2025-12-04 14:48:38 +08:00
|
|
|
"""Authentication endpoints."""
|
|
|
|
|
|
|
|
|
|
from datetime import timedelta
|
2025-12-16 13:55:16 +08:00
|
|
|
from fastapi import APIRouter, Depends, HTTPException, status, Request
|
2025-12-04 14:48:38 +08:00
|
|
|
from fastapi.security import OAuth2PasswordRequestForm
|
|
|
|
|
from sqlalchemy.orm import Session
|
|
|
|
|
|
|
|
|
|
from ...core.config import get_settings
|
2025-12-16 13:55:16 +08:00
|
|
|
from ...db.database import DrSession, get_session
|
2025-12-04 14:48:38 +08:00
|
|
|
from ...services.auth import AuthService
|
|
|
|
|
from ...services.user import UserService
|
2025-12-16 13:55:16 +08:00
|
|
|
from ...schemas.user import UserResponse, UserCreate, LoginResponse
|
|
|
|
|
from utils.util_schemas import Token, LoginRequest
|
|
|
|
|
from loguru import logger
|
|
|
|
|
from utils.util_exceptions import HxfResponse
|
2025-12-04 14:48:38 +08:00
|
|
|
|
|
|
|
|
router = APIRouter()
|
|
|
|
|
settings = get_settings()
|
|
|
|
|
|
2025-12-16 13:55:16 +08:00
|
|
|
@router.post("/register", response_model=UserResponse, summary="注册新用户")
|
2025-12-04 14:48:38 +08:00
|
|
|
async def register(
|
2025-12-16 13:55:16 +08:00
|
|
|
request_user_data: UserCreate,
|
|
|
|
|
session: DrSession = Depends(get_session)
|
2025-12-04 14:48:38 +08:00
|
|
|
):
|
2025-12-16 13:55:16 +08:00
|
|
|
"""注册新用户"""
|
|
|
|
|
user_service = UserService(session)
|
|
|
|
|
session.desc = f"START: 注册用户 {request_user_data.email}"
|
|
|
|
|
if await user_service.get_user_by_email(request_user_data.email):
|
2025-12-04 14:48:38 +08:00
|
|
|
raise HTTPException(
|
|
|
|
|
status_code=status.HTTP_400_BAD_REQUEST,
|
2025-12-16 13:55:16 +08:00
|
|
|
detail=f"邮箱 {request_user_data.email} 已被注册,请使用其他邮箱注册!!!"
|
2025-12-04 14:48:38 +08:00
|
|
|
)
|
|
|
|
|
|
2025-12-16 13:55:16 +08:00
|
|
|
if await user_service.get_user_by_username(request_user_data.username):
|
2025-12-04 14:48:38 +08:00
|
|
|
raise HTTPException(
|
|
|
|
|
status_code=status.HTTP_400_BAD_REQUEST,
|
2025-12-16 13:55:16 +08:00
|
|
|
detail=f"用户名 {request_user_data.username} 已被注册,请使用其他用户名注册!!!"
|
2025-12-04 14:48:38 +08:00
|
|
|
)
|
|
|
|
|
|
2025-12-16 13:55:16 +08:00
|
|
|
user = await user_service.create_user(request_user_data)
|
|
|
|
|
response = UserResponse.model_validate(user, from_attributes=True)
|
|
|
|
|
return HxfResponse(response)
|
2025-12-04 14:48:38 +08:00
|
|
|
|
2025-12-16 13:55:16 +08:00
|
|
|
@router.post("/login", response_model=LoginResponse, summary="邮箱与密码登录")
|
2025-12-04 14:48:38 +08:00
|
|
|
async def login(
|
|
|
|
|
login_data: LoginRequest,
|
2025-12-16 13:55:16 +08:00
|
|
|
session: DrSession = Depends(get_session)
|
2025-12-04 14:48:38 +08:00
|
|
|
):
|
2025-12-16 13:55:16 +08:00
|
|
|
"""邮箱与密码登录"""
|
2025-12-04 14:48:38 +08:00
|
|
|
# Authenticate user by email
|
2025-12-16 13:55:16 +08:00
|
|
|
session.desc = f"START: 用户 {login_data.email} 尝试登录"
|
|
|
|
|
user = await AuthService.authenticate_user_by_email(session, login_data.email, login_data.password)
|
2025-12-04 14:48:38 +08:00
|
|
|
if not user:
|
|
|
|
|
raise HTTPException(
|
|
|
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
2025-12-16 13:55:16 +08:00
|
|
|
detail=f"邮箱 {login_data.email} 或密码错误,请检查后重试!!!",
|
2025-12-04 14:48:38 +08:00
|
|
|
headers={"WWW-Authenticate": "Bearer"},
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
# Create access token
|
|
|
|
|
access_token_expires = timedelta(minutes=settings.security.access_token_expire_minutes)
|
2025-12-16 13:55:16 +08:00
|
|
|
access_token = await AuthService.create_access_token(
|
|
|
|
|
session, data={"sub": user.username}, expires_delta=access_token_expires
|
2025-12-04 14:48:38 +08:00
|
|
|
)
|
2025-12-16 13:55:16 +08:00
|
|
|
session.desc = f"用户 {user.username} 登录成功"
|
2025-12-04 14:48:38 +08:00
|
|
|
|
2025-12-16 13:55:16 +08:00
|
|
|
response = LoginResponse(
|
|
|
|
|
access_token=access_token,
|
|
|
|
|
token_type="bearer",
|
|
|
|
|
expires_in=settings.security.access_token_expire_minutes * 60,
|
|
|
|
|
user=UserResponse.model_validate(user, from_attributes=True)
|
|
|
|
|
)
|
|
|
|
|
return HxfResponse(response)
|
2025-12-04 14:48:38 +08:00
|
|
|
|
2025-12-16 13:55:16 +08:00
|
|
|
@router.post("/login-oauth", response_model=Token, summary="用户通过用户名和密码登录 (OAuth2 兼容)")
|
2025-12-04 14:48:38 +08:00
|
|
|
async def login_oauth(
|
|
|
|
|
form_data: OAuth2PasswordRequestForm = Depends(),
|
2025-12-16 13:55:16 +08:00
|
|
|
session: DrSession = Depends(get_session)
|
2025-12-04 14:48:38 +08:00
|
|
|
):
|
2025-12-16 13:55:16 +08:00
|
|
|
"""用户通过用户名和密码登录 (OAuth2 兼容)"""
|
|
|
|
|
session.desc = f"START: 用户 {form_data.username} 尝试 OAuth2 登录"
|
|
|
|
|
user = await AuthService.authenticate_user(session, form_data.username, form_data.password)
|
2025-12-04 14:48:38 +08:00
|
|
|
if not user:
|
2025-12-16 13:55:16 +08:00
|
|
|
session.desc = f"用户 {form_data.username} 尝试 OAuth2 登录失败"
|
2025-12-04 14:48:38 +08:00
|
|
|
raise HTTPException(
|
|
|
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
|
|
|
detail="Incorrect username or password",
|
|
|
|
|
headers={"WWW-Authenticate": "Bearer"},
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
# Create access token
|
|
|
|
|
access_token_expires = timedelta(minutes=settings.security.access_token_expire_minutes)
|
2025-12-16 13:55:16 +08:00
|
|
|
access_token = await AuthService.create_access_token(
|
|
|
|
|
session, data={"sub": user.username}, expires_delta=access_token_expires
|
2025-12-04 14:48:38 +08:00
|
|
|
)
|
2025-12-16 13:55:16 +08:00
|
|
|
session.desc = f"用户 {user.username} OAuth2 登录成功"
|
2025-12-04 14:48:38 +08:00
|
|
|
|
2026-01-07 11:30:54 +08:00
|
|
|
return HxfResponse(
|
|
|
|
|
{
|
|
|
|
|
"access_token": access_token,
|
|
|
|
|
"token_type": "bearer",
|
|
|
|
|
"expires_in": settings.security.access_token_expire_minutes * 60
|
|
|
|
|
}
|
|
|
|
|
)
|
2025-12-04 14:48:38 +08:00
|
|
|
|
2025-12-16 13:55:16 +08:00
|
|
|
@router.post("/refresh", response_model=Token, summary="刷新访问token")
|
2025-12-04 14:48:38 +08:00
|
|
|
async def refresh_token(
|
|
|
|
|
current_user = Depends(AuthService.get_current_user),
|
2025-12-16 13:55:16 +08:00
|
|
|
session: DrSession = Depends(get_session)
|
2025-12-04 14:48:38 +08:00
|
|
|
):
|
2025-12-16 13:55:16 +08:00
|
|
|
"""刷新访问 token"""
|
2025-12-04 14:48:38 +08:00
|
|
|
# Create new access token
|
|
|
|
|
access_token_expires = timedelta(minutes=settings.security.access_token_expire_minutes)
|
2025-12-16 13:55:16 +08:00
|
|
|
access_token = await AuthService.create_access_token(
|
|
|
|
|
session, data={"sub": current_user.username}, expires_delta=access_token_expires
|
2025-12-04 14:48:38 +08:00
|
|
|
)
|
|
|
|
|
|
2026-01-07 11:30:54 +08:00
|
|
|
response = Token(
|
2025-12-16 13:55:16 +08:00
|
|
|
access_token=access_token,
|
|
|
|
|
token_type="bearer",
|
|
|
|
|
expires_in=settings.security.access_token_expire_minutes * 60
|
|
|
|
|
)
|
2026-01-07 11:30:54 +08:00
|
|
|
return HxfResponse(response)
|
2025-12-04 14:48:38 +08:00
|
|
|
|
2025-12-16 13:55:16 +08:00
|
|
|
@router.get("/me", response_model=UserResponse, summary="获取当前用户信息")
|
2025-12-04 14:48:38 +08:00
|
|
|
async def get_current_user_info(
|
|
|
|
|
current_user = Depends(AuthService.get_current_user)
|
|
|
|
|
):
|
2025-12-16 13:55:16 +08:00
|
|
|
"""获取当前用户信息"""
|
2026-01-07 11:30:54 +08:00
|
|
|
response = UserResponse.model_validate(current_user, from_attributes=True)
|
|
|
|
|
return HxfResponse(response)
|
