In [1]:
from pydantic import BaseModel

# Concepts

#### Models

In [2]:
class User(BaseModel):
    id: int
    name: str = "Jane Doe"

In [3]:
user = User(id=123)

In [9]:
assert user.id == 123
assert isinstance(user.id, int)

In [1]:
from app.repositories.user import db_users

ModuleNotFoundError: No module named 'repositories'

In [4]:
from datetime import datetime, timedelta, timezone
from typing import Annotated, Union

from fastapi import Depends, FastAPI, HTTPException, status
from fastapi.security import OAuth2PasswordBearer, OAuth2PasswordRequestForm
from jose import JWTError, jwt
from passlib.context import CryptContext
from pydantic import BaseModel

SECRET_KEY = "b25bd304b1ebbe36279d095e794ea1608baf376e0e621ae1685ff8e6c58518cb"
ALGORITHM = "HS256"
ACCESS_TOKEN_EXPIRE_MINUTES = 30

pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")



fake_users_db = {
    "johndoe": {
        "username": "johndoe",
        "full_name": "John Doe",
        "email": "johndoe@example.com",
        "hashed_password": "$2b$12$EixZaYVK1fsbw1ZfbX3OXePaWxn96p36WQoeG6Lruj3vjPGga31lW",
        "disabled": False,
    }
}

class User(BaseModel):
    username: str
    email: Union[str, None] = None
    full_name: Union[str, None] = None
    disabled: Union[bool, None] = None


class UserInDB(User):
    hashed_password: str

def get_user(db, username: str):
    if username in db:
        user_dict = db[username]
        return UserInDB(**user_dict) 

def create_access_token(data: dict, expires_delta: Union[timedelta, None] = None):
    to_encode = data.copy()
    if expires_delta:
        expire = datetime.now(timezone.utc) + expires_delta
    else:
        expire = datetime.now(timezone.utc) + timedelta(minutes=15)
    to_encode.update(
        {"exp": expire}
    )
    encode_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
    return encode_jwt

In [7]:
user = get_user(fake_users_db, "johndoe")
user

UserInDB(username='johndoe', email='johndoe@example.com', full_name='John Doe', disabled=False, hashed_password='$2b$12$EixZaYVK1fsbw1ZfbX3OXePaWxn96p36WQoeG6Lruj3vjPGga31lW')

In [8]:
def verify_password(plain_password, hashed_password):
    return pwd_context.verify(plain_password, hashed_password)

In [9]:
verify_password("secret", user.hashed_password)
user

UserInDB(username='johndoe', email='johndoe@example.com', full_name='John Doe', disabled=False, hashed_password='$2b$12$EixZaYVK1fsbw1ZfbX3OXePaWxn96p36WQoeG6Lruj3vjPGga31lW')

In [10]:
access_token_expires = timedelta(minutes=30)

In [11]:
access_token_expires

datetime.timedelta(seconds=1800)

In [12]:
# create access token
access_token = create_access_token(
    data={"sub": user.username}, expires_delta=access_token_expires
)

In [13]:
access_token

'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJqb2huZG9lIiwiZXhwIjoxNzA5MjY2NzUwfQ.qkR-xQhKYTWopY6N3kipA_PMaqL86slXiwvtF9bdfHk'

## Breakdown create_access_token function

In [37]:
# data --> user that was check and verify in db
# access token expires

data = {"sub": user.username}
to_encode = data.copy()
if access_token_expires:
    print(True)

True


In [38]:
expire = datetime.now(timezone.utc) + access_token_expires

In [39]:
expire

datetime.datetime(2024, 3, 1, 7, 2, 42, 976570, tzinfo=datetime.timezone.utc)

In [40]:
to_encode.update({"exp": expire})

In [41]:
to_encode

{'sub': 'johndoe',
 'exp': datetime.datetime(2024, 3, 1, 7, 2, 42, 976570, tzinfo=datetime.timezone.utc)}

In [2]:
## encode jwt
from jose import jwt
#encode_jwt = jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
#type(encode_jwt)

In [48]:

decode_jwt = jwt.decode(encode_jwt, SECRET_KEY, algorithms=[ALGORITHM])
decode_jwt

{'sub': 'johndoe', 'exp': 1709276562}

## Breakdown Get current user

In [33]:
from fastapi.security import OAuth2PasswordBearer

oauth2_scheme = OAuth2PasswordBearer(tokenUrl="token")
oauth2_scheme

<fastapi.security.oauth2.OAuth2PasswordBearer at 0x7ff7d20afc10>

In [6]:
grit = 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiJncml0aGFxIiwiZXhwIjoxNzA5Mzg1NDU2fQ.2TYEq5SWt4IntNQ64QnsnCKmSofpaOO10M24xSHhZOI'
secret_key = SECRET_KEY
algorithm = ALGORITHM

payload = jwt.decode(grit, SECRET_KEY, algorithms=[ALGORITHM])
payload

{'sub': 'grithaq', 'exp': 1709385456}

In [8]:
username: str = payload.get('sub')
username

'grithaq'

In [1]:
from jose import jwt

In [None]:
payload