSnackbarVisible(true);
+
+      // If hard clear was successful, trigger the logout process from AuthContext
+      if (isHardClear) {
+        console.log('Hard clear successful, calling logout...');
+        await logout(); // Call the logout function from AuthContext
+        // The RootNavigator will automatically switch to the AuthFlow
+        // No need to manually navigate or set loading to false here
+        return; // Exit early
+      }
+
     } catch (error: any) {
       console.error("Error clearing database:", error);
       setSnackbarMessage(error.response?.data?.detail || 'Failed to clear database.');
       setSnackbarVisible(true);
     } finally {
-      setIsLoading(false);
+      // Only set loading to false if it wasn't a hard clear (as logout handles navigation)
+      if (!isHardClear) {
+          setIsLoading(false);
+      }
     }
   };
 
@@ -78,4 +96,4 @@ const styles = StyleSheet.create({
   },
 });
 
-export default AdminScreen;
+export default AdminScreen;
\ No newline at end of file