XSh1 ddlmZmZmZddlmZddlZddlmZmZddl m Z ddl m Z m Z mZddlmZddlmZdd lmZdd lmZejd Zes ed d ZdZe dgdZedZdededefdZ dedefdZ!dedededeeeffdZ"d%de#deedffdZ$e ee efd edefd!Z%e e%fd"efd#Z&e e&fd"efd$Z'dS)&)datetime timedeltatimezone)UnionN)JWTErrorjwt) CryptContext)Depends HTTPExceptionstatus)OAuth2PasswordBearer)Session)get_db)UserSESSION_SECRETzGSESSION_SECRET environment variable is required for production securityHS256bcryptauto)schemes deprecatedz auth/login)tokenUrlplain_passwordhashed_passwordreturnc8t||S)z"Verify a password against its hash) pwd_contextverify)rrs /home/runner/workspace/auth.pyverify_passwordr s   no > >>passwordc6t|S)zHash a password)rhash)r"s rget_password_hashr%s   H % %%r!dbemailc|ttj|k}|sdSt ||jsdS|S)z)Authenticate a user by email and passwordF)queryrfilterr'firstr r)r&r'r"users rauthenticate_userr-!s^ 88D>> u!4 5 5 ; ; = =D u 8T%9 : :u Kr!data expires_deltacD|}|r"tjtj|z}n/tjtjt dz}|d|itj|tt}|S)zCreate a JWT access token)minutesexp) algorithm) copyrnowrutcrupdaterencode SECRET_KEY ALGORITHM)r.r/ to_encodeexpire encoded_jwts rcreate_access_tokenr?*s IDhl++m;hl++i.C.C.CC eV_%%%*Y iHHHK r!tokencKttjdddi} tj|t t g}|d}||n#t$r|wxYw| t tj |k }|||S)z#Get the current user from JWT tokenzCould not validate credentialszWWW-AuthenticateBearer) status_codedetailheaders) algorithmssub)r r HTTP_401_UNAUTHORIZEDrdecoder:r;getrr)rr*r'r+)r@r&credentials_exceptionpayloadr'r,s rget_current_userrM5s)0/#X. $*UJI;GGG[['' =' '  $$$##$ 88D>> u!4 5 5 ; ; = =D |## Ks ;A A+ current_userc:K|jstdd|S)zGet the current active useriz Inactive userrCrD) is_activer )rNs rget_current_active_userrRIs+  !EODDDD r!chddlm}|j|jkrt t jd|S)zRequire admin roler)UserRolezNot enough permissionsrP)modelsrTroleADMINr r HTTP_403_FORBIDDEN)rNrTs r require_adminrYOsLHN**1+     r!)N)(rrrtypingrosjoserrpasslib.contextr fastapir r r fastapi.securityr sqlalchemy.ormrdatabaserrUrgetenvr: ValueErrorr;ACCESS_TOKEN_EXPIRE_MINUTESr oauth2_schemestrboolr r%r-dictr?rMrRrYr!rrjs2222222222 ((((((2222222222111111""""""RY' ( ( ` *^ _ __   lH:&AAA %$l;;; ?C?#?$????&&&&&&'#tTzAR  d 5D3I    )0 (>(>ggV\oo#G(8?w?O7P7P (/w/F'G'Gr!