صفحهٔ اصلی گشت‌و‌گذار راهنما
ثبت نام ورود
OpenSource
/
open-webui
2
0
انشعاب 0
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
درخت: bdd153d8f5
شاخه‌ها تگ‌ها
open-webui
/
backend
/
utils
/
utils.py

utils.py 2.2 KB
تاريخچه خام

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
    2. 

  2. from fastapi import HTTPException, status, Depends
    3. 

  3. from apps.web.models.users import Users
    4. 

  4. from pydantic import BaseModel
    5. 

  5. from typing import Union, Optional
    6. 

  6. from constants import ERROR_MESSAGES
    7. 

  7. from passlib.context import CryptContext
    8. 

  8. from datetime import datetime, timedelta
    9. 

  9. import requests
    10. 

  10. import jwt
    11. 

  11. 

  12. import config
    13. 

  13. 

  14. JWT_SECRET_KEY = config.WEBUI_JWT_SECRET_KEY
    15. 

  15. ALGORITHM = "HS256"
    16. 

  16. 

  17. ##############
    18. 

  18. # Auth Utils
    19. 

  19. ##############
    20. 

  20. 

  21. bearer_scheme = HTTPBearer()
    22. 

  22. pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
    23. 

  23. 

  24. 

  25. def verify_password(plain_password, hashed_password):
    26. 

  26.     return (
    27. 

  27.         pwd_context.verify(plain_password, hashed_password) if hashed_password else None
    28. 

  28.     )
    29. 

  29. 

  30. 

  31. def get_password_hash(password):
    32. 

  32.     return pwd_context.hash(password)
    33. 

  33. 

  34. 

  35. def create_token(data: dict, expires_delta: Union[timedelta, None] = None) -> str:
    36. 

  36.     payload = data.copy()
    37. 

  37. 

  38.     if expires_delta:
    39. 

  39.         expire = datetime.utcnow() + expires_delta
    40. 

  40.         payload.update({"exp": expire})
    41. 

  41. 

  42.     encoded_jwt = jwt.encode(payload, JWT_SECRET_KEY, algorithm=ALGORITHM)
    43. 

  43.     return encoded_jwt
    44. 

  44. 

  45. 

  46. def decode_token(token: str) -> Optional[dict]:
    47. 

  47.     try:
    48. 

  48.         decoded = jwt.decode(token, JWT_SECRET_KEY, options={"verify_signature": False})
    49. 

  49.         return decoded
    50. 

  50.     except Exception as e:
    51. 

  51.         return None
    52. 

  52. 

  53. 

  54. def extract_token_from_auth_header(auth_header: str):
    55. 

  55.     return auth_header[len("Bearer ") :]
    56. 

  56. 

  57. 

  58. def verify_auth_token(auth_token: HTTPAuthorizationCredentials = Depends(HTTPBearer())):
    59. 

  59.     data = decode_token(auth_token.credentials)
    60. 

  60.     if data != None and "email" in data:
    61. 

  61.         user = Users.get_user_by_email(data["email"])
    62. 

  62.         if user is None:
    63. 

  63.             raise HTTPException(
    64. 

  64.                 status_code=status.HTTP_401_UNAUTHORIZED,
    65. 

  65.                 detail=ERROR_MESSAGES.INVALID_TOKEN,
    66. 

  66.             )
    67. 

  67.         return
    68. 

  68.     else:
    69. 

  69.         raise HTTPException(
    70. 

  70.             status_code=status.HTTP_401_UNAUTHORIZED,
    71. 

  71.             detail=ERROR_MESSAGES.UNAUTHORIZED,
    72. 

  72.         )
    73. 

  73. 

  74. 

  75. def get_current_user(auth_token: HTTPAuthorizationCredentials = Depends(HTTPBearer())):
    76. 

  76.     data = decode_token(auth_token.credentials)
    77. 

  77.     return Users.get_user_by_email(data["email"])
    78.