40 lines
1.1 KiB
Python
40 lines
1.1 KiB
Python
from __future__ import annotations
|
|
|
|
from app.auth import get_token_by_access_token
|
|
from app.database import (
|
|
User as DBUser,
|
|
)
|
|
|
|
from .database import get_db
|
|
|
|
from fastapi import Depends, HTTPException
|
|
from fastapi.security import HTTPAuthorizationCredentials, HTTPBearer
|
|
from sqlmodel.ext.asyncio.session import AsyncSession
|
|
|
|
security = HTTPBearer()
|
|
|
|
|
|
async def get_current_user(
|
|
credentials: HTTPAuthorizationCredentials = Depends(security),
|
|
db: AsyncSession = Depends(get_db),
|
|
) -> DBUser:
|
|
"""获取当前认证用户"""
|
|
token = credentials.credentials
|
|
|
|
user = await get_current_user_by_token(token, db)
|
|
if not user:
|
|
raise HTTPException(status_code=401, detail="Invalid or expired token")
|
|
return user
|
|
|
|
|
|
async def get_current_user_by_token(token: str, db: AsyncSession) -> DBUser | None:
|
|
token_record = await get_token_by_access_token(db, token)
|
|
if not token_record:
|
|
return None
|
|
user = (
|
|
await db.exec(
|
|
DBUser.all_select_clause().where(DBUser.id == token_record.user_id)
|
|
)
|
|
).first()
|
|
return user
|