add jwt token

app.py

@@ -3,8 +3,8 @@ from blindbox.requests import SecureSession
 
 DEMO_SERVER = "4.208.9.167:80"
 text = "<h1 style='text-align: center; color: white;'>🎅 SantaCoder with <span style='color: #f0ba2d;'>BlindBox:</span> Private Code Generation </h1><p style='text-align: left; color: white;'>This is our demo for our <a style='color: #f0ba2d;', href='https://blog-mithril-security.ghost.io/ai-assisted-code-generation-with-privacy-guarantees-securely-deploy-santacoder-with-blindbox'>article</a> on deploying code generation LLM models with BlindBox. The user input is <a style='color:  #f0ba2d;', href='https://blindbox.mithrilsecurity.io/en/latest/docs/getting-started/confidential_computing/'>protected during computation</a> by leveraging state-of-the-art <a style='color:  #f0ba2d;', href='https://www.ibm.com/topics/confidential-computing'> Confidental Computing technologies.</a> This means that data sent to Santacoder model is never accessible to the service provider during computation- private code remains private!</p><p style='text-align: left; color: white;'>You can see how we deployed the model in the integration section of our <a style='color:  #f0ba2d;', href='https://blindbox.mithrilsecurity.io/en/latest/docs/how-to-guides/santacoder/'>documentation!</a></p><p style='text-align: left; color: white;'>⚠️ BlindBox is still under development. Do not test with production data!</p>"
-bullets = "<ul><li style='color: white;'>✅ Connection verified by attestation</li><li style='color: white;'>✅ Application deployed on Confidential VM</li></ul><p style='color: white;'>Features coming soon:</p><ul><li style='color: white;'>⌛ TLS</li><li style='color: white;'>⌛ Network isolation</li></ul>"
-
+bullets = "<ul><li style='color: white;'>✅ Connection verified by <a style='color: #f0ba2d;', href='https://blindbox.mithrilsecurity.io/en/latest/docs/security/attestation'>attestation</a></li><li style='color: white;'>✅ Application deployed on Confidential VM</li></ul><p style='color: white;'>Features coming soon:</p><ul><li style='color: white;'>⌛ TLS</li><li style='color: white;'>⌛ Network isolation</li></ul>"
+token_info = "<p style='color: white;'> Find out more about the MAA attesation token <a style='color: #f0ba2d;', href='https://blindbox.mithrilsecurity.io/en/latest/docs/security/attestation/#maa-attestation-token'>here!</a>"
 def run_query( server, prompt):
     if server == "Non-confidential VM server":
         return ("⛔ Error: you can only connect to an application running on a Confidential VM")
@@ -12,12 +12,13 @@ def run_query( server, prompt):
     if prompt == None:
         return ("⛔ Error: please provide input code")
     message = "\n\n✅ Secure query succesful"
+    message2 = "✅ Attestation validated\n"
     try:
         with SecureSession(f"http://{DEMO_SERVER}", POLICY) as secure_session:
             res = secure_session.post(endpoint="/generate", json={"input_text": prompt})
             cleaned = res.text.replace('\\n', '\n').split('\n\n')[0].split(':"')[1]
             cleaned = cleaned.replace('\\', '')
-            return(cleaned + message)
+            return(cleaned + message, message2 + secure_session.jwt)
     except Exception as err:
         return(f"⛔ Query failed!\n{err}")
 
@@ -36,7 +37,10 @@ with demo:
         trigger = gr.Button(label="Run query")
     with gr.Column():
         output = gr.Textbox(placeholder="Output", label="Output")
-    trigger.click(fn=run_query, inputs=[server, prompt], outputs=output)
+        with gr.Accordion("Attestation token (signed JWT token): ", open=False):
+            output2 = gr.Textbox(placeholder="Attestation token", label="Output")
+        gr.Markdown(value=token_info)
+    trigger.click(fn=run_query, inputs=[server, prompt], outputs=[output, output2])
     gr.HTML(label="Contact", value="<img src='https://github.com/mithril-security/blindbox/blob/laura-images/docs/assets/contact-us.png?raw=true.png' alt='contact' style='display: block; margin: auto; max-width: 600px;'>")
 if __name__ == "__main__":
     demo.launch()