# Connect to MongoDB Atlas

In [1]:
from pymongo import MongoClient
import datetime
from bson.json_util import dumps
import json
from dotenv import load_dotenv
import os


In [2]:
# Get the env variables from .env file
load_dotenv()
JWT_DURATION = os.getenv('JWT_DURATION')
JWT_SECRET = os.getenv('JWT_SECRET')
MONGODB_SRV = os.getenv('MONGODB_SRV')


In [4]:
# Set up connection to database called "dev"
client = MongoClient(MONGODB_SRV)

In [5]:
# Get database object and collection object
db = client.dev
collection = db.users

# Bcrypt

In [6]:
import bcrypt

In [7]:
# test data to mock a request
username = "testuser"
password = 'C4w2U4b9'

# create hashed password
passwdBytes = bytes(password, encoding='utf-8')  # Unicode-objects must be encoded before hasing
salt = bcrypt.gensalt()
hashed = bcrypt.hashpw(passwdBytes, salt)

print(bcrypt.checkpw(password.encode(encoding='UTF-8',errors='strict'), hashed))

print(salt)
print(hashed)

True
b'$2b$12$R59Mi8CBsTeLR2N4aAZBe.'
b'$2b$12$R59Mi8CBsTeLR2N4aAZBe.6mw9Xq1EltbriHFQEQxs/Fnv53F0wBq'


In [8]:
# store to database
newUser = {
    "name": username,
    "password": hashed
}
_id = collection.insert_one(newUser).inserted_id
print(_id)


60a426f305006e13337df86f


In [9]:
# Check if user exists, fonudDoc is set to None if no document containing username exists
user = collection.find_one({"name" : username})
print(user["name"])

testuser


In [10]:
# Count documents of collection
print(collection.estimated_document_count())

15


# Jason Web Token (JWT)

In [11]:
import jwt

In [12]:
# Encode to a JWT
encoded = jwt.encode({'id': str(_id), 'username': username, "exp":datetime.datetime.utcnow() + datetime.timedelta(seconds=int(JWT_DURATION))}, JWT_SECRET, algorithm = 'HS256')
print(encoded)

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6IjYwYTQyNmYzMDUwMDZlMTMzMzdkZjg2ZiIsInVzZXJuYW1lIjoidGVzdHVzZXIiLCJleHAiOjE2MjE0NTcwMTJ9.co7YDNqqgOELZH49HXn6QI1k60EPmunxQd-rS_AmKvg


In [13]:
# Decode a JWT, this also serves as verification
try:
    decoded = jwt.decode(encoded, JWT_SECRET, algorithms=['HS256'])
except Exception as err:  # there could be in valid signature or expire exception
    # Signature has expired
    print("err")
print(decoded)

{'id': '60a426f305006e13337df86f', 'username': 'testuser', 'exp': 1621457012}
