o ̿Siv#@sXddlmZmZmZmZmZddlmZmZddl m Z ddl m Z ddl m Z mZddlZzddlZeedsCGdd d Zee_Wn eyMYnwdd lmZddlZddlZdd lmZdd lmZdd lm Z ddl!Z!ddl"m#Z#ddl$m%Z%m&Z&m'Z'e#eZ(edgddZ)e!j*+dZ,dZ-dZ.dZ/eddZ0e1e2Z3GdddeZ4GdddeZ5GdddeZ6d=d e7d!efd"d#Z8d$e9d%e j:d&e7fd'd(Z;ee j<fd)ed%e j:fd*d+Z=d)efd,d-Z>ee0fd$e9fd.d/Z?ee?fd0e@d1e7fd2d3ZAdee?fd4e@d1e7fd5d6ZBee?fd1e7fd7d8ZCGd9d:d:eZDGd;d<d)Depends HTTPExceptionstatusRequest APIRouter) BaseModelEmailStr)database) get_database)datetime timedeltaN __about__c@seZdZeeddZdS)_About __version__0N)__name__ __module__ __qualname__getattr_bcryptrrr6/var/www/html/Trade-python/app/v1/dependencies/auth.pyrsr) CryptContext)OAuth2PasswordBearer)BaseHTTPMiddleware)Response) load_dotenv)PROTECTED_ROUTESUNPROTECTED_ROUTESOPEN_CORS_ROUTESbcryptauto)schemes deprecatedJWT_SECRET_KEYHS256usersz /auth/login)tokenUrlc@seZdZUeed<eed<dS) UserLoginemailpasswordN)rrrr__annotations__strrrrrr*/  r*c@seZdZUeed<eed<dS)Token access_token token_typeNrrrr.r-rrrrr03r/r0c@seZdZUeed<dS) TokenDatar+Nr3rrrrr47s r4data expires_deltacCsN|}|r t|}n tttd}|d|itj|tt d}|S)N)hoursexp) algorithm) copyr utcnowr TOKEN_EXPIRE_HOURSupdatepyjwtencode SECRET_KEY ALGORITHM)r5r6 to_encodeexpire encoded_jwtrrrcreate_access_token;srEtokendbreturncCsztj|ttgddid}|d}|durttjddWntjy-ttjddw|t  d|i}t |d |d <|durJttj d d|S) N verify_expT) algorithmsoptionssubCould not validate credentials status_codedetailz3Could not validate credentials or token has expiredr+_ididzUser not found) r>decoder@rAgetrrHTTP_401_UNAUTHORIZEDInvalidSignatureErrorCOLLECTION_NAMEfind_oner.HTTP_404_NOT_FOUND)rFrGpayloadr+userrrr verify_tokenFs r\requestcCst|jj|}||j_|jjSN)r\staterF current_user)r]rGr[rrrget_current_userdetailsWsracCs|jjSr^)r_r`)r]rrrget_current_userdetails_old\srbcCsNttjdddid}ztj|ttgd}|d}|dur|W|S|)NrMzWWW-AuthenticateBearer)rOrPheaders)rJrL)rrrUr>rSr@rArT)rFcredentials_exceptionrZr+rrrget_current_user_s rf account_idr`cCs|d|kr ttjdd|S)NrgzNo access to this account datarN)rrrU)rgr`rrrget_current_user_within_accountps rh required_rolecCs$|dd}||krtddd|S)Nroler$Access forbidden. Insufficient role.rNrTr)rir` user_rolerrrhas_permissionxs  rocCs(d}|dd}||krtddd|S)NrrjrrkrlrNrm)r`rirnrrrhas_superadmin_permissions   rpc@s4eZdZdefddZedededefddZd S) AuthMiddlewarer]csnttjr(ztjp id}tdjj j |Wn t y'Ynwt fddt Dr`j dkrIjdddd d }t|d S|IdH}jd|jd <d|jd <|St fddtDru|IdH}|St fddtDrjd}|stdttjdd|r|dr|dd}nttjdd|j_|IdH}|S)N Authorizationz=AuthMiddleware request | path=%s method=%s has_auth_cookie=%sc3 |] }jj|VqdSr^path_matches_routeurlpath.0router]selfrr z*AuthMiddleware.dispatch..OPTIONSOrigintruezPOST, GET, DELETE, PUT, OPTIONSzAuthorization, Content-Type)Access-Control-Allow-Origin Access-Control-Allow-CredentialszAccess-Control-Allow-MethodszAccess-Control-Allow-Headers)rdrrc3rsr^rtrxr{rrr}r~c3rsr^rtrxr{rrr}r~Token not present in requestz Token is not thererNBearer Access is denied)logger isEnabledForloggingDEBUGboolcookiesrTdebugrvrwmethod Exceptionanyr rdrrrerrorrrrU startswithr_rF)r|r] call_nexthas_auth_cookierdresponserFrr{rdispatchsD        zAuthMiddleware.dispatchrw route_patternrHcCs |ddd}tt||S)N*z.*$)replacerrematch)rwrpatternrrrrusz!AuthMiddleware.path_matches_routeN) rrrrr staticmethodr.rrurrrrrqs4rqc@seZdZdefddZdS)AuthMiddleware_newr]cstfddtDr|IdH}|StfddtDrgjd}|s6tdttj dd|rD| drD|d d}nttj d dz t |t }|j_Wntyfttj d dw|IdH}|S) Nc3rsr^rtrxr{rrr}r~z2AuthMiddleware_new.dispatch_new..c3rsr^rtrxr{rrr}r~rrrzToken is not thererNrrr)rrrrdrTrrrrrUrr\r get_mongo_dbr_r`)r|r]rrrFr[rr{r dispatch_news(    zAuthMiddleware_new.dispatch_newN)rrrrrrrrrrsrr^)Ffastapirrrrrpydanticrrapp.dbr app.db.database_staticr r r rr!rhasattrrr rpasslib.contextrrjwtr>fastapi.securityrstarlette.middleware.baserstarlette.responsesrosdotenvrroutesrrr router pwd_contextenvironrTr@rAr<rW oauth2_scheme getLoggerrrr*r0r4dictrEr.MongoDBr\rrarbrfintrhrorprqrrrrrs\             ;