mirror/AudioBookRequest
1
0
Fork 0
mirror of https://github.com/markbeep/AudioBookRequest.git synced 2026-02-19 13:08:52 -06:00
Code Issues Packages Projects Releases Wiki Activity
Files
9982ff0e90bd1f8536ed8e211e484c20e54ee875
AudioBookRequest/app/util/auth.py
Markbeep 9982ff0e90 redo/add search page
2025-02-16 13:41:53 +01:00

55 lines
1.4 KiB
Python
Raw Blame History

from typing import Annotated, Literal
from argon2 import PasswordHasher
from argon2.exceptions import VerifyMismatchError
from fastapi import Depends, HTTPException
from fastapi.security import HTTPBasic, HTTPBasicCredentials
from sqlmodel import Session, select
from app.db import get_session
from app.models import User
security = HTTPBasic()
ph = PasswordHasher()
def create_user(
username: str,
password: str,
group: Literal["admin", "trusted", "untrusted"] = "untrusted",
) -> User:
password_hash = ph.hash(password)
return User(username=username, password=password_hash, group=group)
def get_user(
session: Annotated[Session, Depends(get_session)],
credentials: Annotated[HTTPBasicCredentials, Depends(security)],
) -> User:
user = session.exec(
select(User).where(User.username == credentials.username)
).one_or_none()
if not user:
raise HTTPException(
status_code=401,
detail="Invalid credentials",
headers={"WWW-Authenticate": "Basic"},
)
try:
ph.verify(user.password, credentials.password)
except VerifyMismatchError:
raise HTTPException(
status_code=401,
detail="Invalid credentials",
headers={"WWW-Authenticate": "Basic"},
)
if ph.check_needs_rehash(user.password):
user.password = ph.hash(credentials.password)
session.add(user)
session.commit()
return user
Reference in New Issue View Git Blame Copy Permalink