| from datetime import datetime, timedelta, timezone | |
| from typing import Any | |
| import bcrypt | |
| from jose import JWTError, jwt | |
| from app.core.config import settings | |
| def get_password_hash(password: str) -> str: | |
| return bcrypt.hashpw(password.encode(), bcrypt.gensalt()).decode() | |
| def verify_password(plain: str, hashed: str) -> bool: | |
| return bcrypt.checkpw(plain.encode(), hashed.encode()) | |
| def create_access_token(data: dict[str, Any]) -> str: | |
| payload = data.copy() | |
| payload["exp"] = datetime.now(timezone.utc) + timedelta( | |
| minutes=settings.JWT_EXPIRE_MINUTES | |
| ) | |
| payload["iat"] = datetime.now(timezone.utc) | |
| return jwt.encode(payload, settings.JWT_SECRET, algorithm=settings.JWT_ALGORITHM) | |
| def decode_token(token: str) -> dict[str, Any] | None: | |
| try: | |
| return jwt.decode( | |
| token, settings.JWT_SECRET, algorithms=[settings.JWT_ALGORITHM] | |
| ) | |
| except JWTError: | |
| return None |