mirror of
https://github.com/revanced/revanced-releases-api.git
synced 2025-05-02 23:24:27 +02:00
3b418197c2
* feat: resolves #5, resolves #4 (#7) * Implements client generation and management * fix announcements endpoints * change annoucements model * bump deps * sync with main * refactor: adopt some functional standards in Releases.py * feat: add new workflows * chore: remove unused files * refactor: update build badge * refactor: move files around and delete unused ones * feat: add authentication endpoints * refactor: clean up code on Clients.py controller * fix: fix the client secret update endpoint * refactor: clean up authentication code * feat: add authentication to client endpoints * chore: bump deps * feat: add admin user generation * feature: add /changelogs endpoint (#10) * feat: move endpoints into custom routers, resolves #12 (#14) * refactor: import routers from old branch * refactor: import InternalCache removal * refactor: move routes into dedicated routers * fix: fixes entrypoint * refactor: add documentation and bump libs * docs: update description (#16) * feat: implement cdn mirrors endpoints, closes #15 (#17) * feat: add cdn mirror endpoints * refactor: change API version in docs * docs: fix titles on API docs page Co-authored-by: oSumAtrIX <johan.melkonyan1@web.de>
78 lines
3.0 KiB
Python
78 lines
3.0 KiB
Python
from fastapi_paseto_auth import AuthPASETO
|
|
from fastapi import APIRouter, Request, Response, Depends, status, HTTPException
|
|
from app.dependencies import load_config
|
|
from app.controllers.Clients import Clients
|
|
import app.models.ClientModels as ClientModels
|
|
import app.models.GeneralErrors as GeneralErrors
|
|
import app.models.ResponseModels as ResponseModels
|
|
|
|
router = APIRouter(
|
|
prefix="/auth",
|
|
tags=['Authentication']
|
|
)
|
|
clients = Clients()
|
|
config: dict = load_config()
|
|
|
|
@router.post('/', response_model=ResponseModels.ClientAuthTokenResponse, status_code=status.HTTP_200_OK)
|
|
async def auth(request: Request, response: Response, client: ClientModels.ClientAuthModel, Authorize: AuthPASETO = Depends()) -> dict:
|
|
"""Authenticate a client and get an auth token.
|
|
|
|
Returns:
|
|
access_token: auth token
|
|
refresh_token: refresh token
|
|
"""
|
|
|
|
admin_claim: dict[str, bool]
|
|
|
|
if await clients.exists(client.id):
|
|
authenticated: bool = await clients.authenticate(client.id, client.secret)
|
|
|
|
if not authenticated:
|
|
raise HTTPException(status_code=401, detail={
|
|
"error": GeneralErrors.Unauthorized().error,
|
|
"message": GeneralErrors.Unauthorized().message
|
|
}
|
|
)
|
|
else:
|
|
if await clients.is_admin(client.id):
|
|
admin_claim = {"admin": True}
|
|
else:
|
|
admin_claim = {"admin": False}
|
|
|
|
access_token = Authorize.create_access_token(subject=client.id,
|
|
user_claims=admin_claim,
|
|
fresh=True)
|
|
|
|
refresh_token = Authorize.create_refresh_token(subject=client.id,
|
|
user_claims=admin_claim)
|
|
|
|
return {"access_token": access_token, "refresh_token": refresh_token}
|
|
else:
|
|
raise HTTPException(status_code=401, detail={
|
|
"error": GeneralErrors.Unauthorized().error,
|
|
"message": GeneralErrors.Unauthorized().message
|
|
}
|
|
)
|
|
|
|
@router.post('/refresh', response_model=ResponseModels.ClientTokenRefreshResponse,
|
|
status_code=status.HTTP_200_OK, tags=['Authentication'])
|
|
async def refresh(request: Request, response: Response,
|
|
Authorize: AuthPASETO = Depends()) -> dict:
|
|
"""Refresh an auth token.
|
|
|
|
Returns:
|
|
access_token: auth token
|
|
"""
|
|
|
|
Authorize.paseto_required(refresh_token=True)
|
|
|
|
admin_claim: dict[str, bool] = {"admin": False}
|
|
|
|
current_user: str | int | None = Authorize.get_subject()
|
|
|
|
if 'admin' in Authorize.get_token_payload():
|
|
admin_claim = {"admin": Authorize.get_token_payload()['admin']}
|
|
|
|
return {"access_token": Authorize.create_access_token(subject=current_user,
|
|
user_claims=admin_claim,
|
|
fresh=False)} |