首页 发现 帮助
注册 登录
OpenSource
/
open-webui
2
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
目录树: a01b112f7f
分支列表 标签列表
open-webui
/
backend
/
apps
/
web
/
middlewares
/
auth.py

auth.py 1.1 KB
文件历史 原始文件

123456789101112131415161718192021222324252627 
  1. from apps.web.models.users import Users
    2. 

  2. from fastapi import Request, status
    3. 

  3. from starlette.authentication import (
    4. 

  4.     AuthCredentials, AuthenticationBackend, AuthenticationError, 
    5. 

  5. )
    6. 

  6. from starlette.requests import HTTPConnection
    7. 

  7. from utils.utils import verify_token
    8. 

  8. from starlette.responses import JSONResponse
    9. 

  9. from constants import ERROR_MESSAGES
    10. 

  10. 

  11. class BearerTokenAuthBackend(AuthenticationBackend):
    12. 

  12. 

  13.     async def authenticate(self, conn: HTTPConnection):
    14. 

  14.         if "Authorization" not in conn.headers:
    15. 

  15.             return
    16. 

  16.         data = verify_token(conn)
    17. 

  17.         if data != None and 'email' in data:
    18. 

  18.             user = Users.get_user_by_email(data['email'])
    19. 

  19.             if user is None:
    20. 

  20.                 raise AuthenticationError('Invalid credentials') 
    21. 

  21.             return AuthCredentials([user.role]), user
    22. 

  22.         else:
    23. 

  23.             raise AuthenticationError('Invalid credentials') 
    24. 

  24. 

  25. def on_auth_error(request: Request, exc: Exception):
    26. 

  26.     print('Authentication failed: ', exc)
    27. 

  27.     return JSONResponse({"detail": ERROR_MESSAGES.INVALID_TOKEN}, status_code=status.HTTP_401_UNAUTHORIZED)
    28.