In [None]:
from flask import Flask, request, jsonify, make_response
from flask_sqlalchemy import SQLAlchemy
from flask_bcrypt import Bcrypt
import jwt
import datetime
from functools import wraps

app = Flask(__name__)

app.config['SECRET_KEY'] = 'thisissecret'
app.config['SQLALCHEMY_DATABASE_URI'] = app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///table.db'
bcrypt = Bcrypt(app)
db = SQLAlchemy(app)

class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(50))
    password = db.Column(db.String(80))
    admin = db.Column(db.Boolean)

def token_required(f):
    @wraps(f)
    def decorated(*args, **kwargs):
        token = None

        if 'x-access-token' in request.headers:
            token = request.headers['x-access-token']

        if not token:
            return jsonify({'message' : 'Token is missing!'}), 401

        try: 
            data = jwt.decode(token, app.config['SECRET_KEY'])
            current_user = User.query.filter_by(id=data['id']).first()
        except:
            return jsonify({'message' : 'Token is invalid!'}), 401

        return f(current_user, *args, **kwargs)

    return decorated

@app.route('/user', methods=['GET'])
@token_required
def get_all_users(current_user):
#def get_all_users():

    if not current_user.admin:
        return jsonify({'message' : 'Cannot perform that function!'})

    users = User.query.all()

    output = []

    for user in users:
        user_data = {}
        user_data['name'] = user.name
        user_data['password'] = str(user.password)
        user_data['admin'] = user.admin
        output.append(user_data)

    return jsonify({'users' : output})

@app.route('/user/<id>', methods=['GET'])
@token_required
def get_one_user(current_user, id):

    if not current_user.admin:
        return jsonify({'message' : 'Cannot perform that function!'})

    user = User.query.filter_by(id=id).first()

    if not user:
        return jsonify({'message' : 'No user found!'})

    user_data = {}
    user_data['id'] = user.id
    user_data['name'] = user.name
    user_data['password'] = user.password
    user_data['admin'] = user.admin

    return jsonify({'user' : user_data})

@app.route('/register', methods=['POST'])
def register():
    data = request.get_json()
    hashed_password = bcrypt.generate_password_hash(data['password'])
    new_user = User(name=data['name'], password=hashed_password, admin=False)
    db.session.add(new_user)
    db.session.commit()
    return jsonify({'message' : 'Registration completed!'})

@app.route('/user/<id>', methods=['POST'])
@token_required
def create_user(current_user, id):
    if not current_user.admin:
        return jsonify({'message' : 'Cannot perform that function!'}) 
    data = request.get_json()
    hashed_password = bcrypt.generate_password_hash(data['password'])
    new_user = User(name=data['name'], password=hashed_password, admin=False)
    db.session.add(new_user)
    db.session.commit()
    return jsonify({'message' : 'New user created!'})

@app.route('/user/<id>', methods=['PUT'])
@token_required
def promote_user(current_user, id):
    print(current_user)
    if not current_user.admin:
        return jsonify({'message' : 'Cannot perform that function!'})

    user = User.query.filter_by(id=id).first()

    if not user:
        return jsonify({'message' : 'No user found!'})

    user.admin = True
    db.session.commit()

    return jsonify({'message' : 'The user has been promoted!'})

@app.route('/user/<id>', methods=['DELETE'])
@token_required
def delete_user(current_user, id):
    if not current_user.admin:
           return jsonify({'message' : 'Cannot perform that function!'})

    user = User.query.filter_by(id=id).first()

    if not user:
        return jsonify({'message' : 'No user found!'})

    db.session.delete(user)
    db.session.commit()

    return jsonify({'message' : 'The user has been deleted!'})

@app.route('/login')
def login():
    auth = request.authorization

    if not auth or not auth.username or not auth.password:
        return make_response('Could not verify', 401, {'WWW-Authenticate' : 'Basic realm="Login required!"'})

    user = User.query.filter_by(name=auth.username).first()

    if not user:
        return make_response('Could not verify', 401, {'WWW-Authenticate' : 'Basic realm="Login required!"'})

    if bcrypt.check_password_hash(user.password, auth.password):
        token = jwt.encode({'id' : user.id, 'exp' : datetime.datetime.utcnow() + datetime.timedelta(minutes=30)}, app.config['SECRET_KEY'])

        return jsonify({'token' : token.decode('UTF-8')})

    return make_response('Could not verify', 401, {'WWW-Authenticate' : 'Basic realm="Login required!"'})

if __name__ == '__main__':
    app.run('localhost', port=9021)

 * Serving Flask app "__main__" (lazy loading)
 * Environment: production
[2m   Use a production WSGI server instead.[0m
 * Debug mode: off


 * Running on http://localhost:9021/ (Press CTRL+C to quit)
127.0.0.1 - - [18/Jan/2022 10:13:05] "[31m[1mGET /login HTTP/1.1[0m" 401 -
127.0.0.1 - - [18/Jan/2022 10:13:21] "[31m[1mGET /login HTTP/1.1[0m" 401 -
127.0.0.1 - - [18/Jan/2022 10:14:46] "[31m[1mGET /login HTTP/1.1[0m" 401 -
127.0.0.1 - - [18/Jan/2022 10:15:40] "[37mGET /login HTTP/1.1[0m" 200 -
127.0.0.1 - - [18/Jan/2022 10:16:41] "[37mGET /user HTTP/1.1[0m" 200 -


<class 'str'>
<class 'str'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'str'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'bytes'>


127.0.0.1 - - [18/Jan/2022 10:18:32] "[31m[1mPOST /user HTTP/1.1[0m" 405 -
127.0.0.1 - - [18/Jan/2022 10:18:51] "[37mPOST /register HTTP/1.1[0m" 200 -
127.0.0.1 - - [18/Jan/2022 10:20:58] "[37mGET /user HTTP/1.1[0m" 200 -


<class 'str'>
<class 'str'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'str'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'bytes'>
<class 'str'>
<class 'bytes'>


127.0.0.1 - - [18/Jan/2022 10:23:30] "[37mPUT /user/5 HTTP/1.1[0m" 200 -


<User 8>


127.0.0.1 - - [18/Jan/2022 10:26:07] "[37mDELETE /user/7 HTTP/1.1[0m" 200 -
