import requests
from bs4 import BeautifulSoup

print("Testing Login at http://173.212.199.208:8090/auth/login")
print("=" * 60)

# Test 1: Can we reach the login page?
response = requests.get("http://173.212.199.208:8090/auth/login")
print(f"\n1. Login page status: {response.status_code}")
if response.status_code == 200:
    print("   ✓ Login page is accessible")
else:
    print("   ✗ Login page is NOT accessible")

# Test 2: Can we submit the login form?
session = requests.Session()
response = session.get("http://173.212.199.208:8090/auth/login")
soup = BeautifulSoup(response.text, 'html.parser')
csrf_token = soup.find('input', {'name': 'csrfmiddlewaretoken'})['value']

login_data = {
    'csrfmiddlewaretoken': csrf_token,
    'email': 'admin@adtlas.com',
    'password': 'Admin@123456'
}

response = session.post(
    "http://173.212.199.208:8090/auth/login",
    data=login_data,
    headers={'Referer': 'http://173.212.199.208:8090/auth/login'},
    allow_redirects=False
)

print(f"\n2. Login form submission status: {response.status_code}")
if response.status_code == 302:
    print("   ✓ Login successful - redirecting to:", response.headers.get('Location'))
elif response.status_code == 200:
    print("   ✗ Login failed - credentials may be incorrect")
elif response.status_code == 403:
    print("   ✗ CSRF validation failed")
else:
    print(f"   ✗ Unexpected status code: {response.status_code}")

print("\n3. Summary:")
print("   - Login page: WORKING" if response.status_code in [200, 302] else "   - Login page: NOT WORKING")
print("   - Authentication: WORKING" if response.status_code == 302 else "   - Authentication: NOT WORKING")
print("   - CSRF Protection: CONFIGURED CORRECTLY" if response.status_code != 403 else "   - CSRF Protection: MISCONFIGURED")