This change adds in-app authentication to the comment page by wiring Flask-HTTPAuth into the Flask app and verifying a hashed password before serving or accepting comments. The root route now redirects to an authenticated /comment_page, which makes the app's access control explicit in code instead of relying on hosting-layer protection. It also replaces an exception path with a simple response for unknown methods. Practically, the app is now self-contained and protected even if the deployment environment doesn’t provide password gating.