-
Notifications
You must be signed in to change notification settings - Fork 364
/
admin.py
70 lines (50 loc) · 1.78 KB
/
admin.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
from app.db import Session, crud, get_db
from app.utils.jwt import get_admin_payload
from config import SUDOERS
from fastapi import Depends, HTTPException, status
from fastapi.security import OAuth2PasswordBearer
from passlib.context import CryptContext
from pydantic import BaseModel
pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
oauth2_scheme = OAuth2PasswordBearer(tokenUrl="/api/admin/token") # Admin view url
class Token(BaseModel):
access_token: str
token_type: str = "bearer"
class Admin(BaseModel):
username: str
is_sudo: bool = False
class Config:
orm_mode = True
@classmethod
def get_current(cls,
db: Session = Depends(get_db),
token: str = Depends(oauth2_scheme)):
exc = HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Could not validate credentials",
headers={"WWW-Authenticate": "Bearer"},
)
payload = get_admin_payload(token)
if not payload:
raise exc
if payload['username'] in SUDOERS and payload['is_sudo'] is True:
return cls(username=payload['username'], is_sudo=True)
dbadmin = crud.get_admin(db, payload['username'])
if not dbadmin:
raise exc
return cls.from_orm(dbadmin)
class AdminCreate(Admin):
password: str
@property
def hashed_password(self):
return pwd_context.hash(self.password)
class AdminModify(BaseModel):
password: str
@property
def hashed_password(self):
return pwd_context.hash(self.password)
class AdminInDB(Admin):
username: str
hashed_password: str
def verify_password(self, plain_password):
return pwd_context.verify(plain_password, self.hashed_password)