Upload 17 files

Dockerfile

@@ -0,0 +1,16 @@
+FROM python:3.11-slim
+
+WORKDIR /code
+
+RUN apt-get update && apt-get install -y build-essential && rm -rf /var/lib/apt/lists/*
+
+COPY requirements.txt .
+RUN pip install --no-cache-dir -r requirements.txt
+
+COPY . .
+
+ENV PORT=7860
+EXPOSE 7860
+
+CMD ["python", "app.py"]
+

app.py

@@ -0,0 +1,753 @@
+import os
+import re
+import csv
+import secrets
+import unicodedata
+from datetime import datetime, timedelta
+from io import BytesIO
+
+from flask import (
+    Flask,
+    render_template,
+    request,
+    redirect,
+    url_for,
+    send_file,
+    flash,
+    session,
+    abort,
+)
+from flask_sqlalchemy import SQLAlchemy
+from flask_login import (
+    LoginManager,
+    UserMixin,
+    login_user,
+    login_required,
+    current_user,
+    logout_user,
+)
+from werkzeug.security import generate_password_hash, check_password_hash
+from reportlab.pdfgen import canvas
+from reportlab.lib.pagesizes import letter
+
+from sendgrid import SendGridAPIClient
+from sendgrid.helpers.mail import Mail
+
+# your HF-based classifier
+from model import classify_tone_rich
+
+
+# =========================================================
+# APP CONFIG
+# =========================================================
+
+app = Flask(__name__)
+
+app.config["SECRET_KEY"] = os.getenv("SECRET_KEY", "change-this-in-prod")
+app.config["SQLALCHEMY_DATABASE_URI"] = "sqlite:///data.db"
+app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = False
+
+# cookie security
+app.config["SESSION_COOKIE_HTTPONLY"] = True
+app.config["SESSION_COOKIE_SAMESITE"] = "Lax"
+
+db = SQLAlchemy(app)
+login_manager = LoginManager(app)
+login_manager.login_view = "login"
+
+# Email (SendGrid)
+SENDGRID_API_KEY = os.getenv("SENDGRID_API_KEY")
+SENDER_EMAIL = os.getenv("SENDER_EMAIL", "[email protected]")
+
+# simple email regex
+EMAIL_RE = re.compile(r"^[^@\s]+@[^@\s]+\.[^@\s]+$")
+
+os.makedirs("exports", exist_ok=True)
+
+
+# =========================================================
+# HELPER FUNCTIONS – SANITIZATION, CSRF, PASSWORDS
+# =========================================================
+
+def normalize_text(value: str) -> str:
+    if not value:
+        return ""
+    value = unicodedata.normalize("NFKC", value)
+    value = value.replace("\u200b", "").replace("\u200c", "").replace("\u200d", "")
+    return value.strip()
+
+
+def sanitize_string(value: str, max_len: int = 255) -> str:
+    value = normalize_text(value)
+    if len(value) > max_len:
+        value = value[:max_len]
+    return value
+
+
+def sanitize_long_text(value: str, max_len: int = 4000) -> str:
+    value = normalize_text(value)
+    if len(value) > max_len:
+        value = value[:max_len]
+    return value
+
+
+def is_valid_email(email: str) -> bool:
+    return bool(email and EMAIL_RE.match(email))
+
+
+def is_strong_password(pw: str) -> bool:
+    if not pw or len(pw) < 8:
+        return False
+    has_letter = any(c.isalpha() for c in pw)
+    has_digit = any(c.isdigit() for c in pw)
+    return has_letter and has_digit
+
+
+def generate_code() -> str:
+    """6-digit numeric code used for verify + reset."""
+    return f"{secrets.randbelow(1000000):06d}"
+
+
+def generate_csrf_token() -> str:
+    token = session.get("csrf_token")
+    if not token:
+        token = secrets.token_hex(16)
+        session["csrf_token"] = token
+    return token
+
+
+@app.before_request
+def csrf_protect():
+    # ensure CSRF token exists
+    generate_csrf_token()
+
+    if request.method == "POST":
+        form_token = request.form.get("csrf_token", "")
+        sess_token = session.get("csrf_token", "")
+        if not form_token or form_token != sess_token:
+            abort(400, description="Invalid CSRF token")
+
+
+@app.context_processor
+def inject_csrf():
+    return {"csrf_token": session.get("csrf_token", "")}
+
+
+# =========================================================
+# MODELS
+# =========================================================
+
+class User(UserMixin, db.Model):
+    id = db.Column(db.Integer, primary_key=True)
+    email = db.Column(db.String(255), unique=True, nullable=False)
+    password_hash = db.Column(db.String(255), nullable=False)
+    created_at = db.Column(db.DateTime, default=datetime.utcnow)
+
+    # login security
+    failed_logins = db.Column(db.Integer, default=0)
+    lock_until = db.Column(db.DateTime, nullable=True)
+
+    # email verification
+    is_verified = db.Column(db.Boolean, default=False)
+    verification_code = db.Column(db.String(6), nullable=True)
+    verification_expires = db.Column(db.DateTime, nullable=True)
+
+    # password reset
+    reset_code = db.Column(db.String(6), nullable=True)
+    reset_expires = db.Column(db.DateTime, nullable=True)
+
+    # activity (for possible retention rules)
+    last_active_at = db.Column(db.DateTime, nullable=True)
+
+
+class Entry(db.Model):
+    id = db.Column(db.Integer, primary_key=True)
+    created_at = db.Column(db.DateTime, default=datetime.utcnow)
+    text = db.Column(db.Text, nullable=False)
+    label = db.Column(db.String(32))
+    confidence = db.Column(db.Float)
+    severity = db.Column(db.Integer)
+    threat_score = db.Column(db.Integer)
+    politeness_score = db.Column(db.Integer)
+    friendly_score = db.Column(db.Integer)
+    has_threat = db.Column(db.Boolean, default=False)
+    has_profanity = db.Column(db.Boolean, default=False)
+    has_sarcasm = db.Column(db.Boolean, default=False)
+    user_id = db.Column(db.Integer, db.ForeignKey("user.id"), nullable=False)
+
+    user = db.relationship("User", backref="entries")
+
+
+@login_manager.user_loader
+def load_user(user_id):
+    try:
+        return User.query.get(int(user_id))
+    except Exception:
+        return None
+
+
+# =========================================================
+# EMAIL HELPERS
+# =========================================================
+
+def send_email(to_email: str, subject: str, html: str):
+    if not SENDGRID_API_KEY:
+        print("[WARN] SENDGRID_API_KEY not set. Skipping email send.")
+        print(f"Subject: {subject}\nTo: {to_email}\n{html}")
+        return
+
+    message = Mail(
+        from_email=SENDER_EMAIL,
+        to_emails=to_email,
+        subject=subject,
+        html_content=html,
+    )
+    try:
+        sg = SendGridAPIClient(SENDGRID_API_KEY)
+        sg.send(message)
+        print(f"[INFO] Sent email to {to_email}: {subject}")
+    except Exception as e:
+        print(f"[ERROR] Failed to send email to {to_email}: {e}")
+
+
+def send_verification_email(to_email: str, code: str):
+    html = f"""
+    <p>Thanks for signing up for the AI Email Tone Classifier.</p>
+    <p>Your verification code is: <strong>{code}</strong></p>
+    <p>This code will expire in 15 minutes.</p>
+    """
+    send_email(to_email, "Verify your email", html)
+
+
+def send_password_reset_email(to_email: str, code: str):
+    html = f"""
+    <p>You requested to reset your password for the AI Email Tone Classifier.</p>
+    <p>Your password reset code is: <strong>{code}</strong></p>
+    <p>This code will expire in 15 minutes.</p>
+    <p>If you did not request this, you can ignore this email.</p>
+    """
+    send_email(to_email, "Password reset code", html)
+
+
+# =========================================================
+# AUTH ROUTES: REGISTER / LOGIN / LOGOUT / VERIFY
+# =========================================================
+
+@app.route("/register", methods=["GET", "POST"])
+def register():
+    if current_user.is_authenticated:
+        return redirect(url_for("index"))
+
+    if request.method == "POST":
+        email = sanitize_string(request.form.get("email", ""), 255).lower()
+        password = normalize_text(request.form.get("password", ""))
+        consent = request.form.get("consent_privacy") == "on"
+
+        if not email or not password:
+            flash("Email and password are required.", "error")
+            return redirect(url_for("register"))
+
+        if not is_valid_email(email):
+            flash("Please enter a valid email address.", "error")
+            return redirect(url_for("register"))
+
+        if not is_strong_password(password):
+            flash("Password must be at least 8 characters and contain letters and numbers.", "error")
+            return redirect(url_for("register"))
+
+        if not consent:
+            flash("You must agree to the Privacy Policy to create an account.", "error")
+            return redirect(url_for("register"))
+
+        existing = User.query.filter_by(email=email).first()
+        if existing:
+            flash("An account with that email already exists.", "error")
+            return redirect(url_for("register"))
+
+        user = User(
+            email=email,
+            password_hash=generate_password_hash(password),
+            last_active_at=datetime.utcnow(),
+        )
+
+        code = generate_code()
+        user.verification_code = code
+        user.verification_expires = datetime.utcnow() + timedelta(minutes=15)
+        user.is_verified = False
+
+        db.session.add(user)
+        db.session.commit()
+
+        send_verification_email(email, code)
+        session["pending_email"] = email
+
+        flash("Account created. Check your email for the verification code.", "success")
+        return redirect(url_for("verify"))
+
+    return render_template("login.html", mode="register", title="Register")
+
+
+@app.route("/login", methods=["GET", "POST"])
+def login():
+    if current_user.is_authenticated:
+        return redirect(url_for("index"))
+
+    if request.method == "POST":
+        email = sanitize_string(request.form.get("email", ""), 255).lower()
+        password = normalize_text(request.form.get("password", ""))
+
+        if not email or not password:
+            flash("Email and password are required.", "error")
+            return redirect(url_for("login"))
+
+        user = User.query.filter_by(email=email).first()
+        if not user:
+            flash("Invalid email or password.", "error")
+            return redirect(url_for("login"))
+
+        now = datetime.utcnow()
+
+        # lockout check
+        if user.lock_until and user.lock_until > now:
+            remaining = int((user.lock_until - now).total_seconds() // 60) + 1
+            flash(f"Account locked due to too many failed attempts. Try again in ~{remaining} minutes.", "error")
+            return redirect(url_for("login"))
+
+        if not check_password_hash(user.password_hash, password):
+            user.failed_logins = (user.failed_logins or 0) + 1
+            if user.failed_logins >= 5:
+                user.lock_until = now + timedelta(minutes=10)
+                user.failed_logins = 0
+            db.session.commit()
+            flash("Invalid email or password.", "error")
+            return redirect(url_for("login"))
+
+        # reset counters
+        user.failed_logins = 0
+        user.lock_until = None
+        user.last_active_at = now
+        db.session.commit()
+
+        if not user.is_verified:
+            session["pending_email"] = user.email
+            flash("Please verify your email before logging in.", "error")
+            return redirect(url_for("verify"))
+
+        login_user(user)
+        flash("Logged in successfully.", "success")
+        return redirect(url_for("index"))
+
+    return render_template("login.html", mode="login", title="Login")
+
+
+@app.route("/logout")
+@login_required
+def logout():
+    logout_user()
+    flash("You have been logged out.", "success")
+    return redirect(url_for("login"))
+
+
+@app.route("/verify", methods=["GET", "POST"])
+def verify():
+    email = sanitize_string(
+        request.args.get("email", "") or session.get("pending_email", ""), 255
+    ).lower()
+
+    if not email:
+        flash("No email specified for verification. Please register or log in again.", "error")
+        return redirect(url_for("register"))
+
+    user = User.query.filter_by(email=email).first()
+    if not user:
+        flash("Account not found. Please register again.", "error")
+        return redirect(url_for("register"))
+
+    if user.is_verified:
+        flash("Your email is already verified. You can log in.", "success")
+        return redirect(url_for("login"))
+
+    if request.method == "POST":
+        action = request.form.get("action", "verify")
+
+        if action == "resend":
+            code = generate_code()
+            user.verification_code = code
+            user.verification_expires = datetime.utcnow() + timedelta(minutes=15)
+            db.session.commit()
+            send_verification_email(user.email, code)
+            flash("A new verification code has been sent.", "success")
+            return redirect(url_for("verify", email=user.email))
+
+        code_input = sanitize_string(request.form.get("code", ""), 6)
+
+        if not code_input:
+            flash("Please enter the verification code.", "error")
+            return redirect(url_for("verify", email=user.email))
+
+        if not user.verification_code or not user.verification_expires:
+            flash("No active verification code. Please resend.", "error")
+            return redirect(url_for("verify", email=user.email))
+
+        if datetime.utcnow() > user.verification_expires:
+            flash("Verification code expired. Please request a new one.", "error")
+            return redirect(url_for("verify", email=user.email))
+
+        if code_input != user.verification_code:
+            flash("Invalid verification code.", "error")
+            return redirect(url_for("verify", email=user.email))
+
+        user.is_verified = True
+        user.verification_code = None
+        user.verification_expires = None
+        user.last_active_at = datetime.utcnow()
+        db.session.commit()
+
+        flash("Email verified successfully. You can now log in.", "success")
+        return redirect(url_for("login"))
+
+    session["pending_email"] = email
+    return render_template("verify.html", email=email, title="Verify Email")
+
+
+# =========================================================
+# FORGOT PASSWORD + RESET
+# =========================================================
+
+@app.route("/forgot", methods=["GET", "POST"])
+def forgot_password():
+    if request.method == "POST":
+        email = sanitize_string(request.form.get("email", ""), 255).lower()
+
+        if not is_valid_email(email):
+            flash("If that email exists, a reset code has been sent. Check your email, then enter the code below.", "success")
+            return redirect(url_for("reset_password"))
+
+        user = User.query.filter_by(email=email).first()
+        if user:
+            code = generate_code()
+            user.reset_code = code
+            user.reset_expires = datetime.utcnow() + timedelta(minutes=15)
+            db.session.commit()
+            send_password_reset_email(user.email, code)
+
+        flash("If that email exists, a reset code has been sent. Check your email, then enter the code below.", "success")
+        return redirect(url_for("reset_password"))
+
+    return render_template("forgot.html", title="Forgot Password")
+
+
+
+@app.route("/reset", methods=["GET", "POST"])
+def reset_password():
+    if request.method == "POST":
+        email = sanitize_string(request.form.get("email", ""), 255).lower()
+        code_input = sanitize_string(request.form.get("code", ""), 6)
+        new_pw = normalize_text(request.form.get("password", ""))
+        confirm_pw = normalize_text(request.form.get("confirm_password", ""))
+
+        if not email or not code_input or not new_pw or not confirm_pw:
+            flash("All fields are required.", "error")
+            return redirect(url_for("reset_password"))
+
+        if new_pw != confirm_pw:
+            flash("Passwords do not match.", "error")
+            return redirect(url_for("reset_password"))
+
+        if not is_strong_password(new_pw):
+            flash("Password must be at least 8 characters and contain letters and numbers.", "error")
+            return redirect(url_for("reset_password"))
+
+        user = User.query.filter_by(email=email).first()
+        if (
+            not user
+            or not user.reset_code
+            or not user.reset_expires
+            or datetime.utcnow() > user.reset_expires
+            or code_input != user.reset_code
+        ):
+            flash("Invalid or expired reset code.", "error")
+            return redirect(url_for("reset_password"))
+
+        user.password_hash = generate_password_hash(new_pw)
+        user.reset_code = None
+        user.reset_expires = None
+        db.session.commit()
+
+        flash("Password reset successfully. You can now log in.", "success")
+        return redirect(url_for("login"))
+
+    return render_template("reset_password.html", title="Reset Password")
+
+
+# =========================================================
+# MAIN CLASSIFIER
+# =========================================================
+
+@app.route("/", methods=["GET", "POST"])
+@login_required
+def index():
+    if not current_user.is_verified:
+        flash("Please verify your email to use the classifier.", "error")
+        return redirect(url_for("verify", email=current_user.email))
+
+    result = None
+    text = ""
+
+    if request.method == "POST":
+        text = sanitize_long_text(request.form.get("email_text", ""))
+        if text:
+            result = classify_tone_rich(text)
+
+            entry = Entry(
+                text=text,
+                label=result["label"],
+                confidence=float(result["confidence"]),
+                severity=int(result["severity"]),
+                threat_score=int(result["threat_score"]),
+                politeness_score=int(result["politeness_score"]),
+                friendly_score=int(result["friendly_score"]),
+                has_threat=bool(result["has_threat"]),
+                has_profanity=bool(result["has_profanity"]),
+                has_sarcasm=bool(result["has_sarcasm"]),
+                user_id=current_user.id,
+            )
+            db.session.add(entry)
+            db.session.commit()
+
+    return render_template(
+        "index.html",
+        title="Analyze Email",
+        email_text=text,
+        result=result,
+    )
+
+
+# =========================================================
+# HISTORY + EXPORTS
+# =========================================================
+
+@app.route("/history")
+@login_required
+def history_view():
+    if not current_user.is_verified:
+        flash("Please verify your email to view history.", "error")
+        return redirect(url_for("verify", email=current_user.email))
+
+    q = sanitize_string(request.args.get("q", ""), 255).lower()
+    filter_label = sanitize_string(request.args.get("label", ""), 32).lower()
+
+    query = Entry.query.filter_by(user_id=current_user.id)
+
+    if q:
+        query = query.filter(Entry.text.ilike(f"%{q}%"))
+
+    if filter_label:
+        query = query.filter(Entry.label.ilike(filter_label))
+
+    entries = query.order_by(Entry.created_at.desc()).all()
+
+    return render_template(
+        "history.html",
+        title="History",
+        history=entries,
+        search=q,
+        active_filter=filter_label,
+    )
+
+
+@app.route("/export/csv")
+@login_required
+def export_csv():
+    if not current_user.is_verified:
+        flash("Please verify your email to export data.", "error")
+        return redirect(url_for("verify", email=current_user.email))
+
+    filepath = os.path.join("exports", f"history_{current_user.id}.csv")
+    entries = Entry.query.filter_by(user_id=current_user.id).order_by(Entry.created_at.asc())
+
+    with open(filepath, "w", newline="", encoding="utf-8") as f:
+        writer = csv.writer(f)
+        writer.writerow(
+            [
+                "Time UTC",
+                "Label",
+                "Confidence",
+                "Severity",
+                "ThreatScore",
+                "PolitenessScore",
+                "FriendlyScore",
+                "HasThreat",
+                "HasProfanity",
+                "HasSarcasm",
+                "Text",
+            ]
+        )
+        for e in entries:
+            writer.writerow(
+                [
+                    e.created_at.isoformat(),
+                    e.label,
+                    f"{e.confidence:.1f}",
+                    e.severity,
+                    e.threat_score,
+                    e.politeness_score,
+                    e.friendly_score,
+                    int(e.has_threat),
+                    int(e.has_profanity),
+                    int(e.has_sarcasm),
+                    e.text,
+                ]
+            )
+
+    return send_file(filepath, as_attachment=True)
+
+
+@app.route("/export/pdf")
+@login_required
+def export_pdf():
+    if not current_user.is_verified:
+        flash("Please verify your email to export data.", "error")
+        return redirect(url_for("verify", email=current_user.email))
+
+    buffer = BytesIO()
+    c = canvas.Canvas(buffer, pagesize=letter)
+    width, height = letter
+
+    c.setFillColorRGB(0.12, 0.15, 0.20)
+    c.rect(0, height - 60, width, 60, fill=1)
+    c.setFillColorRGB(1, 1, 1)
+    c.setFont("Helvetica-Bold", 18)
+    c.drawString(40, height - 35, "Tone Classifier – History Report")
+
+    entries = (
+        Entry.query.filter_by(user_id=current_user.id)
+        .order_by(Entry.created_at.desc())
+        .all()
+    )
+
+    y = height - 80
+    for e in entries:
+        if y < 90:
+            c.showPage()
+            y = height - 60
+
+        c.setFont("Helvetica-Bold", 10)
+        c.setFillColorRGB(0, 0, 0)
+        c.drawString(
+            40,
+            y,
+            f"{e.created_at.isoformat()} | {e.label} | Severity {e.severity}",
+        )
+        y -= 12
+
+        meta = f"Threat:{e.threat_score}  Polite:{e.politeness_score}  Friendly:{e.friendly_score}"
+        c.setFont("Helvetica", 9)
+        c.drawString(40, y, meta)
+        y -= 12
+
+        text = e.text
+        while len(text) > 90:
+            idx = text.rfind(" ", 0, 90)
+            if idx == -1:
+                idx = 90
+            c.drawString(50, y, text[:idx])
+            text = text[idx:].strip()
+            y -= 11
+
+        c.drawString(50, y, text)
+        y -= 20
+
+    c.showPage()
+    c.save()
+
+    buffer.seek(0)
+    filepath = os.path.join("exports", f"history_{current_user.id}.pdf")
+    with open(filepath, "wb") as f:
+        f.write(buffer.getvalue())
+
+    return send_file(filepath, as_attachment=True)
+
+
+@app.route("/history/clear", methods=["POST"])
+@login_required
+def clear_history():
+    if not current_user.is_verified:
+        flash("Please verify your email to clear history.", "error")
+        return redirect(url_for("verify", email=current_user.email))
+
+    Entry.query.filter_by(user_id=current_user.id).delete()
+    db.session.commit()
+    flash("History cleared.", "success")
+    return redirect(url_for("history_view"))
+
+
+# =========================================================
+# DELETE ACCOUNT + GDPR PAGES
+# =========================================================
+
+@app.route("/account/delete", methods=["GET", "POST"])
+@login_required
+def delete_account():
+    if request.method == "POST":
+        password = normalize_text(request.form.get("password", ""))
+
+        if not check_password_hash(current_user.password_hash, password):
+            flash("Incorrect password. Account not deleted.", "error")
+            return redirect(url_for("delete_account"))
+
+        try:
+            uid = current_user.id
+            Entry.query.filter_by(user_id=uid).delete()
+            user = User.query.get(uid)
+            logout_user()
+            db.session.delete(user)
+            db.session.commit()
+            flash("Your account and all data have been deleted.", "success")
+        except Exception as e:
+            db.session.rollback()
+            flash("Error deleting account. Please try again.", "error")
+            print(f"[ERROR] delete_account failed: {e}")
+            return redirect(url_for("delete_account"))
+
+        return redirect(url_for("register"))
+
+    return render_template("delete_account.html", title="Delete Account")
+
+
+@app.route("/privacy")
+def privacy():
+    # pass datetime for template display
+    from datetime import datetime as dt
+    return render_template("privacy.html", title="Privacy Policy", datetime=dt)
+
+
+@app.route("/do-not-sell")
+def do_not_sell():
+    return render_template("do_not_sell.html", title="Do Not Sell My Info")
+
+
+# =========================================================
+# INIT DB & RUN (LOCAL)
+# =========================================================
+
+with app.app_context():
+    db.create_all()
+
+if __name__ == "__main__":
+    # local dev
+    app.run(debug=True, host="0.0.0.0", port=7860)
+
+
+
+
+
+
+
+
+
+
+
+
+
+

model.py

@@ -0,0 +1,340 @@
+import os
+import re
+from typing import Dict, List
+
+from huggingface_hub import InferenceClient
+
+# =========================================================
+# HUGGING FACE INFERENCE CLIENT
+# =========================================================
+
+HF_API_TOKEN = os.getenv("HF_API_TOKEN")  # optional, set in HF Space secrets
+if HF_API_TOKEN:
+    client = InferenceClient(token=HF_API_TOKEN)
+else:
+    client = InferenceClient()  # anonymous for public models (rate-limited)
+
+# Model IDs
+TOX_MODEL_ID = "unitary/toxic-bert"
+OFF_MODEL_ID = "cardiffnlp/twitter-roberta-base-offensive"
+EMO_MODEL_ID = "j-hartmann/emotion-english-distilroberta-base"
+SENT_MODEL_ID = "distilbert-base-uncased-finetuned-sst-2-english"
+
+# =========================================================
+# RULE KEYWORDS / PATTERNS
+# =========================================================
+
+AGGRESSION_KEYWORDS = [
+    "stupid", "idiot", "dumb", "incompetent", "useless",
+    "trash", "garbage", "worthless", "pathetic", "clown",
+    "moron", "failure", "shut up", "hate you"
+]
+
+THREAT_PHRASES = [
+    "you will regret", "there will be consequences", "watch your back",
+    "this is your last warning", "i'm coming for you",
+    "or else", "i'll ruin you", "i'll make you pay",
+    "i am gonna hurt you", "i'm going to hurt you",
+]
+
+PROFANITY = [
+    "fuck", "shit", "bitch", "asshole", "bastard",
+    "motherfucker", "prick", "dickhead"
+]
+
+POLITE_KEYWORDS = [
+    "please", "thank you", "thanks", "would you mind",
+    "if possible", "kindly", "when you have a chance",
+    "if you don't mind"
+]
+
+FRIENDLY_KEYWORDS = [
+    "awesome", "amazing", "great job", "fantastic",
+    "love this", "appreciate you", "good vibes",
+    "wonderful", "you're the best", "you are the best",
+]
+
+SARCASM_PATTERNS = [
+    r"yeah right",
+    r"sure you did",
+    r"great job (idiot|genius)",
+    r"nice work (moron|buddy)",
+    r"well done.*not",
+    r"nice job.*not",
+]
+
+
+# =========================================================
+# HF INFERENCE HELPERS
+# =========================================================
+
+def _safe_text_classification(model_id: str, text: str) -> List[Dict]:
+    """
+    Wrapper around HF Inference API text classification.
+
+    Returns a list of dicts like:
+    [
+      {"label": "POSITIVE", "score": 0.95},
+      ...
+    ]
+    or [] on error.
+    """
+    try:
+        out = client.text_classification(text, model=model_id)
+        # Some clients may return a single dict; normalize to list
+        if isinstance(out, dict):
+            return [out]
+        return out or []
+    except Exception as e:
+        print(f"[WARN] HF Inference error for {model_id}: {e}")
+        return []
+
+
+def _get_sentiment(text: str):
+    """
+    Returns (pos, neg) based on distilbert sentiment.
+    """
+    results = _safe_text_classification(SENT_MODEL_ID, text)
+    pos = 0.5
+    neg = 0.5
+
+    if results:
+        scores = {r["label"].upper(): float(r["score"]) for r in results}
+        # typical labels: POSITIVE / NEGATIVE
+        if "POSITIVE" in scores:
+            pos = scores["POSITIVE"]
+            neg = 1.0 - pos
+        elif "NEGATIVE" in scores:
+            neg = scores["NEGATIVE"]
+            pos = 1.0 - neg
+
+    return pos, neg
+
+
+def _get_toxicity(text: str) -> float:
+    """
+    Return a toxicity-like score in [0, 1].
+    For unitary/toxic-bert, we consider any 'toxic-like' label as signal.
+    """
+    results = _safe_text_classification(TOX_MODEL_ID, text)
+    if not results:
+        return 0.0
+
+    toxic_score = 0.0
+    for r in results:
+        label = r["label"].lower()
+        if any(key in label for key in ["toxic", "obscene", "insult", "hate", "threat"]):
+            toxic_score = max(toxic_score, float(r["score"]))
+    return toxic_score
+
+
+def _get_offensive(text: str) -> float:
+    """
+    Return an offensive score in [0, 1].
+    For cardiffnlp/twitter-roberta-base-offensive, look for OFFENSE-like labels.
+    """
+    results = _safe_text_classification(OFF_MODEL_ID, text)
+    if not results:
+        return 0.0
+
+    off_score = 0.0
+    for r in results:
+        label = r["label"].lower()
+        if "offense" in label or "offensive" in label:
+            off_score = max(off_score, float(r["score"]))
+    return off_score
+
+
+def _get_emotions(text: str):
+    """
+    Returns a dict like {"anger": 0.3, "joy": 0.6}.
+    """
+    results = _safe_text_classification(EMO_MODEL_ID, text)
+    if not results:
+        return {"anger": 0.0, "joy": 0.0}
+
+    emo = {}
+    for r in results:
+        emo[r["label"].lower()] = float(r["score"])
+
+    anger = emo.get("anger", 0.0)
+    joy = emo.get("joy", 0.0)
+    return {"anger": anger, "joy": joy}
+
+
+# =========================================================
+# MAIN CLASSIFIER (STRICT OPTION A)
+# =========================================================
+
+def classify_tone_rich(text: str):
+    lowered = text.lower()
+    explanation = []
+
+    # --- Model signals ---
+    pos, neg = _get_sentiment(text)
+    tox_score = _get_toxicity(text)
+    off_score = _get_offensive(text)
+    emo = _get_emotions(text)
+    anger = emo.get("anger", 0.0)
+    joy = emo.get("joy", 0.0)
+
+    explanation.append(f"Sentiment pos={pos:.2f}, neg={neg:.2f}")
+    explanation.append(f"Toxicity={tox_score:.2f}, Offensive={off_score:.2f}")
+    explanation.append(f"Emotion anger={anger:.2f}, joy={joy:.2f}")
+
+    # --- Rule flags ---
+    has_insult = any(w in lowered for w in AGGRESSION_KEYWORDS)
+    has_threat = any(p in lowered for p in THREAT_PHRASES)
+    has_profanity = any(bad in lowered for bad in PROFANITY)
+    has_polite = any(w in lowered for w in POLITE_KEYWORDS)
+    has_friendly = any(w in lowered for w in FRIENDLY_KEYWORDS)
+    has_sarcasm = any(re.search(p, lowered) for p in SARCASM_PATTERNS)
+
+    if has_insult:
+        explanation.append("Detected explicit insult keyword.")
+    if has_threat:
+        explanation.append("Detected explicit threat phrase.")
+    if has_profanity:
+        explanation.append("Detected profanity.")
+    if has_polite:
+        explanation.append("Detected polite phrasing.")
+    if has_friendly:
+        explanation.append("Detected friendly / appreciative wording.")
+    if has_sarcasm:
+        explanation.append("Matched a sarcasm pattern.")
+
+    # =====================================================
+    # STRICT AGGRESSIVE RULES
+    # =====================================================
+
+    # 1) Threats override everything
+    if has_threat:
+        return {
+            "label": "Aggressive",
+            "confidence": 95,
+            "severity": 95,
+            "threat_score": 95,
+            "politeness_score": 0,
+            "friendly_score": 0,
+            "has_threat": True,
+            "has_profanity": has_profanity,
+            "has_sarcasm": has_sarcasm,
+            "explanation": explanation,
+        }
+
+    # 2) Profanity → aggressive
+    if has_profanity:
+        sev = max(85, int((tox_score + off_score) / 2 * 100))
+        return {
+            "label": "Aggressive",
+            "confidence": 90,
+            "severity": sev,
+            "threat_score": int(tox_score * 100),
+            "politeness_score": 0,
+            "friendly_score": 0,
+            "has_threat": has_threat,
+            "has_profanity": True,
+            "has_sarcasm": has_sarcasm,
+            "explanation": explanation,
+        }
+
+    # 3) Direct insults → aggressive
+    if has_insult:
+        sev = max(80, int((tox_score + off_score) / 2 * 100))
+        return {
+            "label": "Aggressive",
+            "confidence": 88,
+            "severity": sev,
+            "threat_score": int(tox_score * 100),
+            "politeness_score": 0,
+            "friendly_score": 0,
+            "has_threat": has_threat,
+            "has_profanity": has_profanity,
+            "has_sarcasm": has_sarcasm,
+            "explanation": explanation,
+        }
+
+    # 4) Sarcasm + negative sentiment → aggressive
+    if has_sarcasm and neg > 0.55:
+        return {
+            "label": "Aggressive",
+            "confidence": 85,
+            "severity": 85,
+            "threat_score": int(tox_score * 100),
+            "politeness_score": 0,
+            "friendly_score": 0,
+            "has_threat": has_threat,
+            "has_profanity": has_profanity,
+            "has_sarcasm": True,
+            "explanation": explanation,
+        }
+
+    # 5) High anger + toxicity
+    if anger + tox_score > 1.1:
+        return {
+            "label": "Aggressive",
+            "confidence": 80,
+            "severity": 80,
+            "threat_score": int(tox_score * 100),
+            "politeness_score": 0,
+            "friendly_score": 0,
+            "has_threat": has_threat,
+            "has_profanity": has_profanity,
+            "has_sarcasm": has_sarcasm,
+            "explanation": explanation,
+        }
+
+    # =====================================================
+    # POSITIVE LABELS – FRIENDLY / POLITE
+    # =====================================================
+    if has_friendly and pos > 0.60:
+        return {
+            "label": "Friendly",
+            "confidence": int(pos * 100),
+            "severity": 0,
+            "threat_score": int(tox_score * 100),
+            "politeness_score": int(pos * 100),
+            "friendly_score": int(pos * 100),
+            "has_threat": has_threat,
+            "has_profanity": has_profanity,
+            "has_sarcasm": has_sarcasm,
+            "explanation": explanation,
+        }
+
+    if has_polite and pos > 0.50:
+        return {
+            "label": "Polite",
+            "confidence": int(pos * 100),
+            "severity": 0,
+            "threat_score": int(tox_score * 100),
+            "politeness_score": int(pos * 100),
+            "friendly_score": 0,
+            "has_threat": has_threat,
+            "has_profanity": has_profanity,
+            "has_sarcasm": has_sarcasm,
+            "explanation": explanation,
+        }
+
+    # =====================================================
+    # NEUTRAL FALLBACK
+    # =====================================================
+    return {
+        "label": "Neutral",
+        "confidence": int((1 - neg) * 100),
+        "severity": 0,
+        "threat_score": int(tox_score * 100),
+        "politeness_score": int(pos * 100),
+        "friendly_score": int(pos * 100),
+        "has_threat": has_threat,
+        "has_profanity": has_profanity,
+        "has_sarcasm": has_sarcasm,
+        "explanation": explanation,
+    }
+
+
+# Optional wrapper for backwards compatibility
+def classify_tone(text: str):
+    r = classify_tone_rich(text)
+    aggressive_prob = r["severity"] / 100.0
+    positive_prob = r["friendly_score"] / 100.0
+    return r["label"], r["confidence"], aggressive_prob, positive_prob

requirements.txt

@@ -0,0 +1,17 @@
+Flask==3.0.0
+flask_sqlalchemy
+flask_login
+werkzeug
+sendgrid
+reportlab
+python-dotenv
+SQLAlchemy
+huggingface_hub
+
+
+
+
+
+
+
+

send_test.py

@@ -0,0 +1,27 @@
+from dotenv import load_dotenv
+load_dotenv()
+import os
+from sendgrid import SendGridAPIClient
+from sendgrid.helpers.mail import Mail
+
+api_key = os.getenv("SENDGRID_API_KEY")
+sender = os.getenv("SENDER_EMAIL")
+
+print("Using API KEY:", api_key[:15] + "...")
+print("Using sender:", sender)
+
+message = Mail(
+    from_email=sender,
+    to_emails=sender,  # send to yourself
+    subject="Test Email from Tone Classifier",
+    html_content="<p>This is a test email.</p>",
+)
+
+try:
+    sg = SendGridAPIClient(api_key)
+    response = sg.send(message)
+    print("Status:", response.status_code)
+    print("Body:", response.body)
+    print("Headers:", response.headers)
+except Exception as e:
+    print("ERROR:", e)

static/app.js

@@ -0,0 +1,49 @@
+// =========================================================
+// Theme Toggle (Light / Dark)
+// =========================================================
+
+document.addEventListener("DOMContentLoaded", () => {
+    const html = document.documentElement;
+    const toggleBtn = document.getElementById("themeToggle");
+
+    // Load saved theme
+    let theme = localStorage.getItem("theme") || "light";
+    html.dataset.theme = theme;
+
+    if (toggleBtn) {
+        toggleBtn.addEventListener("click", () => {
+            theme = theme === "light" ? "dark" : "light";
+            html.dataset.theme = theme;
+            localStorage.setItem("theme", theme);
+        });
+    }
+
+    // =========================================================
+    // Animate severity bar (confidence / aggression meter)
+    // =========================================================
+    const severityFill = document.querySelector(".severity-fill");
+    if (severityFill) {
+        const targetWidth = severityFill.getAttribute("data-width");
+        if (targetWidth) {
+            setTimeout(() => {
+                severityFill.style.width = targetWidth + "%";
+            }, 100);
+        }
+    }
+
+    // =========================================================
+    // Smooth fade-in for result cards
+    // =========================================================
+    const resultCard = document.querySelector(".result-card");
+    if (resultCard) {
+        resultCard.style.opacity = 0;
+        setTimeout(() => {
+            resultCard.style.transition = "opacity 0.4s ease, transform 0.4s ease";
+            resultCard.style.opacity = 1;
+            resultCard.style.transform = "translateY(0)";
+        }, 80);
+    }
+});
+
+
+

static/style.css

@@ -0,0 +1,588 @@
+/* =========================================
+   SaaS PRO THEME – DRAGONTECH STYLE
+   Works with sidebar layout + dark mode
+========================================= */
+
+/* ---------- THEME TOKENS ---------- */
+
+:root {
+    --bg: #f4f5fb;
+    --bg-alt: #ffffff;
+    --text: #111827;
+    --text-light: #6b7280;
+    --border: #e5e7eb;
+
+    --primary: #2563eb;
+    --primary-soft: #dbeafe;
+    --primary-hover: #1e40af;
+
+    --danger: #dc2626;
+    --danger-soft: #fee2e2;
+
+    --success: #16a34a;
+    --success-soft: #dcfce7;
+
+    --warning: #f97316;
+    --warning-soft: #ffedd5;
+
+    --card-bg: #ffffff;
+
+    --sidebar-bg: #020617;
+    --sidebar-text: #cbd5e1;
+    --sidebar-active: #111827;
+
+    --chip-red: #fee2e2;
+    --chip-red-text: #b91c1c;
+
+    --chip-green: #dcfce7;
+    --chip-green-text: #166534;
+
+    --chip-blue: #dbeafe;
+    --chip-blue-text: #1d4ed8;
+
+    --shadow-soft: 0 18px 40px rgba(15, 23, 42, 0.12);
+}
+
+html[data-theme="dark"] {
+    --bg: #020617;
+    --bg-alt: #020617;
+    --text: #e5e7eb;
+    --text-light: #9ca3af;
+    --border: #1f2933;
+
+    --card-bg: #020617;
+
+    --sidebar-bg: #020617;
+    --sidebar-text: #cbd5e1;
+    --sidebar-active: #0b1120;
+
+    --shadow-soft: 0 18px 40px rgba(0, 0, 0, 0.6);
+}
+
+/* ---------- RESET ---------- */
+
+*,
+*::before,
+*::after {
+    box-sizing: border-box;
+}
+
+body {
+    margin: 0;
+    font-family: system-ui, -apple-system, BlinkMacSystemFont, "Inter",
+        "Segoe UI", sans-serif;
+    background: radial-gradient(circle at top left, #e5edff 0, #f4f5fb 40%, #f9fafb 100%);
+    color: var(--text);
+}
+
+a {
+    color: var(--primary);
+    text-decoration: none;
+}
+
+a:hover {
+    text-decoration: underline;
+}
+
+/* =========================================
+   LAYOUT
+========================================= */
+
+.layout {
+    display: flex;
+    min-height: 100vh;
+}
+
+/* ---------- SIDEBAR ---------- */
+
+.sidebar {
+    width: 260px;
+    background: radial-gradient(circle at top, #0b1220 0, #020617 45%, #000 100%);
+    color: var(--sidebar-text);
+    padding: 22px 18px;
+    display: flex;
+    flex-direction: column;
+    gap: 10px;
+    border-right: 1px solid rgba(148, 163, 184, 0.2);
+}
+
+.sidebar-title {
+    font-size: 20px;
+    font-weight: 600;
+    margin: 0 0 16px;
+    color: #f9fafb;
+}
+
+.sidebar > p {
+    margin: 0 0 10px;
+}
+
+/* nav links */
+
+.nav-link {
+    display: block;
+    padding: 9px 11px;
+    border-radius: 8px;
+    margin-bottom: 4px;
+    color: var(--sidebar-text);
+    font-size: 14px;
+    transition: background 0.18s ease, color 0.18s ease, transform 0.1s ease;
+}
+
+.nav-link.active {
+    background: linear-gradient(135deg, #2563eb, #38bdf8);
+    color: #f9fafb;
+    box-shadow: 0 10px 25px rgba(37, 99, 235, 0.45);
+}
+
+.nav-link:hover {
+    background: rgba(248, 250, 252, 0.09);
+    color: #e5e7eb;
+    transform: translateY(-1px);
+}
+
+.small-link {
+    font-size: 12px;
+    opacity: 0.9;
+}
+
+/* theme button */
+
+.theme-btn {
+    margin-top: auto;
+    margin-bottom: 4px;
+    padding: 8px 10px;
+    border-radius: 999px;
+    border: 1px solid rgba(148, 163, 184, 0.35);
+    background: rgba(15, 23, 42, 0.9);
+    color: #e5e7eb;
+    cursor: pointer;
+    font-size: 13px;
+    display: inline-flex;
+    align-items: center;
+    gap: 6px;
+    justify-content: center;
+}
+
+.theme-btn:hover {
+    border-color: rgba(248, 250, 252, 0.6);
+}
+
+/* ---------- MAIN CONTENT ---------- */
+
+.content {
+    flex: 1;
+    padding: 22px 30px;
+    display: flex;
+    flex-direction: column;
+}
+
+.topbar {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    margin-bottom: 14px;
+}
+
+.topbar h1 {
+    font-size: 22px;
+    font-weight: 600;
+    letter-spacing: -0.02em;
+    margin: 0;
+    color: var(--text);
+}
+
+.page-content {
+    max-width: 960px;
+    width: 100%;
+    padding-bottom: 40px;
+}
+
+/* =========================================
+   COOKIE / NOTICE
+========================================= */
+
+.cookie-banner {
+    font-size: 11px;
+    padding: 7px 10px;
+    background: rgba(15, 23, 42, 0.92);
+    color: #e5e7eb;
+    border-radius: 8px;
+    margin-bottom: 12px;
+}
+
+/* =========================================
+   CARDS
+========================================= */
+
+.card {
+    background: rgba(255, 255, 255, 0.98);
+    border-radius: 14px;
+    padding: 18px 18px 16px;
+    border: 1px solid rgba(148, 163, 184, 0.25);
+    box-shadow: var(--shadow-soft);
+    backdrop-filter: blur(24px);
+    margin-bottom: 18px;
+}
+
+html[data-theme="dark"] .card {
+    background: rgba(15, 23, 42, 0.98);
+}
+
+.subtitle {
+    font-size: 13px;
+    color: var(--text-light);
+    margin-top: 4px;
+    margin-bottom: 18px;
+}
+
+/* =========================================
+   FORMS & INPUTS
+========================================= */
+
+label {
+    font-size: 13px;
+    font-weight: 500;
+    display: block;
+    margin-bottom: 4px;
+}
+
+textarea,
+input[type="email"],
+input[type="password"],
+input[type="text"] {
+    width: 100%;
+    padding: 10px 11px;
+    border-radius: 10px;
+    border: 1px solid var(--border);
+    background: var(--bg-alt);
+    color: var(--text);
+    font-size: 14px;
+    transition: border 0.16s ease, box-shadow 0.16s ease, background 0.16s ease;
+}
+
+textarea {
+    min-height: 150px;
+    resize: vertical;
+}
+
+textarea:focus,
+input:focus {
+    outline: none;
+    border-color: var(--primary);
+    box-shadow: 0 0 0 1px rgba(37, 99, 235, 0.25);
+}
+
+button {
+    background: linear-gradient(135deg, #2563eb, #1d4ed8);
+    color: white;
+    padding: 9px 14px;
+    border-radius: 999px;
+    border: none;
+    cursor: pointer;
+    font-size: 14px;
+    font-weight: 500;
+    display: inline-flex;
+    align-items: center;
+    gap: 7px;
+    transition: transform 0.1s ease, box-shadow 0.1s ease, opacity 0.1s ease;
+}
+
+button:hover {
+    transform: translateY(-1px);
+    box-shadow: 0 12px 25px rgba(37, 99, 235, 0.4);
+}
+
+button:active {
+    transform: translateY(0);
+    box-shadow: none;
+}
+
+.btn-secondary {
+    background: var(--bg-alt);
+    color: var(--text);
+    border: 1px solid var(--border);
+    box-shadow: none;
+}
+
+.btn-secondary:hover {
+    box-shadow: 0 8px 16px rgba(15, 23, 42, 0.12);
+}
+
+.btn-danger {
+    background: var(--danger);
+    box-shadow: 0 10px 25px rgba(220, 38, 38, 0.45);
+}
+
+/* =========================================
+   HISTORY FILTERS & ACTIONS
+========================================= */
+
+.history-search {
+    margin-bottom: 10px;
+}
+
+.history-search input {
+    max-width: 260px;
+}
+
+.filter-buttons {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 6px;
+    margin-bottom: 12px;
+}
+
+.filter-btn {
+    padding: 6px 10px;
+    border-radius: 999px;
+    font-size: 12px;
+    border: 1px solid var(--border);
+    background: var(--bg-alt);
+    color: var(--text-light);
+    text-decoration: none;
+    transition: background 0.16s ease, color 0.16s ease, border 0.16s ease;
+}
+
+.filter-btn.active {
+    background: var(--primary-soft);
+    color: var(--primary-hover);
+    border-color: var(--primary);
+}
+
+/* history actions row */
+
+.history-actions {
+    display: flex;
+    align-items: center;
+    gap: 10px;
+    margin-bottom: 14px;
+    flex-wrap: wrap;
+}
+
+/* =========================================
+   TABLES
+========================================= */
+
+.table-wrapper {
+    overflow-x: auto;
+}
+
+.table {
+    width: 100%;
+    border-collapse: collapse;
+    font-size: 13px;
+}
+
+.table th,
+.table td {
+    text-align: left;
+    padding: 9px 8px;
+    border-bottom: 1px solid var(--border);
+}
+
+.table th {
+    font-weight: 600;
+    color: var(--text-light);
+}
+
+/* =========================================
+   CHIPS & FLAGS
+========================================= */
+
+.chip {
+    padding: 4px 10px;
+    border-radius: 999px;
+    font-size: 11px;
+    font-weight: 600;
+    display: inline-block;
+}
+
+.chip.red {
+    background: var(--chip-red);
+    color: var(--chip-red-text);
+}
+
+.chip.green {
+    background: var(--chip-green);
+    color: var(--chip-green-text);
+}
+
+.chip.blue {
+    background: var(--chip-blue);
+    color: var(--chip-blue-text);
+}
+
+/* flags in result card */
+
+.flag-section {
+    margin-top: 8px;
+    margin-bottom: 6px;
+}
+
+.flag {
+    display: inline-block;
+    padding: 3px 8px;
+    border-radius: 999px;
+    font-size: 11px;
+    font-weight: 500;
+    margin-right: 6px;
+}
+
+.flag.red {
+    background: var(--danger-soft);
+    color: var(--danger);
+}
+
+.flag.orange {
+    background: var(--warning-soft);
+    color: var(--warning);
+}
+
+/* =========================================
+   RESULT CARD & CONFIDENCE METER
+========================================= */
+
+.result-card {
+    border-left: 4px solid var(--primary);
+    animation: fadeInUp 0.3s ease-out;
+}
+
+.result-card.aggressive {
+    border-left-color: var(--danger);
+}
+
+.result-card.polite {
+    border-left-color: var(--success);
+}
+
+.result-card.friendly {
+    border-left-color: var(--chip-blue-text);
+}
+
+.severity-bar {
+    width: 100%;
+    height: 7px;
+    border-radius: 999px;
+    background: var(--bg);
+    overflow: hidden;
+    margin: 10px 0 8px;
+}
+
+.severity-fill {
+    width: 0;
+    height: 100%;
+    border-radius: 999px;
+    background: linear-gradient(90deg, #22c55e, #eab308, #ef4444);
+    transition: width 0.6s ease-out;
+}
+
+/* you can set width inline from HTML: style="width: {{ result.severity }}%" */
+
+.score-boxes {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 8px;
+    margin-top: 4px;
+    font-size: 12px;
+    color: var(--text-light);
+}
+
+.score-item {
+    padding: 4px 8px;
+    border-radius: 999px;
+    background: var(--bg);
+}
+
+/* explanation list */
+
+.explanation-list {
+    margin: 8px 0 0;
+    padding-left: 18px;
+    font-size: 13px;
+    color: var(--text-light);
+}
+
+/* empty states */
+
+.empty {
+    font-size: 13px;
+    color: var(--text-light);
+}
+
+/* =========================================
+   ANIMATIONS
+========================================= */
+
+@keyframes fadeInUp {
+    from {
+        opacity: 0;
+        transform: translateY(6px);
+    }
+    to {
+        opacity: 1;
+        transform: translateY(0);
+    }
+}
+
+/* =========================================
+   RESPONSIVE (MOBILE / TABLET)
+========================================= */
+
+@media (max-width: 900px) {
+
+    .layout {
+        flex-direction: column;
+    }
+
+    .sidebar {
+        width: 100%;
+        flex-direction: row;
+        align-items: center;
+        gap: 10px;
+        overflow-x: auto;
+        padding: 10px 12px;
+        border-bottom: 1px solid rgba(148, 163, 184, 0.3);
+    }
+
+    .sidebar-title {
+        display: none;
+    }
+
+    .nav-link {
+        white-space: nowrap;
+        margin-bottom: 0;
+    }
+
+    .theme-btn {
+        margin-top: 0;
+    }
+
+    .content {
+        padding: 16px 14px 22px;
+    }
+
+    .page-content {
+        max-width: 100%;
+    }
+
+    textarea {
+        min-height: 120px;
+    }
+
+    .history-actions {
+        flex-direction: row;
+        align-items: stretch;
+    }
+}
+
+
+
+
+
+
+
+
+
+
+

templates/base.html

@@ -0,0 +1,111 @@
+<!DOCTYPE html>
+<html lang="en" data-theme="light">
+<head>
+    <meta charset="UTF-8" />
+    <title>{{ title or "Tone Classifier" }}</title>
+    <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
+    <script defer src="{{ url_for('static', filename='app.js') }}"></script>
+</head>
+
+<body>
+<div class="layout">
+
+    <!-- SIDEBAR -->
+    <aside class="sidebar">
+        <h2 class="sidebar-title">Tone Classifier</h2>
+
+        {% if current_user.is_authenticated %}
+            <p style="font-size: 13px; margin-bottom: 16px; color: var(--text-light);">
+                Logged in as<br><strong>{{ current_user.email }}</strong>
+            </p>
+
+            <a href="{{ url_for('index') }}"
+               class="nav-link {% if title == 'Analyze Email' %}active{% endif %}">
+                Analyze
+            </a>
+
+            <a href="{{ url_for('history_view') }}"
+               class="nav-link {% if title == 'History' %}active{% endif %}">
+                History
+            </a>
+
+            <a href="{{ url_for('delete_account') }}"
+               class="nav-link">
+                Delete Account
+            </a>
+
+            <a href="{{ url_for('logout') }}" class="nav-link">
+                Logout
+            </a>
+        {% else %}
+            <a href="{{ url_for('login') }}"
+               class="nav-link {% if title == 'Login' %}active{% endif %}">
+                Login
+            </a>
+            <a href="{{ url_for('register') }}"
+               class="nav-link {% if title == 'Register' %}active{% endif %}">
+                Register
+            </a>
+        {% endif %}
+
+        <hr style="border: none; border-top: 1px solid rgba(255,255,255,0.1); margin: 16px 0;">
+
+        <a href="{{ url_for('privacy') }}" class="nav-link small-link">
+            Privacy Policy
+        </a>
+        <a href="{{ url_for('do_not_sell') }}" class="nav-link small-link">
+            Do Not Sell My Info
+        </a>
+
+        <button id="themeToggle" class="theme-btn">Toggle Theme</button>
+    </aside>
+
+    <!-- MAIN CONTENT -->
+    <div class="content">
+        <div class="topbar">
+            <h1>{{ title }}</h1>
+        </div>
+
+        <!-- Cookie / privacy notice -->
+        <div class="cookie-banner">
+            This service uses essential cookies for authentication and security only.
+            No tracking or advertising cookies are used.
+        </div>
+
+        <!-- Flash messages -->
+        <div class="page-content">
+            {% with messages = get_flashed_messages(with_categories=true) %}
+                {% if messages %}
+                    <div style="margin-bottom: 12px;">
+                        {% for category, message in messages %}
+                            <div style="
+                                padding: 8px 10px;
+                                border-radius: 6px;
+                                margin-bottom: 6px;
+                                font-size: 14px;
+                                {% if category == 'error' %}
+                                    background: #fee2e2;
+                                    color: #b91c1c;
+                                {% else %}
+                                    background: #dcfce7;
+                                    color: #166534;
+                                {% endif %}
+                            ">
+                                {{ message }}
+                            </div>
+                        {% endfor %}
+                    </div>
+                {% endif %}
+            {% endwith %}
+
+            {% block content %}{% endblock %}
+        </div>
+    </div>
+</div>
+</body>
+</html>
+
+
+
+
+

templates/delete_account.html

@@ -0,0 +1,25 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    <h2>Delete Account</h2>
+    <p class="subtitle">
+        This will permanently delete your account and all associated analysis history.
+        This action cannot be undone.
+    </p>
+
+    <form method="POST">
+        <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+
+        <label>Confirm your password to continue</label>
+        <input type="password" name="password" required
+               style="width: 100%; padding: 8px; margin-bottom: 16px;">
+
+        <button type="submit" class="btn-danger"
+                onclick="return confirm('Are you sure you want to permanently delete your account and all associated data?');">
+            Permanently Delete My Account
+        </button>
+    </form>
+</div>
+
+{% endblock %}

templates/do_not_sell.html

@@ -0,0 +1,30 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    <h2>Do Not Sell My Personal Information</h2>
+    <p class="subtitle">CCPA / CPRA Notice</p>
+
+    <p>
+        This application does not sell your personal information.
+        We do not share your data with third parties for advertising,
+        profiling, or cross-context behavioral advertising.
+    </p>
+
+    <p>
+        The data we collect is used solely for:
+    </p>
+    <ul>
+        <li>Providing the tone classification service</li>
+        <li>Securing accounts and preventing abuse</li>
+        <li>Improving the accuracy and reliability of the tool</li>
+    </ul>
+
+    <p>
+        You can delete your account and all associated data at any time
+        from the "Delete Account" page. You may also export your data via
+        the History export features.
+    </p>
+</div>
+
+{% endblock %}

templates/forgot.html

@@ -0,0 +1,26 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    <h2>Forgot Password</h2>
+    <p class="subtitle">
+        Enter your account email. If it exists, we’ll send a 6-digit reset code.
+    </p>
+
+    <form method="POST">
+        <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+
+        <label>Email</label>
+        <input type="email" name="email" required
+               style="width: 100%; padding: 8px; margin-bottom: 16px;">
+
+        <button type="submit">Send Reset Code</button>
+    </form>
+
+    <p class="subtitle" style="margin-top: 12px;">
+        Remembered your password?
+        <a href="{{ url_for('login') }}">Back to login</a>.
+    </p>
+</div>
+
+{% endblock %}

templates/history.html

@@ -0,0 +1,98 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    <h2>History</h2>
+    <p class="subtitle">
+        View and export your past tone analyses. Data is private to your account.
+    </p>
+
+    <!-- Search -->
+    <div class="history-search">
+        <form method="GET">
+            <input type="text" name="q" value="{{ search or '' }}"
+                   placeholder="Search text..."
+                   style="max-width: 260px; padding: 8px;">
+            <button type="submit" class="btn-secondary">Search</button>
+        </form>
+    </div>
+
+    <!-- Filter buttons -->
+    <div class="filter-buttons">
+        <a href="{{ url_for('history_view') }}"
+           class="filter-btn {% if not active_filter %}active{% endif %}">
+            All
+        </a>
+        <a href="{{ url_for('history_view', label='Aggressive', q=search) }}"
+           class="filter-btn {% if active_filter|lower == 'aggressive' %}active{% endif %}">
+            Aggressive
+        </a>
+        <a href="{{ url_for('history_view', label='Neutral', q=search) }}"
+           class="filter-btn {% if active_filter|lower == 'neutral' %}active{% endif %}">
+            Neutral
+        </a>
+        <a href="{{ url_for('history_view', label='Polite', q=search) }}"
+           class="filter-btn {% if active_filter|lower == 'polite' %}active{% endif %}">
+            Polite
+        </a>
+        <a href="{{ url_for('history_view', label='Friendly', q=search) }}"
+           class="filter-btn {% if active_filter|lower == 'friendly' %}active{% endif %}">
+            Friendly
+        </a>
+    </div>
+
+    <!-- Actions -->
+    <div class="history-actions">
+        <a href="{{ url_for('export_csv') }}">
+            <button type="button" class="btn-secondary">Export CSV</button>
+        </a>
+        <a href="{{ url_for('export_pdf') }}">
+            <button type="button" class="btn-secondary">Export PDF</button>
+        </a>
+
+        <form method="POST" action="{{ url_for('clear_history') }}"
+              onsubmit="return confirm('Clear all history for your account?');">
+            <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+            <button type="submit" class="btn-danger">Clear History</button>
+        </form>
+    </div>
+
+    <!-- Table -->
+    {% if history %}
+        <div class="table-wrapper">
+            <table class="table">
+                <thead>
+                    <tr>
+                        <th>Time (UTC)</th>
+                        <th>Label</th>
+                        <th>Severity</th>
+                        <th>Threat</th>
+                        <th>Polite</th>
+                        <th>Friendly</th>
+                        <th>Text</th>
+                    </tr>
+                </thead>
+                <tbody>
+                    {% for e in history %}
+                        <tr>
+                            <td>{{ e.created_at.isoformat() }}</td>
+                            <td>{{ e.label }}</td>
+                            <td>{{ e.severity }}</td>
+                            <td>{{ e.threat_score }}</td>
+                            <td>{{ e.politeness_score }}</td>
+                            <td>{{ e.friendly_score }}</td>
+                            <td>{{ e.text[:120] }}{% if e.text|length > 120 %}...{% endif %}</td>
+                        </tr>
+                    {% endfor %}
+                </tbody>
+            </table>
+        </div>
+    {% else %}
+        <p class="empty">No entries yet. Analyze some text to see your history here.</p>
+    {% endif %}
+</div>
+
+{% endblock %}
+
+
+

templates/index.html

@@ -0,0 +1,59 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    <h2>Enter Email or Message</h2>
+    <p class="subtitle">The system detects Aggressive, Neutral, Polite, and Friendly tone.</p>
+
+    <form method="POST">
+        <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+        <textarea name="email_text" placeholder="Type or paste text here..." required>{{ email_text or "" }}</textarea>
+        <button type="submit">Analyze Tone</button>
+    </form>
+</div>
+
+{% if result %}
+<div class="card result-card {{ result.label|lower }}">
+    <h2>Prediction: {{ result.label }}</h2>
+
+    <div class="severity-bar">
+        <div class="severity-fill" data-width="{{ result.severity }}"></div>
+    </div>
+
+    <div class="score-boxes">
+        <div class="score-item">Confidence: {{ result.confidence }}%</div>
+        <div class="score-item">Threat: {{ result.threat_score }}</div>
+        <div class="score-item">Politeness: {{ result.politeness_score }}</div>
+        <div class="score-item">Friendly: {{ result.friendly_score }}</div>
+    </div>
+
+    <div class="flag-section">
+        {% if result.has_threat %}
+            <span class="flag red">Threat</span>
+        {% endif %}
+        {% if result.has_profanity %}
+            <span class="flag red">Profanity</span>
+        {% endif %}
+        {% if result.has_sarcasm %}
+            <span class="flag orange">Sarcasm</span>
+        {% endif %}
+    </div>
+
+    <h3>Why this label?</h3>
+    <ul class="explanation-list">
+        {% for line in result.explanation %}
+            <li>{{ line }}</li>
+        {% endfor %}
+    </ul>
+</div>
+{% endif %}
+
+{% endblock %}
+
+
+
+
+
+
+
+

templates/login.html

@@ -0,0 +1,56 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    {% if mode == "register" %}
+        <h2>Create an Account</h2>
+        <p class="subtitle">
+            Register to save your tone analysis history and access exports.
+        </p>
+    {% else %}
+        <h2>Login</h2>
+        <p class="subtitle">
+            Log in to access your saved analyses and exports.
+        </p>
+    {% endif %}
+
+    <form method="POST">
+        <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+
+        <label>Email</label>
+        <input type="email" name="email" required
+               style="width: 100%; padding: 8px; margin-bottom: 12px;">
+
+        <label>Password</label>
+        <input type="password" name="password" required
+               style="width: 100%; padding: 8px; margin-bottom: 16px;">
+
+        {% if mode == "register" %}
+            <label style="display:flex; align-items:center; gap:6px; font-size:13px; margin-bottom: 16px;">
+                <input type="checkbox" name="consent_privacy" required>
+                <span>
+                    I agree to the
+                    <a href="{{ url_for('privacy') }}">Privacy Policy</a>
+                    and understand how my data is used.
+                </span>
+            </label>
+        {% endif %}
+
+        <button type="submit">
+            {% if mode == "register" %}Create Account{% else %}Login{% endif %}
+        </button>
+    </form>
+
+    <p class="subtitle" style="margin-top: 12px;">
+        {% if mode == "register" %}
+            Already have an account?
+            <a href="{{ url_for('login') }}">Log in here</a>.
+        {% else %}
+            Need an account?
+            <a href="{{ url_for('register') }}">Register here</a>.<br>
+            <a href="{{ url_for('forgot_password') }}">Forgot your password?</a>
+        {% endif %}
+    </p>
+</div>
+
+{% endblock %}

templates/privacy.html

@@ -0,0 +1,73 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    <h2>Privacy Policy</h2>
+    <p class="subtitle">Last updated: {{ datetime.utcnow().date() if datetime else "2025" }}</p>
+
+    <p>
+        This application analyzes text to classify the tone of messages
+        (e.g., Aggressive, Neutral, Polite, Friendly). To provide this service,
+        we process the following personal data:
+    </p>
+
+    <ul>
+        <li>Your email address (for login, verification, and account management)</li>
+        <li>A hashed version of your password</li>
+        <li>Text you submit for tone analysis</li>
+        <li>Metadata such as timestamps of your usage</li>
+    </ul>
+
+    <h3>Legal Basis (GDPR)</h3>
+    <p>
+        Our legal basis for processing personal data is your consent and
+        our legitimate interest in providing and improving the service.
+        You can withdraw your consent at any time by deleting your account.
+    </p>
+
+    <h3>Data Storage & Retention</h3>
+    <p>
+        Your data is stored on infrastructure operated by Hugging Face
+        and associated hosting providers. We retain account data for up to
+        12 months of inactivity, after which your account and data may be
+        automatically deleted. You may also delete your account at any time
+        using the "Delete Account" option in the application.
+    </p>
+
+    <h3>Right of Access & Portability</h3>
+    <p>
+        You can export your analysis history via the CSV and PDF export
+        features on the History page. This satisfies your right of access
+        and data portability.
+    </p>
+
+    <h3>Right to Deletion ("Right to be Forgotten")</h3>
+    <p>
+        You can permanently delete your account and all associated analysis
+        data at any time from the "Delete Account" page. This action cannot
+        be undone.
+    </p>
+
+    <h3>Cookies</h3>
+    <p>
+        This service uses only essential cookies required for authentication,
+        session management, and security (CSRF protection). No advertising
+        or tracking cookies are used.
+    </p>
+
+    <h3>Data Sharing & "Do Not Sell My Personal Information"</h3>
+    <p>
+        We do not sell your personal data. We do not share your data with
+        third parties for advertising purposes. For more details, see the
+        "Do Not Sell My Info" page.
+    </p>
+
+    <h3>Contact</h3>
+    <p>
+        If you have questions about how your data is processed or wish
+        to exercise your rights under GDPR or CCPA, you can contact the
+        project owner directly.
+    </p>
+</div>
+
+{% endblock %}

templates/reset_password.html

@@ -0,0 +1,38 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    <h2>Reset Password</h2>
+    <p class="subtitle">
+        Check your email for the 6-digit reset code, then set a new password.
+    </p>
+
+    <form method="POST">
+        <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+
+        <label>Email</label>
+        <input type="email" name="email" required
+               style="width: 100%; padding: 8px; margin-bottom: 12px;">
+
+        <label>Reset Code</label>
+        <input type="text" name="code" maxlength="6" required
+               style="width: 100%; padding: 8px; margin-bottom: 12px;">
+
+        <label>New Password</label>
+        <input type="password" name="password" required
+               style="width: 100%; padding: 8px; margin-bottom: 12px;">
+
+        <label>Confirm New Password</label>
+        <input type="password" name="confirm_password" required
+               style="width: 100%; padding: 8px; margin-bottom: 16px;">
+
+        <button type="submit">Reset Password</button>
+    </form>
+
+    <p class="subtitle" style="margin-top: 12px;">
+        Already reset it?
+        <a href="{{ url_for('login') }}">Back to login</a>.
+    </p>
+</div>
+
+{% endblock %}

templates/verify.html

@@ -0,0 +1,29 @@
+{% extends "base.html" %}
+{% block content %}
+
+<div class="card">
+    <h2>Verify Your Email</h2>
+    <p class="subtitle">
+        We sent a 6-digit verification code to <strong>{{ email }}</strong>.
+        Enter it below to activate your account.
+    </p>
+
+    <form method="POST" style="margin-bottom: 12px;">
+        <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+        <input type="hidden" name="action" value="verify">
+
+        <label>Verification Code</label>
+        <input type="text" name="code" maxlength="6" required
+               style="width: 100%; padding: 8px; margin-bottom: 16px;">
+
+        <button type="submit">Verify Email</button>
+    </form>
+
+    <form method="POST">
+        <input type="hidden" name="csrf_token" value="{{ csrf_token }}">
+        <input type="hidden" name="action" value="resend">
+        <button type="submit" class="btn-secondary">Resend Code</button>
+    </form>
+</div>
+
+{% endblock %}