Spaces:
Sleeping
Sleeping
File size: 1,618 Bytes
e650b33 | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 | from typing import Generator
from fastapi import Depends, HTTPException, status, Request
from sqlalchemy.orm import Session
from uuid import UUID
from src.database import get_db_session
from src.models.user import User
from src.utils.security import verify_token
def get_db() -> Generator[Session, None, None]:
db = next(get_db_session())
try:
yield db
finally:
db.close()
def get_current_user(
request: Request,
db: Session = Depends(get_db)
) -> User:
"""
Get the currently authenticated user.
Supports BOTH:
- HTTP-only cookies (preferred)
- Authorization: Bearer header (fallback)
"""
token = None
# 1️⃣ Try cookie first
token = request.cookies.get("access_token")
# 2️⃣ Fallback to Authorization header
if not token:
auth_header = request.headers.get("Authorization")
if auth_header and auth_header.startswith("Bearer "):
token = auth_header.split(" ")[1]
if not token:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Not authenticated",
)
payload = verify_token(token)
if not payload or "sub" not in payload:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Invalid or expired token",
)
user_id = payload["sub"]
user = db.query(User).filter(User.id == UUID(user_id)).first()
if not user:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="User not found",
)
return user
|