new refresh dep add refresh endpoint
This commit is contained in:
IluaAir
@@ -1,16 +1,19 @@
|
||||
from typing import Annotated
|
||||
|
||||
from fastapi import APIRouter, Depends, Response
|
||||
from fastapi import APIRouter, Cookie, Depends, HTTPException, Response
|
||||
from fastapi.security import OAuth2PasswordRequestForm
|
||||
|
||||
from src.api.dependacies.db_dep import sessionDep
|
||||
from src.api.dependacies.user_dep import ActiveUser
|
||||
from src.api.dependacies.user_dep import ActiveUser, RefreshUser, http_bearer
|
||||
from src.core.settings import settings
|
||||
from src.schemas.auth import Token
|
||||
from src.schemas.users import UserRequestADD
|
||||
from src.services.auth import AuthService
|
||||
from src.services.users import UserService
|
||||
|
||||
router = APIRouter(prefix=settings.api.v1.auth, tags=["Auth"])
|
||||
router = APIRouter(
|
||||
prefix=settings.api.v1.auth, tags=["Auth"], dependencies=[Depends(http_bearer)]
|
||||
)
|
||||
|
||||
|
||||
@router.post(path="/signup")
|
||||
@@ -23,28 +26,55 @@ async def registration(session: sessionDep, credential: UserRequestADD):
|
||||
async def login(
|
||||
session: sessionDep,
|
||||
credential: Annotated[OAuth2PasswordRequestForm, Depends()],
|
||||
response: Response
|
||||
response: Response,
|
||||
):
|
||||
result = await AuthService(session).login(
|
||||
credential.username, credential.password
|
||||
)
|
||||
result = await AuthService(session).login(credential.username, credential.password)
|
||||
response.set_cookie(
|
||||
key="refresh_token",
|
||||
value=result["refresh_token"],
|
||||
httponly=True,
|
||||
samesite='lax',
|
||||
samesite="lax",
|
||||
path=settings.api.v1.auth,
|
||||
max_age=60 * 60 * 24 * 7
|
||||
max_age=60 * 60 * 24 * 7,
|
||||
)
|
||||
return result
|
||||
|
||||
|
||||
@router.post(path="/refresh")
|
||||
async def refresh(user: ActiveUser, response: Response):
|
||||
print(response)
|
||||
@router.post(path="/refresh", response_model=Token)
|
||||
async def refresh(
|
||||
session: sessionDep,
|
||||
response: Response,
|
||||
current_user: RefreshUser,
|
||||
refresh_token: Annotated[str | None, Cookie(name="refresh_token")] = None,
|
||||
):
|
||||
if refresh_token is None:
|
||||
raise HTTPException(status_code=401, detail="No refresh token")
|
||||
result = await AuthService(session).refresh_tokens(refresh_token, current_user)
|
||||
response.set_cookie(
|
||||
key="refresh_token",
|
||||
value=result["refresh_token"],
|
||||
httponly=True,
|
||||
samesite="lax",
|
||||
path=settings.api.v1.auth,
|
||||
max_age=60 * 60 * 24 * 7,
|
||||
)
|
||||
return result
|
||||
|
||||
|
||||
@router.post(path='/logout')
|
||||
async def logout(response: Response):
|
||||
@router.get("/me")
|
||||
async def get_me(session: sessionDep, user: ActiveUser):
|
||||
cur_user = await UserService(session).get_user_by_filter_or_raise(id=user.id)
|
||||
return cur_user
|
||||
|
||||
|
||||
@router.post(path="/logout")
|
||||
async def logout(
|
||||
session: sessionDep,
|
||||
response: Response,
|
||||
refresh_token: Annotated[str | None, Cookie(name="refresh_token")] = None,
|
||||
):
|
||||
if refresh_token is None:
|
||||
raise HTTPException(status_code=401, detail="No refresh token")
|
||||
await AuthService(session).delete_token(token=refresh_token)
|
||||
response.delete_cookie(key="refresh_token")
|
||||
return {'status': 'ok'}
|
||||
return {"status": "ok"}
|
||||
|
||||
Reference in New Issue
Block a user