mukanerkin/memleketmeselesi
SHA256
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
memleketmeselesi/mm_api/routers/auth.py
Mukan Erkin 2498e75594 init: memleketmeselesi platform — API + migrations 
FastAPI + PostgreSQL 16. KYC, issue sistemi, permission/group yönetimi,
session yönetimi, API client auth (kışla kapısı), officials/persons CRUD.
Migration 0001–0013 dahil.
2026-04-27 23:06:59 +03:00

82 lines
2.5 KiB
Python
Raw Blame History

from fastapi import APIRouter, Depends, HTTPException, Request, Security
from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
from psycopg import AsyncConnection
from mm_api.db import get_conn
from mm_api.dependencies import current_user
from mm_api.models.auth import RegisterRequest, LoginRequest, RefreshRequest
import mm_api.services.auth as svc
router = APIRouter(prefix="/auth", tags=["auth"])
bearer = HTTPBearer(auto_error=False)
@router.post("/register", status_code=201)
async def register(data: RegisterRequest, conn: AsyncConnection = Depends(get_conn)):
try:
return await svc.register(conn, data)
except ValueError as e:
raise HTTPException(400, str(e))
@router.post("/login")
async def login(data: LoginRequest, request: Request, conn: AsyncConnection = Depends(get_conn)):
ip = request.client.host if request.client else "unknown"
user_agent = request.headers.get("user-agent", "")
try:
return await svc.login(conn, data, ip, user_agent)
except ValueError as e:
raise HTTPException(401, str(e))
@router.post("/refresh")
async def refresh(data: RefreshRequest, request: Request, conn: AsyncConnection = Depends(get_conn)):
ip = request.client.host if request.client else "unknown"
try:
return await svc.refresh(conn, data.refresh_token, ip)
except ValueError as e:
raise HTTPException(401, str(e))
@router.post("/logout")
async def logout(
credentials: HTTPAuthorizationCredentials = Security(bearer),
conn: AsyncConnection = Depends(get_conn),
):
if credentials:
await svc.logout(conn, credentials.credentials)
return {"ok": True}
@router.post("/logout-all")
async def logout_all(
user: dict = Depends(current_user),
conn: AsyncConnection = Depends(get_conn),
):
await svc.logout_all(conn, user["id"])
return {"ok": True}
@router.get("/me")
async def me(user: dict = Depends(current_user)):
return user
@router.get("/sessions")
async def list_sessions(
user: dict = Depends(current_user),
conn: AsyncConnection = Depends(get_conn),
):
return await svc.list_sessions(conn, user["id"])
@router.delete("/sessions/{device_id}")
async def close_session(
device_id: int,
user: dict = Depends(current_user),
conn: AsyncConnection = Depends(get_conn),
):
try:
await svc.logout_device(conn, user["id"], device_id)
except ValueError as e:
raise HTTPException(404, str(e))
return {"ok": True}
Reference in a new issue View git blame Copy permalink