mirror of
https://github.com/MODSetter/SurfSense.git
synced 2025-09-01 18:19:08 +00:00
103 lines
3.1 KiB
Python
103 lines
3.1 KiB
Python
import uuid
|
|
|
|
from fastapi import Depends, Request, Response
|
|
from fastapi.responses import JSONResponse, RedirectResponse
|
|
from fastapi_users import BaseUserManager, FastAPIUsers, UUIDIDMixin, models
|
|
from fastapi_users.authentication import (
|
|
AuthenticationBackend,
|
|
BearerTransport,
|
|
JWTStrategy,
|
|
)
|
|
from fastapi_users.db import SQLAlchemyUserDatabase
|
|
from fastapi_users.schemas import model_dump
|
|
from pydantic import BaseModel
|
|
|
|
from app.config import config
|
|
from app.db import User, get_user_db
|
|
|
|
|
|
class BearerResponse(BaseModel):
|
|
access_token: str
|
|
token_type: str
|
|
|
|
|
|
SECRET = config.SECRET_KEY
|
|
|
|
if config.AUTH_TYPE == "GOOGLE":
|
|
from httpx_oauth.clients.google import GoogleOAuth2
|
|
|
|
google_oauth_client = GoogleOAuth2(
|
|
config.GOOGLE_OAUTH_CLIENT_ID,
|
|
config.GOOGLE_OAUTH_CLIENT_SECRET,
|
|
)
|
|
|
|
|
|
class UserManager(UUIDIDMixin, BaseUserManager[User, uuid.UUID]):
|
|
reset_password_token_secret = SECRET
|
|
verification_token_secret = SECRET
|
|
|
|
async def on_after_register(self, user: User, request: Request | None = None):
|
|
print(f"User {user.id} has registered.")
|
|
|
|
async def on_after_forgot_password(
|
|
self, user: User, token: str, request: Request | None = None
|
|
):
|
|
print(f"User {user.id} has forgot their password. Reset token: {token}")
|
|
|
|
async def on_after_request_verify(
|
|
self, user: User, token: str, request: Request | None = None
|
|
):
|
|
print(f"Verification requested for user {user.id}. Verification token: {token}")
|
|
|
|
|
|
async def get_user_manager(user_db: SQLAlchemyUserDatabase = Depends(get_user_db)):
|
|
yield UserManager(user_db)
|
|
|
|
|
|
def get_jwt_strategy() -> JWTStrategy[models.UP, models.ID]:
|
|
return JWTStrategy(secret=SECRET, lifetime_seconds=3600 * 24)
|
|
|
|
|
|
# # COOKIE AUTH | Uncomment if you want to use cookie auth.
|
|
# from fastapi_users.authentication import (
|
|
# CookieTransport,
|
|
# )
|
|
# class CustomCookieTransport(CookieTransport):
|
|
# async def get_login_response(self, token: str) -> Response:
|
|
# response = RedirectResponse(config.OAUTH_REDIRECT_URL, status_code=302)
|
|
# return self._set_login_cookie(response, token)
|
|
|
|
# cookie_transport = CustomCookieTransport(
|
|
# cookie_max_age=3600,
|
|
# )
|
|
|
|
# auth_backend = AuthenticationBackend(
|
|
# name="jwt",
|
|
# transport=cookie_transport,
|
|
# get_strategy=get_jwt_strategy,
|
|
# )
|
|
|
|
|
|
# BEARER AUTH CODE.
|
|
class CustomBearerTransport(BearerTransport):
|
|
async def get_login_response(self, token: str) -> Response:
|
|
bearer_response = BearerResponse(access_token=token, token_type="bearer")
|
|
redirect_url = f"{config.NEXT_FRONTEND_URL}/auth/callback?token={bearer_response.access_token}"
|
|
if config.AUTH_TYPE == "GOOGLE":
|
|
return RedirectResponse(redirect_url, status_code=302)
|
|
else:
|
|
return JSONResponse(model_dump(bearer_response))
|
|
|
|
|
|
bearer_transport = CustomBearerTransport(tokenUrl="auth/jwt/login")
|
|
|
|
|
|
auth_backend = AuthenticationBackend(
|
|
name="jwt",
|
|
transport=bearer_transport,
|
|
get_strategy=get_jwt_strategy,
|
|
)
|
|
|
|
fastapi_users = FastAPIUsers[User, uuid.UUID](get_user_manager, [auth_backend])
|
|
|
|
current_active_user = fastapi_users.current_user(active=True)
|