| from passlib.context import CryptContext |
| from jose import JWTError, jwt |
| from datetime import datetime, timedelta, timezone |
| from fastapi import Depends, HTTPException, status |
| from fastapi.security import OAuth2PasswordBearer |
| from sqlalchemy.orm import Session |
| from database import get_db |
| from models import User_Auth |
| from schemas import TokenData |
| from passlib.context import CryptContext |
|
|
| pwd_context = CryptContext(schemes=["argon2"], deprecated="auto") |
|
|
| SECRET_KEY = "secretkey" |
| ALGORITHM = "HS256" |
| ACCESS_TOKEN_EXPIRE_MINUTES = 60 * 24 |
|
|
| oauth2_scheme = OAuth2PasswordBearer(tokenUrl="auth/login") |
|
|
|
|
| def verify_password(plain_password, hashed_password): |
| return pwd_context.verify(plain_password, hashed_password) |
|
|
|
|
| def get_password_hash(password): |
| return pwd_context.hash(password) |
|
|
|
|
| def authenticate_user(db: Session, username: str, password: str): |
| user = db.query(User_Auth).filter(User_Auth.username == username).first() |
| if not user: |
| return False |
| if not verify_password(password, user.hashed_password): |
| return False |
| return user |
|
|
|
|
| def create_access_token(data: dict, expires_delta: timedelta = None): |
| to_encode = data.copy() |
| if expires_delta: |
| expire = datetime.now(timezone.utc) + expires_delta |
| else: |
| expire = datetime.now(timezone.utc) + timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES) |
| |
| to_encode.update({"exp": expire}) |
| encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM) |
| return encoded_jwt |
|
|
|
|
| def get_current_user(token: str = Depends(oauth2_scheme), db: Session = Depends(get_db)): |
| credentials_exception = HTTPException( |
| status_code=status.HTTP_401_UNAUTHORIZED, |
| detail="Could not validate credentials", |
| headers={"WWW-Authenticate": "Bearer"}, |
| ) |
| |
| try: |
| payload = jwt.decode(token, SECRET_KEY, algorithms=[ALGORITHM]) |
| username: str = payload.get("sub") |
| if username is None: |
| raise credentials_exception |
| token_data = TokenData(username=username) |
| except JWTError: |
| raise credentials_exception |
| |
| user = db.query(User_Auth).filter(User_Auth.username == token_data.username).first() |
| if user is None: |
| raise credentials_exception |
| |
| return user |
|
|
| |
| |
| |
| |
|
|