You've already forked Promocode-API
mirror of
https://github.com/devitq/Promocode-API.git
synced 2026-05-22 23:17:10 +00:00
69 lines
1.8 KiB
Python
69 lines
1.8 KiB
Python
import uuid
|
|
|
|
import jwt
|
|
from django.conf import settings
|
|
from django.http import HttpRequest
|
|
from ninja.security import HttpBearer
|
|
from pydantic import BaseModel, ValidationError
|
|
|
|
import apps.business.models
|
|
import apps.user.models
|
|
|
|
|
|
class BusinessToken(BaseModel):
|
|
business_id: uuid.UUID
|
|
token_version: int
|
|
|
|
|
|
class BusinessAuth(HttpBearer):
|
|
def authenticate(self, request: HttpRequest, token: str) -> str | None:
|
|
try:
|
|
decoded_payload = jwt.decode(
|
|
token,
|
|
settings.SECRET_KEY,
|
|
algorithms=["HS256"],
|
|
)
|
|
token_payload = BusinessToken(**decoded_payload)
|
|
except (jwt.PyJWTError, ValidationError):
|
|
return None
|
|
|
|
try:
|
|
business = apps.business.models.Business.objects.get(
|
|
id=token_payload.business_id,
|
|
)
|
|
except apps.business.models.Business.DoesNotExist:
|
|
return None
|
|
|
|
if business.token_version != token_payload.token_version:
|
|
return None
|
|
|
|
return business
|
|
|
|
|
|
class UserToken(BaseModel):
|
|
user_id: uuid.UUID
|
|
token_version: int
|
|
|
|
|
|
class UserAuth(HttpBearer):
|
|
def authenticate(self, request: HttpRequest, token: str) -> str | None:
|
|
try:
|
|
decoded_payload = jwt.decode(
|
|
token,
|
|
settings.SECRET_KEY,
|
|
algorithms=["HS256"],
|
|
)
|
|
token_payload = UserToken(**decoded_payload)
|
|
except (jwt.PyJWTError, ValidationError):
|
|
return None
|
|
|
|
try:
|
|
user = apps.user.models.User.objects.get(id=token_payload.user_id)
|
|
except apps.user.models.User.DoesNotExist:
|
|
return None
|
|
|
|
if user.token_version != token_payload.token_version:
|
|
return None
|
|
|
|
return user
|