boris/keywarden
1
1
Fork 0
Code Issues 5 Pull Requests Actions Packages Projects 1 Releases Wiki Activity
Files
c93f0ccda6041a07f90b1243fb7c2a055125c3b1
keywarden/app/api/deps.py
boris f04b04339f
Some checks failed
CI / Lint & Format (push) Has been cancelled
Details
CI / Tests (Pytest + Alembic + Postgres) (push) Has been cancelled
Details
CI / Docker Build (push) Has been cancelled
Details
Linted .py files
2025-09-22 20:34:29 +01:00

35 lines
1.4 KiB
Python
Raw Blame History

# ruff was driving me crazy with imported not used, noqa on all of these..
from fastapi import Depends, HTTPException, status # noqa: F401
from fastapi.security import HTTPBearer # noqa: F401
from jose import JWTError, jwt # noqa: F401
from sqlalchemy import select # noqa: F401
from sqlalchemy.ext.asyncio import AsyncSession # noqa: F401
from app.core.config import settings # noqa: F401
from app.db.session import get_session # noqa: F401
from app.models.user import User # noqa: F401
bearer = HTTPBearer()
async def get_db() -> AsyncSession:
async for s in get_session():
yield s
async def get_current_user(token=Depends(bearer), db: AsyncSession = Depends(get_db)) -> User:
try:
payload = jwt.decode(token.credentials, settings.SECRET_KEY, algorithms=["HS256"])
email: str = payload.get("sub")
except JWTError:
raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid token")
res = await db.execute(select(User).where(User.email == email))
user = res.scalar_one_or_none()
if not user:
raise HTTPException(status_code=401, detail="User not found")
return user
def require_role(*roles: str):
async def _dep(user: User = Depends(get_current_user)):
if user.role not in roles:
raise HTTPException(status_code=403, detail="Insufficient role")
return user
return _dep
Reference in New Issue View Git Blame Copy Permalink