add fingerprint httpbearer schema

2025-09-21 21:35:46 +03:00
parent 408e32d05f
commit 3dc36a2f25
4 changed files with 31 additions and 18 deletions
--- a/src/services/auth.py
+++ b/src/services/auth.py
@@ -19,7 +19,7 @@ class AuthService(BaseService):
        await self.session.commit()
        return User.model_validate(result)

-    async def login(self, username: str, password: str):
+    async def login(self, username: str, password: str, fingerprint: str) -> dict:
        result = await self.session.user.get_one_or_none(username=username)
        if result is None:
            raise HTTPException(
@@ -27,7 +27,7 @@ class AuthService(BaseService):
                detail="Incorrect username or password",
            )
        user = UserWithHashedPass.model_validate(result)
-        user_token = TokenData.model_validate(user.model_dump())
+        token_data = TokenData.model_validate(user.model_dump())
        verify = AuthManager.verify_password(
            plain_password=password, hashed_password=user.hashed_password
        )
@@ -36,12 +36,12 @@ class AuthService(BaseService):
                status_code=401,
                detail="Incorrect username or password",
            )
-        access_token = AuthManager.create_access_token(user_token.model_dump())
+        access_token = AuthManager.create_access_token(token_data.model_dump())
        refresh_token = AuthManager.create_refresh_token()
        await self.session.auth.create_one({
            "token": refresh_token, 
            "user_id": user.id,
-            "fingerprint": "default"  # TODO: Implement proper fingerprint generation
+            "fingerprint": fingerprint
        })
        await self.session.commit()
        return {
@@ -54,7 +54,7 @@ class AuthService(BaseService):
        await self.session.auth.delete_one(token=token)
        await self.session.commit()

-    async def refresh_tokens(self, refresh_token: str, user_data: TokenData):
+    async def refresh_tokens(self, refresh_token: str, user_data: TokenData, fingerprint: str) -> dict:
        token_record = await self.session.auth.get_one_or_none(token=refresh_token)
        if not token_record or token_record.user_id != user_data.id:
            raise HTTPException(status_code=401, detail="Invalid refresh token")
@@ -64,7 +64,7 @@ class AuthService(BaseService):
        await self.session.auth.create_one({
            "token": new_refresh_token,
            "user_id": user_data.id,
-            "fingerprint": "default"  # TODO: Implement proper fingerprint generation
+            "fingerprint": fingerprint
        })
        await self.session.commit()
        return {