hOddlmZddlmZmZmZmZddlmZddl m Z ddl m Z ddl mZmZmZddlmZmZddlmZdd lmZmZmZmZdd lmZdd lmZmZdd l m!Z!m"Z"m#Z#m$Z$m%Z%m&Z&m'Z'm(Z(m)Z)m*Z*ed dgZ+e+jYdeee fdede fdZ-e+jYdeee fdede fdZ.e+jYdeee fdede fdZ/e+jYdeee fdede fdZ0e+jYdeee fdede fdZ1e+jed eee#fd!efd"Z3e+jYd#eee fd$ede fd%Z4y&)') timedelta) APIRouterDepends HTTPExceptionstatus)OAuth2PasswordRequestForm)Session)get_db)ACCESS_TOKEN_EXPIRE_MINUTES SECRET_KEY ALGORITHM)jwtJWTError)User)Token RefreshToken OTPVerifyUserTokenResponse) AdminCreate) UserResponse UserCreate) authenticate_usercreate_access_tokenget_current_active_userget_password_hash create_usercreate_refresh_tokenupdate_refresh_tokenverify_registration_otpsend_login_otpverify_login_otpz/authAuthentication)prefixtagsz/login form_datadbcKt||j|j}|sttj dddit ||d{ddiS7w)zAuthenticate user and send OTP.zIncorrect email or passwordzWWW-AuthenticateBearer) status_codedetailheadersNmessagezOTP sent to your email.)rusernamepasswordrrHTTP_401_UNAUTHORIZEDr )r%r&users =/home/www/40-admission.kofcorporation.com/app/routers/auth.pyloginr2si R!3!3Y5G5G HD 440'2  T """ 0 11#sAAA Az /verify-login)response_modelotp_datac Kt||j|j}tt}t d|ji|}t d|ji}t||j||d||dSw)zVerify OTP and return tokens.minutessubdata expires_deltar:bearer access_token token_type refresh_tokenr0) r!emailotprr rrridr4r&r0access_token_expiresr?rAs r1 verify_loginrG)sy B =D$-HI&TZZ 0DL)udjj.ABMTWWm4(S`jn oosBBz/refreshrefresh_token_datacZK|j} tj|ttg}|j d}| t dd |jtjtj|k(j}|r|j|k7r t ddtt}td|ji|}t!d|ji}t#||j$||d |d S#t$rt ddwxYww) zRefresh access token) algorithmsr8izInvalid refresh tokenr)r*r6r9r<r=)r?r@rA)rArdecoder r getrrqueryrfilterrBfirstrr rrrrD) rHr&rApayloadrBr0rFr?new_refresh_tokens r1refreshrS7s'44MM**]JI;O[[' =C8OP P  88D> u!4 5 ; ; =D 4%%64KLL$-HI&TZZ 0DL -5$**2EFTWW&78(Sd ee! M4KLLMs D+ADCD+D((D+z /registerr0c8Kt||d{S7w)zRegister a new user.)r&r0N)r)r0r&s r1 register_userrURs. .. .s z /verify-otpct||j|j}tt}t d|ji|}t d|ji}t||j||d||dS)z-Verify OTP, activate user, and return tokens.r6r8r9r<r=r>) rrBrCrr rrrrDrEs r1verify_otp_endpointrWWsu #2x~~x|| DD$-HI&TZZ 0DL)udjj.ABMTWWm4(S`jn ooz/me current_usercK|Sw)zGet current user info)rYs r1 read_users_mer\es sz /first-adminadminc |jtjtjdk(j }|dkDr t dd|jtjtj |j k(j}|r t ddt|j}t|j ||j|j|j|j|j}|j||j|j!||S) zeCreate the first admin account. This endpoint is only available if there are no other admin accounts.r]riz An admin account already exists.rKizEmail already registered)rBhashed_password full_nameroleavataraddressphone)rNrrOracountrrBrPrr.r`rbrcrdaddcommitrS)r]r& admin_countdb_userr_s r1create_first_adminrjjs ((4.'' W(<=CCEKQ5  hhtn##DJJ%++$=>DDFG-  (7Okk'// ZZ|| kkGFF7OIIKJJw NrXN)5datetimerfastapirrrrfastapi.securityrsqlalchemy.ormr app.core.databaser app.core.configr r r joserr app.modelsrapp.schemas.authrrrrapp.schemas.universityrapp.schemas.userrrapp.services.authrrrrrrrrr r!routerpostr2rGrSrUrWrMr\rjr[rXr1rys==6"$NNNN.5    ')9(: ;X7>yPWX^P_ 24 2g 2 2_->?:A&/ p p p@ pZ.BI&/flff/f4[68?/j/g/7/]+<=;B6? p) p p> pE,/-45L-Md0^L9&/! !!:!rX