ns.potapov/piaps-course-work-university
1
0
Fork 0
Code Issues Pull Requests Actions Packages Releases Activity
Files
37c19bc42523a60fd342dc18d630fe63895269e4
piaps-course-work-university/backend/app/auth/utils.py
Никита Потапов 57ebddee03 nspotapov/add-frontend (#2) 
Reviewed-on: /ns.potapov/piaps-course-work-university/pulls/2
2025-06-10 10:44:51 +04:00

71 lines
2.0 KiB
Python
Raw Blame History

from passlib.context import CryptContext
from jose import jwt
from datetime import datetime, timedelta, timezone
from fastapi.responses import Response
from app.config import settings
def create_tokens(data: dict) -> dict:
# Текущее время в UTC
now = datetime.now(timezone.utc)
# AccessToken - 30 минут
access_expire = now + timedelta(minutes=30)
access_payload = data.copy()
access_payload.update({"exp": int(access_expire.timestamp()), "type": "access"})
access_token = jwt.encode(
access_payload, settings.SECRET_KEY, algorithm=settings.ALGORITHM
)
# RefreshToken - 7 дней
refresh_expire = now + timedelta(days=7)
refresh_payload = data.copy()
refresh_payload.update({"exp": int(refresh_expire.timestamp()), "type": "refresh"})
refresh_token = jwt.encode(
refresh_payload, settings.SECRET_KEY, algorithm=settings.ALGORITHM
)
return {"access_token": access_token, "refresh_token": refresh_token}
async def authenticate_user(user, password):
if (
not user
or verify_password(plain_password=password, hashed_password=user.password)
is False
):
return None
return user
def set_tokens(response: Response, user_id: int):
new_tokens = create_tokens(data={"sub": str(user_id)})
access_token = new_tokens.get("access_token")
refresh_token = new_tokens.get("refresh_token")
response.set_cookie(
key="user_access_token",
value=access_token,
httponly=True,
secure=True,
samesite="lax",
)
response.set_cookie(
key="user_refresh_token",
value=refresh_token,
httponly=True,
secure=True,
samesite="lax",
)
pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
def get_password_hash(password: str) -> str:
return pwd_context.hash(password)
def verify_password(plain_password: str, hashed_password: str) -> bool:
return pwd_context.verify(plain_password, hashed_password)
Reference in New Issue View Git Blame Copy Permalink