backend/app/api/deps.py

from collections.abc import Generator
from typing import Annotated

from fastapi import Depends, HTTPException, status
from fastapi.security import OAuth2PasswordBearer
from jose import JWTError, jwt
from pydantic import ValidationError
from sqlmodel import Session

from app.core import security
from app.core.config import settings
from app.core.db import engine
from app.models import TokenPayload, User

reusable_oauth2 = OAuth2PasswordBearer(
    tokenUrl=f"{settings.API_V1_STR}/login/access-token"
)


def get_db() -> Generator[Session, None, None]:
    with Session(engine) as session:
        yield session


SessionDep = Annotated[Session, Depends(get_db)]
TokenDep = Annotated[str, Depends(reusable_oauth2)]


def get_current_user(session: SessionDep, token: TokenDep) -> User:
    try:
        payload = jwt.decode(
            token, settings.SECRET_KEY, algorithms=[security.ALGORITHM]
        )
        token_data = TokenPayload(**payload)
    except (JWTError, ValidationError):
        raise HTTPException(
            status_code=status.HTTP_403_FORBIDDEN,
            detail="Could not validate credentials",
        )
    user = session.get(User, token_data.sub)
    if not user:
        raise HTTPException(status_code=404, detail="User not found")
    if not user.is_active:
        raise HTTPException(status_code=400, detail="Inactive user")
    return user


CurrentUser = Annotated[User, Depends(get_current_user)]


def get_current_active_superuser(current_user: CurrentUser) -> User:
    if not current_user.is_superuser:
        raise HTTPException(
            status_code=400, detail="The user doesn't have enough privileges"
        )
    return current_user
🎨 Format files with pre-commit and Ruff (#611 ) 2024-02-25 19:39:33 +01:00			`from collections.abc import Generator`
			`from typing import Annotated`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00
			`from fastapi import Depends, HTTPException, status`
			`from fastapi.security import OAuth2PasswordBearer`
♻️ Refactor email logic to allow re-using util functions for testing and development (#663 ) 2024-03-10 00:02:36 +01:00			`from jose import JWTError, jwt`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00			`from pydantic import ValidationError`
♻️ Refactor Users API and dependencies (#561 ) 2023-11-29 12:13:15 -05:00			`from sqlmodel import Session`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00
			`from app.core import security`
			`from app.core.config import settings`
♻ Refactor Python folder tree (#629 ) 2024-03-02 05:01:59 -05:00			`from app.core.db import engine`
♻️ Refactor Users API and dependencies (#561 ) 2023-11-29 12:13:15 -05:00			`from app.models import TokenPayload, User`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00
			`reusable_oauth2 = OAuth2PasswordBearer(`
			`tokenUrl=f"{settings.API_V1_STR}/login/access-token"`
			`)`


🏷️ Add mypy to the GitHub Action for tests and fixed types in the whole project (#655 ) 2024-03-10 14:47:21 -05:00			`def get_db() -> Generator[Session, None, None]:`
✨ Adopt SQLModel, create models, start using it (#559 ) 2023-11-25 00:08:22 +01:00			`with Session(engine) as session:`
			`yield session`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00

♻️ Refactor Users API and dependencies (#561 ) 2023-11-29 12:13:15 -05:00			`SessionDep = Annotated[Session, Depends(get_db)]`
			`TokenDep = Annotated[str, Depends(reusable_oauth2)]`


			`def get_current_user(session: SessionDep, token: TokenDep) -> User:`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00			`try:`
			`payload = jwt.decode(`
			`token, settings.SECRET_KEY, algorithms=[security.ALGORITHM]`
			`)`
♻️ Refactor Users API and dependencies (#561 ) 2023-11-29 12:13:15 -05:00			`token_data = TokenPayload(**payload)`
♻️ Refactor email logic to allow re-using util functions for testing and development (#663 ) 2024-03-10 00:02:36 +01:00			`except (JWTError, ValidationError):`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00			`raise HTTPException(`
			`status_code=status.HTTP_403_FORBIDDEN,`
			`detail="Could not validate credentials",`
			`)`
♻️ Refactor Users API and dependencies (#561 ) 2023-11-29 12:13:15 -05:00			`user = session.get(User, token_data.sub)`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00			`if not user:`
			`raise HTTPException(status_code=404, detail="User not found")`
✨ Update code for login API (#571 ) 2023-12-27 19:06:47 +01:00			`if not user.is_active:`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00			`raise HTTPException(status_code=400, detail="Inactive user")`
✨ Update code for login API (#571 ) 2023-12-27 19:06:47 +01:00			`return user`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00

✨ Update code for login API (#571 ) 2023-12-27 19:06:47 +01:00			`CurrentUser = Annotated[User, Depends(get_current_user)]`
♻️ Refactor Users API and dependencies (#561 ) 2023-11-29 12:13:15 -05:00

			`def get_current_active_superuser(current_user: CurrentUser) -> User:`
			`if not current_user.is_superuser:`
♻️ Refactor backend, settings, DB sessions, types, configs, plugins (#158 ) 2020-04-20 19:03:13 +02:00			`raise HTTPException(`
			`status_code=400, detail="The user doesn't have enough privileges"`
			`)`
			`return current_user`