add tenant logic
This commit is contained in:
@@ -3,13 +3,14 @@ import jwt
|
||||
from fastapi import Depends, HTTPException, Request, Security, status
|
||||
from jwt import PyJWTError
|
||||
|
||||
from app.db import models, schemas, session
|
||||
from app.db import models, schemas
|
||||
from app.db.crud import get_user_by_email, create_user,get_user
|
||||
from app.core import security
|
||||
from app.db.cruddb import userService
|
||||
from app.core.dbmanager import get_db
|
||||
|
||||
async def get_current_user(security_scopes: SecurityScopes,
|
||||
db=Depends(session.get_db), token: str = Depends(security.oauth2_scheme)
|
||||
db=Depends(get_db), token: str = Depends(security.oauth2_scheme)
|
||||
):
|
||||
credentials_exception = HTTPException(
|
||||
status_code=status.HTTP_401_UNAUTHORIZED,
|
||||
@@ -17,7 +18,6 @@ async def get_current_user(security_scopes: SecurityScopes,
|
||||
headers={"WWW-Authenticate": "Bearer"},
|
||||
)
|
||||
try:
|
||||
|
||||
payload = jwt.decode(
|
||||
token, security.SECRET_KEY, algorithms=[security.ALGORITHM]
|
||||
)
|
||||
@@ -25,6 +25,10 @@ async def get_current_user(security_scopes: SecurityScopes,
|
||||
if id is None:
|
||||
raise credentials_exception
|
||||
|
||||
tenant:str = payload.get("tenant")
|
||||
if tenant is None:
|
||||
raise credentials_exception
|
||||
|
||||
permissions: str = payload.get("permissions")
|
||||
if not permissions =="ALL":
|
||||
for scope in security_scopes.scopes:
|
||||
@@ -59,11 +63,11 @@ async def get_current_active_superuser(
|
||||
|
||||
|
||||
def authenticate_user(db, email: str, password: str):
|
||||
user = get_user_by_email(db, email)
|
||||
user = userService.get_user_by_email(db,email) #get_user_by_email(db, email)
|
||||
if not user:
|
||||
return False
|
||||
return None
|
||||
if not security.verify_password(password, user.hashed_password):
|
||||
return False
|
||||
return None
|
||||
return user
|
||||
|
||||
|
||||
|
||||
Reference in New Issue
Block a user