Madiwka
/
csci-backend
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
86 Commits
1 Branch
290 KiB
 
 
Tree: 9b9dcd91b0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '9b9dcd91b0'
${ noResults }
csci-backend/app/apis/v1/route_auth.py

96 lines
2.9 KiB
Raw Blame History 

  1. from datetime import datetime

  2. from fastapi.security import OAuth2PasswordBearer, OAuth2PasswordRequestForm

  3. from fastapi import Depends, APIRouter

  4. from sqlalchemy.orm import Session

  5. from fastapi import status, HTTPException

  6. from typing import Annotated

  7. from db.session import get_db

  8. from core.hashing import Hasher

  9. from core.config import settings

  10. from jose import JWTError, jwt

  11. from schemas.token import Token, TokenPayload

  12. from db.repository.user import get_user_by_email, get_user_by_phone

  13. from core.auth import create_access_token

  14. 

  15. 

  16. router = APIRouter()

  17. oauth2_scheme = OAuth2PasswordBearer(

  18.     tokenUrl="/token",

  19. )

  20. 

  21. 

  22. def authenticate_user(login: str, password: str, db: Session):

  23.     print("Trying to auth...")

  24.     user = None

  25.     if "@" in login:

  26.         user = get_user_by_email(email=login, db=db)

  27.     elif "+" in login:

  28.         user = get_user_by_phone(phone=login, db=db)

  29.     else:

  30.         return False

  31.     if not user:

  32.         return False

  33.     if not Hasher.verify_password(password, user.HashedPassword):

  34.         return False

  35.     return user

  36. 

  37. 

  38. def get_current_user(

  39.     token: Annotated[str, Depends(oauth2_scheme)],

  40.     db: Annotated[Session, Depends(get_db)],

  41. ):

  42.     print("Getting current user...")

  43.     try:

  44.         payload = jwt.decode(

  45.             token, settings.SECRET_KEY, algorithms=[settings.ALGORITHM]

  46.         )

  47.         token_data = TokenPayload(**payload)

  48. 

  49.         if datetime.fromtimestamp(token_data.exp) < datetime.now():

  50.             raise HTTPException(

  51.                 status_code=status.HTTP_401_UNAUTHORIZED,

  52.                 detail="Session expired. Please login again.",

  53.             )

  54.         username: str = payload.get("sub")

  55.         if username is None:

  56.             raise HTTPException(

  57.                 status_code=status.HTTP_401_UNAUTHORIZED,

  58.                 detail="Could not validate credentials",

  59.             )

  60.     except JWTError:

  61.         raise HTTPException(

  62.             status_code=status.HTTP_401_UNAUTHORIZED,

  63.             detail="Could not validate credentials",

  64.         )

  65.     if "@" in username:

  66.         user = get_user_by_email(email=username, db=db)

  67.     elif "+" in username:

  68.         user = get_user_by_phone(phone=username, db=db)

  69.     else:

  70.         raise HTTPException(

  71.             status_code=status.HTTP_401_UNAUTHORIZED,

  72.             detail="Could not validate credentials",

  73.         )

  74.     return user

  75. 

  76. 

  77. @router.post("/token", response_model=Token)

  78. def access_token(

  79.     form_data: OAuth2PasswordRequestForm = Depends(), db: Session = Depends(get_db)

  80. ):

  81.     print("Getting token...")

  82.     user = authenticate_user(form_data.username, form_data.password, db)

  83.     print(user)

  84.     if not user:

  85.         raise HTTPException(

  86.             status_code=status.HTTP_401_UNAUTHORIZED,

  87.             detail="Invalid username or password",

  88.         )

  89.     access_token = create_access_token(data={"sub": user.Email})

  90.     print("TOKENS ARE: ")

  91.     print(access_token)

  92.     return {

  93.         "access_token": access_token,

  94.         "token_type": "bearer",

  95.     }