jwt refresh token 1.0

2025-09-21 17:49:55 +03:00
parent 639bc3c1a9
commit 5ddab94773
8 changed files with 95 additions and 19 deletions
--- a/server/backend/JWT.py
+++ b/server/backend/JWT.py
@@ -3,21 +3,47 @@ from jose import JWTError, jwt
 from fastapi import HTTPException, Depends, status
 from fastapi.security import OAuth2PasswordBearer

+from server.database import db
+
 from dotenv import load_dotenv                              #Работа с env для jwt
 import os
 load_dotenv()
 SECRET_KEY = os.getenv('SECRET_KEY')
 ALGORITHM = os.getenv('ALGORITHM')
 ACCESS_TOKEN_EXPIRE_MINUTES = int(os.getenv('ACCESS_TOKEN_EXPIRE_MINUTES'))
-
+REFRESH_TOKEN_EXPIRE_MINUTES = int(os.getenv('REFRESH_TOKEN_EXPIRE_MINUTES'))

 oauth2_scheme = OAuth2PasswordBearer(tokenUrl="login")      #Создание jwt
-async def create_access_token(data: dict, expires_delta: timedelta | None = None):
-    to_encode = data.copy()
-    expire = datetime.utcnow() + (expires_delta or timedelta(minutes=15))
-    to_encode.update({"exp": expire})
-    encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
-    return encoded_jwt
+class Token():
+    @staticmethod
+    async def create_token(data: dict, expires_delta: timedelta | None = None):
+        to_encode = data.copy()
+        expire = datetime.utcnow() + (expires_delta or timedelta(minutes=15))
+        to_encode.update({"exp": expire})
+        encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
+        return encoded_jwt
+class AccessToken(Token):
+    @staticmethod
+    async def create(data:dict, expires_delta: timedelta | None = None):
+        return await Token.create_token(data, expires_delta)
+class RefreshToken(Token):
+    @staticmethod
+    async def create(data:dict, expires_delta: timedelta | None = None):
+        token_str = await Token.create_token(data, expires_delta)
+        await db.refresh_token(encoded_jwt = token_str,email=data["sub"])
+        return token_str
+# async def create_access_token(data: dict, expires_delta: timedelta | None = None):
+#     to_encode = data.copy()
+#     expire = datetime.utcnow() + (expires_delta or timedelta(minutes=15))
+#     to_encode.update({"exp": expire})
+#     encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
+#     return encoded_jwt
+# async def create_refresh_token(data:dict, expires_delta:timedelta | None = None):
+#     to_encode = data.copy()
+#     expire = datetime.utcnow() + (expires_delta or timedelta(minutes=6000))
+#     to_encode.update({"exp": expire})
+#     encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
+#     return encoded_jwt

 async def current_user(token: str = Depends(oauth2_scheme)): #Проверка jwt
    try:
--- a/server/backend/endpoints.py
+++ b/server/backend/endpoints.py
@@ -87,8 +87,16 @@ async def login_user(row: pydentic.UserLogin):
    if not user:
        raise HTTPException(status_code=401, detail="The user isn't found")

-    token = await JWT.create_access_token(
+    access_token = await JWT.AccessToken.create(
        {"sub": user.email},
        timedelta(minutes=JWT.ACCESS_TOKEN_EXPIRE_MINUTES)
    )
-    return {"access_token": token, "token_type": "bearer"}
+    refresh_token = await JWT.RefreshToken.create(
+        {"sub": user.email},
+        timedelta(minutes=JWT.REFRESH_TOKEN_EXPIRE_MINUTES)
+    )
+    return {
+        "access_token": access_token,
+        "refresh_token": refresh_token,
+        "token_type": "bearer"
+    }