Numerum/skill-forge
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
skill-forge/API/app/infrastructure/dependencies.py

43 lines
1.4 KiB
Python
Raw Blame History

from fastapi import Depends, HTTPException, Security
from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
import jwt
from app.domain.models.users import User
from app.settings import get_auth_data
from app.application.users_repository import UsersRepository
from app.database.dependencies import get_db
from sqlalchemy.orm import Session
security = HTTPBearer()
def get_current_user(
credentials: HTTPAuthorizationCredentials = Security(security),
db: Session = Depends(get_db)
):
auth_data = get_auth_data()
try:
payload = jwt.decode(credentials.credentials, auth_data["secret_key"], algorithms=[auth_data["algorithm"]])
except jwt.ExpiredSignatureError:
raise HTTPException(status_code=401, detail="Token has expired")
except jwt.InvalidTokenError:
raise HTTPException(status_code=401, detail="Invalid token")
user_id = payload.get("user_id")
if user_id is None:
raise HTTPException(status_code=401, detail="Invalid token")
user = UsersRepository(db).get_by_id_with_role(user_id)
if user is None:
raise HTTPException(status_code=401, detail="User not found")
return user
def require_admin(user: User = Depends(get_current_user)):
if user.role.title != "Администратор":
raise HTTPException(status_code=403, detail="Access denied")
return user
Reference in New Issue View Git Blame Copy Permalink