core/resolvers/auth.py

from graphql import GraphQLResolveInfo
from datetime import datetime, timedelta
from auth.authenticate import login_required
from auth.authorize import Authorize
from auth.identity import Identity
from auth.password import Password
from auth.validations import CreateUser
from orm import User
from orm.base import local_session
from resolvers.base import mutation, query
from exceptions import InvalidPassword

from settings import JWT_AUTH_HEADER

@mutation.field("confirmEmail")
async def confirm(*_, confirm_token):
	auth_token, user = await Authorize.confirm(confirm_token)
	if auth_token:
		user.emailConfirmed = True
		user.save()
		return { "token": auth_token, "user" : user}
	else:
		return { "error": "Email not confirmed"}


@mutation.field("registerUser")
async def register(*_, email: str, password: str = ""):
	inp = { "email": email, "password": password}
	create_user = CreateUser(**inp)
	create_user.username = email.split('@')[0]
	if not password:
		# NOTE: 1 hour confirm_token expire
		confirm_token = Token.encode(create_user, datetime.now() + timedelta(hours = 1) , "email")
		# TODO:	sendAuthEmail(confirm_token)
		# без пароля не возвращаем, а высылаем токен на почту
		# 
		return { "user": user }
	else:
		create_user.password = Password.encode(create_user.password)
		user = User.create(**create_user.dict())
		token = await Authorize.authorize(user)
		return {"user": user, "token": token }


@query.field("signIn")
async def login(_, info: GraphQLResolveInfo, email: str, password: str):
	with local_session() as session:
		orm_user = session.query(User).filter(User.email == email).first()
	if orm_user is None:
		return {"error" : "invalid email"}

	try:
		device = info.context["request"].headers['device']
	except KeyError:
		device = "pc"
	auto_delete = False if device == "mobile" else True # why autodelete with mobile?

	try:
		user = Identity.identity(user_id=orm_user.id, password=password)
	except InvalidPassword:
		return {"error" : "invalid password"}
	
	token = await Authorize.authorize(user, device=device, auto_delete=auto_delete)
	return {"token" : token, "user": user}


@query.field("signOut")
@login_required
async def sign_out(_, info: GraphQLResolveInfo):
	token = info.context["request"].headers[JWT_AUTH_HEADER]
	status = await Authorize.revoke(token)
	return True

@query.field("getCurrentUser")
@login_required
async def get_user(_, info):
	auth = info.context["request"].auth
	user_id = auth.user_id
	with local_session() as session:
		user = session.query(User).filter(User.id == user_id).first()
	return { "user": user }

@query.field("isEmailFree")
async def is_email_free(_, info, email):
	with local_session() as session:
		user = session.query(User).filter(User.email == email).first()
	return user is None
-												wip: redis, sqlalchemy, structured, etc

											
										
										
											2021-06-28 09:08:09 +00:00
+								from graphql import GraphQLResolveInfo
-												confirmEmail

											
										
										
											2021-07-30 13:22:37 +00:00
+								from datetime import datetime, timedelta
-												wip: redis, sqlalchemy, structured, etc

											
										
										
											2021-06-28 09:08:09 +00:00
+								from auth.authenticate import login_required
 								from auth.authorize import Authorize
 								from auth.identity import Identity
 								from auth.password import Password
 								from auth.validations import CreateUser
 								from orm import User
-												global session to local session

											
										
										
											2021-08-05 16:49:08 +00:00
+								from orm.base import local_session
-												return value unification

											
										
										
											2021-08-04 13:38:56 +00:00
+								from resolvers.base import mutation, query
-												new api error handling

											
										
										
											2021-08-01 11:40:24 +00:00
+								from exceptions import InvalidPassword
-												wip: redis, sqlalchemy, structured, etc

											
										
										
											2021-06-28 09:08:09 +00:00
 								from settings import JWT_AUTH_HEADER
-												clear schema and no password auth wip

											
										
										
											2021-07-30 12:53:22 +00:00
+								@mutation.field("confirmEmail")
-												confirmEmail

											
										
										
											2021-07-30 13:22:37 +00:00
+								async def confirm(*_, confirm_token):
 									auth_token, user = await Authorize.confirm(confirm_token)
 									if auth_token:
 										user.emailConfirmed = True
-												user.save() call

											
										
										
											2021-07-30 13:24:54 +00:00
+										user.save()
-												return value unification

											
										
										
											2021-08-04 13:38:56 +00:00
+										return { "token": auth_token, "user" : user}
-												confirmEmail

											
										
										
											2021-07-30 13:22:37 +00:00
+									else:
-												return value unification

											
										
										
											2021-08-04 13:38:56 +00:00
+										return { "error": "Email not confirmed"}
-												confirmEmail

											
										
										
											2021-07-30 13:22:37 +00:00
-												clear schema and no password auth wip

											
										
										
											2021-07-30 12:53:22 +00:00
-												register user, sign in and sign out working

											
										
										
											2021-06-29 10:26:46 +00:00
+								@mutation.field("registerUser")
-												confirmEmail

											
										
										
											2021-07-30 13:22:37 +00:00
+								async def register(*_, email: str, password: str = ""):
-												no username needed

											
										
										
											2021-07-30 07:12:48 +00:00
+									inp = { "email": email, "password": password}
-												validation fix

											
										
										
											2021-07-30 07:09:39 +00:00
+									create_user = CreateUser(**inp)
-												username gen

											
										
										
											2021-07-30 07:18:04 +00:00
+									create_user.username = email.split('@')[0]
-												confirmEmail

											
										
										
											2021-07-30 13:22:37 +00:00
+									if not password:
 										# NOTE: 1 hour confirm_token expire
 										confirm_token = Token.encode(create_user, datetime.now() + timedelta(hours = 1) , "email")
 										# TODO:	sendAuthEmail(confirm_token)
-												clear schema and no password auth wip

											
										
										
											2021-07-30 12:53:22 +00:00
+										# без пароля не возвращаем, а высылаем токен на почту
 										#
-												new api error handling

											
										
										
											2021-08-01 11:40:24 +00:00
+										return { "user": user }
-												clear schema and no password auth wip

											
										
										
											2021-07-30 12:53:22 +00:00
+									else:
-												confirmEmail

											
										
										
											2021-07-30 13:22:37 +00:00
+										create_user.password = Password.encode(create_user.password)
 										user = User.create(**create_user.dict())
-												clear schema and no password auth wip

											
										
										
											2021-07-30 12:53:22 +00:00
+										token = await Authorize.authorize(user)
-												new api error handling

											
										
										
											2021-08-01 11:40:24 +00:00
+										return {"user": user, "token": token }
-												wip: redis, sqlalchemy, structured, etc

											
										
										
											2021-06-28 09:08:09 +00:00
-												register user, sign in and sign out working

											
										
										
											2021-06-29 10:26:46 +00:00
+								@query.field("signIn")
-												origin

											
										
										
											2021-08-09 15:45:51 +00:00
+								async def login(_, info: GraphQLResolveInfo, email: str, password: str):
-												global session to local session

											
										
										
											2021-08-05 16:49:08 +00:00
+									with local_session() as session:
 										orm_user = session.query(User).filter(User.email == email).first()
-												auth fixes

											
										
										
											2021-07-14 14:45:31 +00:00
+									if orm_user is None:
-												return value unification

											
										
										
											2021-08-04 13:38:56 +00:00
+										return {"error" : "invalid email"}
-												auth fixes

											
										
										
											2021-07-14 14:45:31 +00:00
-												oauth code minor changes

											
										
										
											2021-07-13 09:15:15 +00:00
+									try:
 										device = info.context["request"].headers['device']
 									except KeyError:
 										device = "pc"
-												auth fix 3

											
										
										
											2021-07-30 06:59:42 +00:00
+									auto_delete = False if device == "mobile" else True # why autodelete with mobile?
-												new api error handling

											
										
										
											2021-08-01 11:40:24 +00:00
 									try:
 										user = Identity.identity(user_id=orm_user.id, password=password)
 									except InvalidPassword:
-												return value unification

											
										
										
											2021-08-04 13:38:56 +00:00
+										return {"error" : "invalid password"}
-												new api error handling

											
										
										
											2021-08-01 11:40:24 +00:00
-												oauth code minor changes

											
										
										
											2021-07-13 09:15:15 +00:00
+									token = await Authorize.authorize(user, device=device, auto_delete=auto_delete)
-												typo fix

											
										
										
											2021-08-09 18:58:59 +00:00
+									return {"token" : token, "user": user}
-												new api error handling

											
										
										
											2021-08-01 11:40:24 +00:00
-												wip: redis, sqlalchemy, structured, etc

											
										
										
											2021-06-28 09:08:09 +00:00
-												register user, sign in and sign out working

											
										
										
											2021-06-29 10:26:46 +00:00
+								@query.field("signOut")
-												wip: redis, sqlalchemy, structured, etc

											
										
										
											2021-06-28 09:08:09 +00:00
+								@login_required
-												register user, sign in and sign out working

											
										
										
											2021-06-29 10:26:46 +00:00
+								async def sign_out(_, info: GraphQLResolveInfo):
-												oauth code minor changes

											
										
										
											2021-07-13 09:15:15 +00:00
+									token = info.context["request"].headers[JWT_AUTH_HEADER]
 									status = await Authorize.revoke(token)
-												origin

											
										
										
											2021-08-09 15:45:51 +00:00
+									return True
-												wip: redis, sqlalchemy, structured, etc

											
										
										
											2021-06-28 09:08:09 +00:00
-												auth fixes

											
										
										
											2021-07-14 14:45:31 +00:00
+								@query.field("getCurrentUser")
 								@login_required
 								async def get_user(_, info):
 									auth = info.context["request"].auth
 									user_id = auth.user_id
-												global session to local session

											
										
										
											2021-08-05 16:49:08 +00:00
+									with local_session() as session:
 										user = session.query(User).filter(User.id == user_id).first()
-												return value unification

											
										
										
											2021-08-04 13:38:56 +00:00
+									return { "user": user }
-												auth fixes

											
										
										
											2021-07-14 14:45:31 +00:00
 								@query.field("isEmailFree")
 								async def is_email_free(_, info, email):
-												global session to local session

											
										
										
											2021-08-05 16:49:08 +00:00
+									with local_session() as session:
 										user = session.query(User).filter(User.email == email).first()
-												return value unification

											
										
										
											2021-08-04 13:38:56 +00:00
+									return user is None