| """Authentication module""" |
| import bcrypt |
| from typing import Optional |
| from fastapi import HTTPException, Security |
| from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials |
| from .config import config |
|
|
| security = HTTPBearer() |
|
|
| class AuthManager: |
| """Authentication manager""" |
|
|
| @staticmethod |
| def verify_api_key(api_key: str) -> bool: |
| """Verify API key""" |
| return api_key == config.api_key |
|
|
| @staticmethod |
| def verify_admin(username: str, password: str) -> bool: |
| """Verify admin credentials""" |
| |
| return username == config.admin_username and password == config.admin_password |
|
|
| @staticmethod |
| def hash_password(password: str) -> str: |
| """Hash password""" |
| return bcrypt.hashpw(password.encode(), bcrypt.gensalt()).decode() |
|
|
| @staticmethod |
| def verify_password(password: str, hashed: str) -> bool: |
| """Verify password""" |
| return bcrypt.checkpw(password.encode(), hashed.encode()) |
|
|
| async def verify_api_key_header(credentials: HTTPAuthorizationCredentials = Security(security)) -> str: |
| """Verify API key from Authorization header""" |
| api_key = credentials.credentials |
| if not AuthManager.verify_api_key(api_key): |
| raise HTTPException(status_code=401, detail="Invalid API key") |
| return api_key |
|
|
