wireguard-manager-gui/wg_dashboard_backend/routers/v1/user.py

import os
from datetime import timedelta

from fastapi import APIRouter, HTTPException, Depends, Form, Body
from fastapi.responses import PlainTextResponse, JSONResponse
import typing
from sqlalchemy.orm import Session
from starlette import status
from binascii import hexlify
import const
import db.user
import middleware
import models
import schemas

router = APIRouter()


@router.get("/logout")
def logout(user: schemas.User = Depends(middleware.auth)):
    return dict(message="ok")


@router.post("/user/edit", response_model=schemas.User)
def edit(form_data: schemas.UserInDB,
         user: schemas.UserInDB = Depends(middleware.auth),
         sess: Session = Depends(middleware.get_db)
         ):
    form_data.password = middleware.get_password_hash(form_data.password)
    form_data.sync(sess)
    return form_data


@router.get("/users/api-key/add", response_model=schemas.UserAPIKeyFull)
def add_api_key(
        user: schemas.UserInDB = Depends(middleware.auth),
        sess: Session = Depends(middleware.get_db)
):
    key = hexlify(os.urandom(const.API_KEY_LENGTH)).decode()

    api_key = models.UserAPIKey(
        user_id=user.id,
        key=key,
    )
    sess.add(api_key)
    sess.commit()

    return schemas.UserAPIKeyFull.from_orm(api_key)


@router.post("/users/api-key/delete")
def delete_api_keys(
        key_id: int = Body(None, embed=True),
        user: schemas.UserInDB = Depends(middleware.auth),
        sess: Session = Depends(middleware.get_db)
):

    count = sess.query(models.UserAPIKey)\
        .filter_by(id=key_id)\
        .delete()
    sess.commit()

    return JSONResponse({
        "message": "Key deleted OK" if count == 1 else "There was an error while deleting the api-key"
    })


@router.get("/users/api-key/list", response_model=typing.List[schemas.UserAPIKey])
def get_api_keys(
        user: schemas.UserInDB = Depends(middleware.auth),
        sess: Session = Depends(middleware.get_db)
):
    keys = [schemas.UserAPIKey.from_orm(x) for x in sess.query(models.UserAPIKey)
            .filter(models.UserAPIKey.user_id == user.id).all()]

    return keys


@router.post("/login", response_model=schemas.Token)
def login(*, username: str = Form(...), password: str = Form(...), sess: Session = Depends(middleware.get_db)):
    user: schemas.UserInDB = schemas.UserInDB(username=username, password="").from_db(sess)

    # Verify password
    if not user or not middleware.verify_password(password, user.password):
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED,
            detail="Incorrect username or password",
            headers={"WWW-Authenticate": "Bearer"},
        )

    # Create token
    access_token_expires = timedelta(minutes=const.ACCESS_TOKEN_EXPIRE_MINUTES)
    access_token = middleware.create_access_token(
        data={"sub": user.username}, expires_delta=access_token_expires
    )

    return schemas.Token(
        access_token=access_token,
        token_type="bearer",
        user=schemas.User(**user.dict())
    )


@router.post("/users/create/")
def create_user(
        form_data: schemas.UserInDB,
        sess: Session = Depends(middleware.get_db),
        user: schemas.User = Depends(middleware.auth)
):
    user = db.user.get_user_by_name(sess, form_data.username)

    # User already exists
    if user:
        if not db.user.authenticate_user(sess, form_data.username, form_data.password):
            raise HTTPException(status_code=401, detail="Incorrect password")

    else:

        # Create the user
        if not db.user.create_user(sess, models.User(
                username=form_data.username,
                password=form_data.password,
                full_name=form_data.full_name,
                email=form_data.email,
                role=form_data.role,
        )):
            raise HTTPException(status_code=400, detail="Could not create user")
* API-Key support. This ease automation, such as #21 5 years ago			`import os`
Stable version 5 years ago			`from datetime import timedelta`

* API-Key support. This ease automation, such as #21 5 years ago			`from fastapi import APIRouter, HTTPException, Depends, Form, Body`
			`from fastapi.responses import PlainTextResponse, JSONResponse`
			`import typing`
Stable version 5 years ago			`from sqlalchemy.orm import Session`
			`from starlette import status`
* API-Key support. This ease automation, such as #21 5 years ago			`from binascii import hexlify`
Stable version 5 years ago			`import const`
			`import db.user`
			`import middleware`
			`import models`
			`import schemas`

			`router = APIRouter()`


			`@router.get("/logout")`
			`def logout(user: schemas.User = Depends(middleware.auth)):`
			`return dict(message="ok")`


			`@router.post("/user/edit", response_model=schemas.User)`
			`def edit(form_data: schemas.UserInDB,`
			`user: schemas.UserInDB = Depends(middleware.auth),`
			`sess: Session = Depends(middleware.get_db)`
			`):`
			`form_data.password = middleware.get_password_hash(form_data.password)`
			`form_data.sync(sess)`
			`return form_data`


* API-Key support. This ease automation, such as #21 5 years ago			`@router.get("/users/api-key/add", response_model=schemas.UserAPIKeyFull)`
			`def add_api_key(`
			`user: schemas.UserInDB = Depends(middleware.auth),`
			`sess: Session = Depends(middleware.get_db)`
			`):`
			`key = hexlify(os.urandom(const.API_KEY_LENGTH)).decode()`

			`api_key = models.UserAPIKey(`
			`user_id=user.id,`
			`key=key,`
			`)`
			`sess.add(api_key)`
			`sess.commit()`

			`return schemas.UserAPIKeyFull.from_orm(api_key)`


			`@router.post("/users/api-key/delete")`
			`def delete_api_keys(`
			`key_id: int = Body(None, embed=True),`
			`user: schemas.UserInDB = Depends(middleware.auth),`
			`sess: Session = Depends(middleware.get_db)`
			`):`

			`count = sess.query(models.UserAPIKey)\`
			`.filter_by(id=key_id)\`
			`.delete()`
			`sess.commit()`

			`return JSONResponse({`
			`"message": "Key deleted OK" if count == 1 else "There was an error while deleting the api-key"`
			`})`


			`@router.get("/users/api-key/list", response_model=typing.List[schemas.UserAPIKey])`
			`def get_api_keys(`
			`user: schemas.UserInDB = Depends(middleware.auth),`
			`sess: Session = Depends(middleware.get_db)`
			`):`
			`keys = [schemas.UserAPIKey.from_orm(x) for x in sess.query(models.UserAPIKey)`
			`.filter(models.UserAPIKey.user_id == user.id).all()]`

			`return keys`


Stable version 5 years ago			`@router.post("/login", response_model=schemas.Token)`
			`def login(*, username: str = Form(...), password: str = Form(...), sess: Session = Depends(middleware.get_db)):`
			`user: schemas.UserInDB = schemas.UserInDB(username=username, password="").from_db(sess)`

			`# Verify password`
			`if not user or not middleware.verify_password(password, user.password):`
			`raise HTTPException(`
			`status_code=status.HTTP_401_UNAUTHORIZED,`
			`detail="Incorrect username or password",`
			`headers={"WWW-Authenticate": "Bearer"},`
			`)`

			`# Create token`
			`access_token_expires = timedelta(minutes=const.ACCESS_TOKEN_EXPIRE_MINUTES)`
			`access_token = middleware.create_access_token(`
			`data={"sub": user.username}, expires_delta=access_token_expires`
			`)`

			`return schemas.Token(`
			`access_token=access_token,`
			`token_type="bearer",`
			`user=schemas.User(**user.dict())`
			`)`


			`@router.post("/users/create/")`
			`def create_user(`
			`form_data: schemas.UserInDB,`
			`sess: Session = Depends(middleware.get_db),`
			`user: schemas.User = Depends(middleware.auth)`
			`):`
			`user = db.user.get_user_by_name(sess, form_data.username)`

			`# User already exists`
			`if user:`
			`if not db.user.authenticate_user(sess, form_data.username, form_data.password):`
			`raise HTTPException(status_code=401, detail="Incorrect password")`

			`else:`

			`# Create the user`
			`if not db.user.create_user(sess, models.User(`
			`username=form_data.username,`
			`password=form_data.password,`
			`full_name=form_data.full_name,`
			`email=form_data.email,`
			`role=form_data.role,`
			`)):`
			`raise HTTPException(status_code=400, detail="Could not create user")`