47 lines
1.2 KiB
Python
47 lines
1.2 KiB
Python
import bcrypt
|
|
from datetime import datetime, timedelta, timezone
|
|
from typing import Any, Union, Optional
|
|
from jose import jwt
|
|
from app.core.config import settings
|
|
|
|
ALGORITHM = "HS256"
|
|
|
|
def create_access_token(
|
|
subject: Union[str, Any],
|
|
role: str,
|
|
full_name: str,
|
|
expires_delta: Optional[timedelta] = None
|
|
) -> str:
|
|
if expires_delta:
|
|
expire = datetime.now(timezone.utc) + expires_delta
|
|
else:
|
|
expire = datetime.now(timezone.utc) + timedelta(minutes=1440)
|
|
|
|
to_encode = {
|
|
"exp": expire,
|
|
"sub": str(subject),
|
|
"role": role,
|
|
"full_name": full_name
|
|
}
|
|
encoded_jwt = jwt.encode(to_encode, settings.secret_key, algorithm=ALGORITHM)
|
|
return encoded_jwt
|
|
|
|
def verify_password(plain_password: str, hashed_password: str) -> bool:
|
|
return bcrypt.checkpw(
|
|
plain_password.encode('utf-8'),
|
|
hashed_password.encode('utf-8')
|
|
)
|
|
|
|
def get_password_hash(password: str) -> str:
|
|
return bcrypt.hashpw(
|
|
password.encode('utf-8'),
|
|
bcrypt.gensalt()
|
|
).decode('utf-8')
|
|
|
|
def get_token_payload(token: str) -> dict:
|
|
try:
|
|
payload = jwt.decode(token, settings.secret_key, algorithms=[ALGORITHM])
|
|
return payload
|
|
except Exception:
|
|
return {}
|