Adding HTMX powered Light-Dashboard

Author: RTL

Light-Dashboard/README.md

@@ -6,8 +6,10 @@ devices.
 
 ![Light Dashboard Template](https://makoserver.net/blogmedia/dashboard/Light-Dashboard.gif)
 
-## Tutorial and hands-on microcontroller example:
-The server-side logic and web rendering are explained in the [dashboard article](https://makoserver.net/articles/How-to-Build-an-Interactive-Dashboard-App). For a hands-on microcontroller example of how to use this dashboard, see the tutorial, [Designing Your First Professional Embedded Web Interface](https://realtimelogic.com/articles/Designing-Your-First-Professional-Embedded-Web-Interface).
+
+## Tutorial and Hands-On Microcontroller Example
+- Explore the server-side logic, HTMX, and web rendering principles detailed in the [dashboard article](https://makoserver.net/articles/How-to-Build-an-Interactive-Dashboard-App).
+- For a practical microcontroller implementation using this dashboard, check out the tutorial [Designing Your First Professional Embedded Web Interface](https://realtimelogic.com/articles/Designing-Your-First-Professional-Embedded-Web-Interface).
 
 ## How to run using the Mako Server:
 Run the dashboard example, using the [Mako Server](https://makoserver.net/), as follows:
@@ -16,6 +18,13 @@ Run the dashboard example, using the [Mako Server](https://makoserver.net/), as
 cd Light-Dashboard
 mako -l::www
 ```
+
+Run the [HTMX](https://htmx.org/) version as follows:
+```
+cd Light-Dashboard
+mako -l::htmx
+```
+
 For detailed instructions on starting the Mako Server, check out our [command line video tutorial](https://youtu.be/vwQ52ZC5RRg) and review the server's [command line options](https://realtimelogic.com/ba/doc/?url=Mako.html#loadapp) in our documentation.
 
 After starting the Mako Server, use a browser and navigate to

Light-Dashboard/htmx/.config

@@ -0,0 +1,6 @@
+-- See: https://realtimelogic.com/articles/Mastering-Xedge-Application-Deployment-From-Installation-to-Creation
+return {
+   autostart=true,
+   name="Light-Dashboard",
+   dirname=""
+}

Light-Dashboard/htmx/.lua/cms.lua

@@ -0,0 +1,216 @@
+-- Mini Content Management System (CMS) designed for the Pure.css dashboard.
+
+-- All LSP applications have a predefined 'dir' object, which is a resrdr instance.
+-- Ref resrdr: https://realtimelogic.com/ba/doc/en/lua/lua.html#ba_create_resrdr
+-- The dir object is not set when running as an Xedge xlua app (not LSP enabled app)
+-- https://realtimelogic.com/ba/doc/en/Xedge.html#using
+if not dir then
+   error"This application must run as an LSP enabled app"
+end
+
+local fmt=string.format
+
+-- Load module for reading and writing raw-files and json-files.
+-- Details: https://realtimelogic.com/ba/doc/en/lua/auxlua.html#rwfile
+local rw=require"rwfile"
+
+-- Convert to closures so variables work in the cmsfunc() callback function
+-- Closure def: https://en.wikipedia.org/wiki/Closure_(computer_programming)
+local app,io,dir=app,app.io,app.dir
+
+-- Set on 'dir' and used by function cmsfunc()
+local securityPolicies={
+   ["Content-Security-Policy"]= "default-src 'self'; script-src 'self' cdn.jsdelivr.net unpkg.com 'unsafe-inline'; style-src 'self' cdn.jsdelivr.net unpkg.com 'unsafe-inline'",
+   ["X-Content-Type-Options"]="nosniff",
+}
+-- Doc: https://realtimelogic.com/ba/doc/en/lua/lua.html#rsrdr_header
+dir:header(securityPolicies)
+
+-- Takes the data content of an LSP page (HTML with LSP tags) as
+-- argument, converts the LSP page to Lua code, and compiles the Lua
+-- code. The compiled Lua code is returned as a function.
+-- Details: https://realtimelogic.com/ba/doc/en/lua/lua.html#ba_parselsp
+local function parseLspPage(name)
+   local func
+   local data,err=rw.file(io,name) -- Read file content
+   if data then
+      data,err = ba.parselsp(data)
+      if data then
+         local func
+         -- Compile Lua code
+         -- ref load: https://realtimelogic.com/ba/doc/luaref_index.html?url=pdf-load
+         func,err = load(data,name,"t")
+         if func then return func end
+      end
+   end
+   -- Failed
+   err = fmt("parsing or running %s failed: %s",name,err)
+   trace(err)
+   return function(_ENV) print(err) end
+end
+
+-- Parse and cache the template page.
+local templatePage=parseLspPage(".lua/www/template.lsp")
+
+
+-- Load the JSON encoded menu
+local menuL=rw.json(io,".lua/menu.json")
+assert(menuL, "lua/menu.json parse error")
+
+--Create a key/value version of the menu list, where key is the relative path name 'href'.
+local menuT={}
+for _,m in ipairs(menuL) do
+   menuT[m.href]=m
+end
+
+-- An LSP page expects a persistent table unique to each page. The
+-- pagesT is a table where the key is the relative path and the value
+-- is the LSP page's unique table.
+-- Details: https://realtimelogic.com/ba/doc/en/lua/lua.html#CMDE
+local pagesT={}
+
+-- The directory callback function. This callback is called by the
+-- server when a resource is accessed. Argument env is the
+-- request/response environment table and relpath is the relative path.
+-- See the following for details on the request/response environment:
+-- https://realtimelogic.com/ba/doc/en/lua/lua.html#CMDE
+local function cmsfunc(_ENV, relpath, notInMenuOK)
+   trace("hx-request:",request:header"hx-request" and "yes" or "no")
+   local response=response -- e.g. = _ENV.response. Now faster.
+
+   -- Translate to (path/)index.html if only directory name is provided.
+   if #relpath == 0 or relpath:find"/$" then
+      relpath = relpath.."index.html"
+   end
+
+   -- Do we have the requested page (must be in file menu.json)
+   if not menuT[relpath] and not notInMenuOK then
+      if not relpath:find(".html",-5,true) then
+         return false -- Not a html page. Let default 404 handle this
+      end
+      trace("Not found",relpath) -- For debug purposes
+      response:setstatus(404)
+      relpath = "404.html"
+   end
+
+   -- Fetch the LSP page's persistent page table. Create the table if
+   -- the page has so far not been accessed.
+   local pageT=pagesT[relpath]
+   if not pageT then
+      pageT={}
+      pagesT[relpath]=pageT
+   end
+
+   --Remove the following line and xrsp:finalize() if you do not want to
+   --compress the response.
+   local xrsp = response:setresponse() -- Activate compression
+   response:setdefaultheaders()
+
+   local lspPage=parseLspPage(".lua/www/"..relpath)
+   if request:header"hx-request" then
+      lspPage(_ENV,relpath,io,pageT,app)
+   else
+      for k,v in pairs(securityPolicies) do response:setheader(k,v) end
+      -- Make the following available to template.lsp
+      -- Note, we explicitly use the _ENV tab for code readability.
+      -- Details: https://realtimelogic.com/ba/doc/en/lua/man/manual.html#2.2
+      --          https://realtimelogic.com/ba/doc/en/lua/lua.html#CMDE
+      _ENV.menuL=menuL
+      _ENV.menuT=menuT
+      _ENV.relpath=relpath
+      -- lspPage is the parsed page (function as explained in parseLspPage above)
+      _ENV.lspPage=lspPage
+      -- Call the template page and pass in the required arguments.
+      -- Arg details: https://realtimelogic.com/ba/doc/en/lua/lua.html#ba_parselsp
+      templatePage(_ENV,relpath,io,pageT,app)
+      -- non cached version of above. Use if testing new template.
+      --parseLspPage(".lua/www/template.lsp")(_ENV,relpath,io,pageT,app)
+   end
+   xrsp:finalize(true) -- Send compressed data to client
+
+   return true
+end
+
+-- Create the directory function used by our mini CMS system and
+-- install the callback function. A directory with no name is in
+-- effect a sibling when installed as a sub-directory. The following
+-- construction makes sure we do not trigger the callback for any
+-- static assets. In other words, static assets take precedence. The
+-- callback is called when no static asset is found.
+-- Ref dir: https://realtimelogic.com/ba/doc/en/lua/lua.html#ba_create_dir
+local cmsDir = ba.create.dir()
+cmsDir:setfunc(cmsfunc)
+
+
+-- Insert cmsDir as 'dir' siblings. This means the parent will be
+-- searched first. The parent resource reader (dir) manages the static
+-- content. See www/static for content returned to browser
+dir:insert(cmsDir,true)
+
+
+
+----------------------- AUTHENTICATION -----------------------------
+
+if ba.tpm then
+   -- The following code is based on example from:
+   -- https://realtimelogic.com/ba/doc/en/lua/auxlua.html#TPM
+
+   local cfgio = ba.openio"home" or ba.openio"disk" -- mako or xedge
+   local rw=require"rwfile"
+
+   -- Read/write encrypted db. Write if 'encdb' provided
+   local function rwdb(encdb)
+      trace(encdb and "Writing" or "Reading","userdb.encrypted")
+      return rw.file(cfgio,"userdb.encrypted",encdb)
+   end
+
+   -- ba.create.authenticator() callback function
+   local function loginresponse(_ENV, authinfo)
+      -- How _ENV is used: https://realtimelogic.com/ba/doc/en/lua/lua.html#CMDE
+      _ENV.authinfo = authinfo -- Makes it possible for .login-form.lsp to use authinfo
+      -- The following prints the content of the authinfo table
+      trace("loginresponse", ba.json.encode(authinfo))
+      cmsfunc(_ENV,"login.html", true) -- Let the CMS function emit the login page.
+   end
+
+   -- Create the wrapper and make the encrypted DB global
+   local tju=ba.tpm.jsonuser("dashboard",true)
+
+   local authDir=nil
+   local function setOrRemoveAuth()
+      if #tju.users() > 0 and not authDir then -- SET
+         authDir = ba.create.dir(1) -- Set priority to a value greater than cmsDir.
+         local authenticator=ba.create.authenticator(tju.getauth(),{response=loginresponse, type="form"})
+         authDir:setauth(authenticator)
+         dir:insert(authDir,true) -- Higher prio than cmsDir thus executes before 
+         trace"Installing authenticator"
+      elseif #tju.users() == 0 and authDir then -- REMOVE
+         authDir:unlink() -- Remove authenticator
+         authDir=nil
+         trace"Removing authenticator"
+      end
+   end
+
+   function setuser(name,pwd) -- Used by www/.lua/www/Users.html 
+      rwdb(tju.setuser(name,pwd))
+      setOrRemoveAuth()
+   end
+ 
+   local encdb=rwdb() -- Load the encryted DB, if any
+   if encdb then
+      -- Set the DB
+      local ok,err=tju.setdb(encdb)
+      if ok then
+         setOrRemoveAuth()
+      else
+         trace("Authenticator not installed; User DB error:",err)
+      end
+   else
+      trace"No user database; Authenticator not installed"
+   end
+else
+   trace"No TPM. Authenticator not installed"
+end
+
+-- Return onunload handler
+return function() end -- Not used

Light-Dashboard/htmx/.lua/menu.json

@@ -0,0 +1,23 @@
+[
+    {
+        "name": "Home",
+        "href": "index.html"
+    },
+    {
+        "name": "HTML Form",
+        "href": "form.html"
+    },
+    {
+        "name": "WebSockets",
+        "href": "WebSockets.html"
+    },
+    {
+        "name": "Users",
+        "href": "Users.html"
+    },
+    {
+        "name": "Sign Out",
+        "href": "logout.html",
+        "auth": true, //Only show if authenticated. See template.lsp
+    }
+]

Light-Dashboard/htmx/.lua/www/404.html

@@ -0,0 +1,9 @@
+<div class="header">
+  <h1>Whoops</h1>
+  <h2>404 - Page Not Found</h2>
+</div>
+
+<div class="content">
+
+</div>
+

Light-Dashboard/htmx/.lua/www/Users.html

@@ -0,0 +1,54 @@
+<?lsp
+if not app.setuser then
+   print"Authenticator not enabled; See www/.lua/cms.lua for details"
+   return
+end
+
+-- HTML Escaping: Transforming potentially dangerous characters into a safe format.
+local xssfilt=(function()
+   local escSyms= {
+      ['&']="&amp;",
+      ['<']="&lt;",
+      ['>']="&gt;",
+      ['"']="&quot;",
+      ["'"]="&#x27;",
+      ['/']="&#x2F;"
+   }
+   local function escape(c) return escSyms[c] end
+   return function(x) return x and x:gsub("[&<>\"'/]", escape) end
+end)()
+
+-- Trim string at both ends
+local function trim(x)
+   return x and x:gsub("^%s*(.-)%s*$", "%1")
+end
+
+local username,password
+if "POST" == request:method() then
+   local data=request:data()
+   username,password=xssfilt(trim(data.username)),xssfilt(trim(data.password))
+   if username and password then
+      if 0 == #password then password=nil end -- remove
+      app.setuser(username,password)
+      response:setheader("Refresh", "3")
+   end
+end
+
+?>
+<div class="header">
+   <h1><?lsp=username and (password and "User Added" or "User Removed") or "Users"?></h1>
+</div>
+<div class="content">
+  <form class="pure-form pure-form-stacked" method="POST">
+    <fieldset class="pure-form pure-form-stacked">
+      <legend>Add/Remove Local User</legend>
+      <label for="AuthName">Username</label>
+      <input name="username" type="text" id="AuthName" placeholder="Enter a username" class="pure-input-1"/>
+      <label for="AuthPassword">Password</label>
+      <input name="password" type="password" id="AuthPassword" placeholder="Enter a password or leave it blank to remove the user" class="pure-input-1"/>
+      <div class="pure-controls">
+        <button id="AuthSave" class="pure-button pure-button-primary">Save</button>
+      </div>
+    </fieldset>
+  </form>
+</div>

Light-Dashboard/htmx/.lua/www/WebSockets.html

@@ -0,0 +1,27 @@
+<!--
+Slider documentation: https://roundsliderui.com/
+-->
+<link href="https://cdn.jsdelivr.net/npm/[email protected]/dist/roundslider.min.css" rel="stylesheet" />
+<link href="/static/WebSockets.css" rel="stylesheet" />
+<script src="/rtl/jquery.js"></script>
+<script src="/rtl/smq.js"></script>
+<script src="https://cdn.jsdelivr.net/npm/[email protected]/dist/roundslider.min.js"></script>
+<script src="/static/WebSockets.js"></script>
+
+<div class="header">
+  <h1>WebSockets</h1>
+   <h2>Real Time Slider Via WebSockets (SMQ)</h2>
+</div>
+
+<div class="content">
+  <div id="SliderContainer">
+    <div id="Slider">Whoops, your browser has no access to the Internet!</div>
+  </div>
+  <p>The slider example shows how to send real time data via WebSockets. You should see the slider angle being printed in real time in the console when you move the slider using the mouse.</p>
+
+  <p>Instead of using raw WebSockets, the data is sent via the pub/sub protocol <a target="_blank" href="https://realtimelogic.com/ba/doc/?url=SMQ.html">SMQ</a>, which runs on top of WebSockets. SMQ simplifies communicating with multiple clients. Open this page in a <a target="_blank" href="WebSockets.html">separate browser window</a> and move the slider. You should see the slider in the other browser window being updated too.</p>
+
+   <p>The slider position is stored persistently on the server side and refreshing this page restores the slider angle position in the browser. The server side immediately publishes the angle position to any new client (browser) that connects to the server. Right click on this page, click Inspect, and click the Network tab to get an understanding of the browser's load sequence. You should see the persistent WebSocket connection on the Network tab after clicking the refresh button.</p>
+
+  <p>See our <a target="_blank" href="https://tutorial.realtimelogic.com/WebSockets.lsp">online tutorial : WebSockets</a> for a WebSockets introduction.</p>
+</div>