43 lines
1.9 KiB
Python
43 lines
1.9 KiB
Python
from datetime import datetime, timedelta #jwt
|
||
from jose import JWTError, jwt
|
||
from fastapi import HTTPException, Depends, status
|
||
from fastapi.security import OAuth2PasswordBearer
|
||
|
||
from server.database import db
|
||
|
||
from dotenv import load_dotenv #Работа с env для jwt
|
||
import os
|
||
load_dotenv()
|
||
SECRET_KEY = os.getenv('SECRET_KEY')
|
||
ALGORITHM = os.getenv('ALGORITHM')
|
||
ACCESS_TOKEN_EXPIRE_MINUTES = int(os.getenv('ACCESS_TOKEN_EXPIRE_MINUTES'))
|
||
REFRESH_TOKEN_EXPIRE_MINUTES = int(os.getenv('REFRESH_TOKEN_EXPIRE_MINUTES'))
|
||
|
||
oauth2_scheme = OAuth2PasswordBearer(tokenUrl="login") #Создание jwt
|
||
class Token():
|
||
@staticmethod
|
||
async def create_token(data: dict, expires_delta: timedelta | None = None):
|
||
to_encode = data.copy()
|
||
expire = datetime.utcnow() + (expires_delta or timedelta(minutes=15))
|
||
to_encode.update({"exp": expire})
|
||
encoded_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
|
||
return encoded_jwt
|
||
class AccessToken(Token):
|
||
@staticmethod
|
||
async def create(data:dict, expires_delta: timedelta | None = None):
|
||
return await Token.create_token(data, expires_delta)
|
||
class RefreshToken(Token):
|
||
@staticmethod
|
||
async def create(data:dict, expires_delta: timedelta | None = None):
|
||
token_str = await Token.create_token(data, expires_delta)
|
||
await db.refresh_token(encoded_jwt = token_str,email=data["sub"])
|
||
return token_str
|
||
async def current_user(token: str = Depends(oauth2_scheme)): #Проверка jwt
|
||
try:
|
||
payload = jwt.decode(token, SECRET_KEY, algorithms=[ALGORITHM])
|
||
email: str = payload.get("sub")
|
||
if email is None:
|
||
raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid token")
|
||
return email
|
||
except JWTError:
|
||
raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid token") |