fooder-api/fooder/controller/token.py

from fastapi import HTTPException
from fastapi.security import OAuth2PasswordRequestForm

from ..auth import (
    authenticate_user,
    create_access_token,
    create_refresh_token,
    verify_refresh_token,
)
from ..domain.user import User as DBUser
from ..model.token import RefreshTokenPayload, Token
from .base import BaseController


class CreateToken(BaseController):
    async def call(self, content: OAuth2PasswordRequestForm) -> Token:
        async with self.async_session.begin() as session:
            user = await authenticate_user(session, content.username, content.password)

            if user is None:
                raise HTTPException(
                    status_code=401, detail="Invalid username or password"
                )

            refresh_token = await create_refresh_token(session, user)
            access_token = create_access_token(user)

            return Token(
                access_token=access_token,
                refresh_token=refresh_token.token,
                token_type="bearer",
            )


class RefreshToken(BaseController):
    async def call(self, content: RefreshTokenPayload) -> Token:
        async with self.async_session.begin() as session:
            current_token = await verify_refresh_token(session, content.refresh_token)

            if current_token is None:
                raise HTTPException(status_code=401, detail="Invalid token")

            user = await DBUser.get(session, current_token.user_id)

            if user is None:
                raise HTTPException(status_code=401, detail="Invalid token")

            assert user is not None
            await current_token.delete(session)

            refresh_token = await create_refresh_token(session, user)
            access_token = create_access_token(user)

            return Token(
                access_token=access_token,
                refresh_token=refresh_token.token,
                token_type="bearer",
            )
[flake8] fix all the issues and include config 2024-05-17 15:23:35 +02:00			`from fastapi import HTTPException`
initial push 2023-04-01 16:19:12 +02:00			`from fastapi.security import OAuth2PasswordRequestForm`

add refresh tokens 2023-04-02 14:38:22 +02:00			`from ..auth import (`
			`authenticate_user,`
			`create_access_token,`
			`create_refresh_token,`
			`verify_refresh_token,`
			`)`
[isort] ran with black profile 2024-08-04 16:17:16 +02:00			`from ..domain.user import User as DBUser`
			`from ..model.token import RefreshTokenPayload, Token`
			`from .base import BaseController`
initial push 2023-04-01 16:19:12 +02:00

			`class CreateToken(BaseController):`
			`async def call(self, content: OAuth2PasswordRequestForm) -> Token:`
add refresh tokens 2023-04-02 14:38:22 +02:00			`async with self.async_session.begin() as session:`
initial push 2023-04-01 16:19:12 +02:00			`user = await authenticate_user(session, content.username, content.password)`

			`if user is None:`
			`raise HTTPException(`
			`status_code=401, detail="Invalid username or password"`
			`)`

add refresh tokens 2023-04-02 14:38:22 +02:00			`refresh_token = await create_refresh_token(session, user)`
initial push 2023-04-01 16:19:12 +02:00			`access_token = create_access_token(user)`

			`return Token(`
			`access_token=access_token,`
add refresh tokens 2023-04-02 14:38:22 +02:00			`refresh_token=refresh_token.token,`
			`token_type="bearer",`
			`)`


			`class RefreshToken(BaseController):`
			`async def call(self, content: RefreshTokenPayload) -> Token:`
			`async with self.async_session.begin() as session:`
add refresh tokens 2023-04-02 15:20:53 +02:00			`current_token = await verify_refresh_token(session, content.refresh_token)`
add refresh tokens 2023-04-02 14:38:22 +02:00
add refresh tokens 2023-04-02 15:20:53 +02:00			`if current_token is None:`
add refresh tokens 2023-04-02 14:38:22 +02:00			`raise HTTPException(status_code=401, detail="Invalid token")`

add refresh tokens 2023-04-02 15:20:53 +02:00			`user = await DBUser.get(session, current_token.user_id)`
[mypy] fixed all and added github action 2024-05-21 15:18:03 +02:00
			`if user is None:`
			`raise HTTPException(status_code=401, detail="Invalid token")`

			`assert user is not None`
add refresh tokens 2023-04-02 15:20:53 +02:00			`await current_token.delete(session)`

add refresh tokens 2023-04-02 14:38:22 +02:00			`refresh_token = await create_refresh_token(session, user)`
			`access_token = create_access_token(user)`

			`return Token(`
			`access_token=access_token,`
			`refresh_token=refresh_token.token,`
initial push 2023-04-01 16:19:12 +02:00			`token_type="bearer",`
			`)`