✨ Update all for Postgres and new techniques

2019-02-23 18:44:29 +04:00
parent 1b4d244033
commit 6fdba19639
72 changed files with 793 additions and 1316 deletions
--- a/{{cookiecutter.project_slug}}/backend/app/app/api/utils/security.py
+++ b/{{cookiecutter.project_slug}}/backend/app/app/api/utils/security.py
@@ -0,0 +1,30 @@
+import jwt
+from fastapi import Depends, HTTPException, Security
+from fastapi.security import OAuth2PasswordBearer
+from jwt import PyJWTError
+from sqlalchemy.orm import Session
+from starlette.status import HTTP_403_FORBIDDEN
+
+from app.api.utils.db import get_db
+from app.core import config
+from app.core.jwt import ALGORITHM
+from app.crud import user as crud_user
+from app.models.token import TokenPayload
+
+reusable_oauth2 = OAuth2PasswordBearer(tokenUrl="/api/v1/login/access-token")
+
+
+def get_current_user(
+    db: Session = Depends(get_db), token: str = Security(reusable_oauth2)
+):
+    try:
+        payload = jwt.decode(token, config.SECRET_KEY, algorithms=[ALGORITHM])
+        token_data = TokenPayload(**payload)
+    except PyJWTError:
+        raise HTTPException(
+            status_code=HTTP_403_FORBIDDEN, detail="Could not validate credentials"
+        )
+    user = crud_user.get(db, user_id=token_data.user_id)
+    if not user:
+        raise HTTPException(status_code=404, detail="User not found")
+    return user