h(<ddlmZmZmZmZddlmZddlmZddl m Z ddl m Z ddl m Z ddlmZmZddlmZdd lmZmZmZmZdd lmZmZmZmZdd lZdd lZdd lmZmZmZdd lm Z m!Z!m"Z"ddlm#Z#m$Z$ddl m%Z%ddl&m'Z'm(Z(eZ)e)jUde+eee fdedefdZ,e)jUde+ee fdedefdZ-e)jUdeee fdedefdZ.e)jUdeeee fdedefdZ/e)jUde"ee fde defdZ0e)jUd e"ee fde!defd!Z1e)jed"ee fd#e3defd$Z4y )%) APIRouterDepends HTTPExceptionHeader)OAuth2PasswordRequestForm)Session)datetime)get_db)create_access_token) UserSessionPasswordResetToken)User)LoginTokenRequest TokenRequestUserDetailsResponse BranchInfo)verify_passwordget_current_user oauth2_schemedecode_access_tokenN)rrstatus)ForgotPasswordRequest PasswordResetPasswordResetResponse)forgot_passwordreset_password) hash_password)BranchStorez/login)response_model credentialsdbc  |jtjtj|jk(j }|sdddidSt |j|jsdddidS|jtjtj|jk(jtd|ji}ddl } t|jd d }|jtjtj |k(j }|snbt|j||dt#j$ }|j'||j)d d d|d||dddS#t*$rL}t-dt|t-t/j0ddt|idcYd}~Sd}~wwxYw)NFUser not foundrcodemessagedatazInvalid credentialssubrTii)user_idtoken login_codeis_login_code_used created_atzLogin successfulbearer) access_tokenr. token_typerr'r(r3r4r)ERROR:)queryrfilteremailusernamefirstrpassword password_hashr r,deleter randomstrrandintr.r utcnowaddcommit Exceptionprint traceback format_exc) r!r"user jwt_tokenr@r.existing_tokensessiones 3/var/www/html/hubwallet-dev/src/apps/auth/router.pyloginrPs @ xx~$$TZZ;3G3G%GHNNP+  {33T5G5GH0   $$[%8%8DLL%HIPPR( (;<  V^^D%89JXXk299+:P:PT^:^_eegN! LL!$(   w )%" )(&     hA i""$%1v    s,AF$&F$?D$F$$ G9-AG4.G94G9z/use-login-coderequestc |jtjtj|jk(j }|sdddidS|j rdddidS|jt jt j|jk(j }|sdddidSd|_|jdd d |jd |jd d d S#t$rL}tdt|ttjddt|idcYd}~Sd}~wwxYw)NFr$zInvalid login coder&iz Login code has already been usedr%Tr1zLogin via login code successfulr2)r3r4r5r6r7)r8r r9r.r<r/rr,rEr-rFrGrArHrI)rQr"rMrJrNs rOuse_login_coderSdsO 6 ((;'..  " "g&8&8 8 %' /    % %=  xx~$$T\\W__%DEKKM+  &*" 8#MM" ' &     hA i""$%1v    s2AC8C8+AC86C88 E AEE E z /user-detailsc$t|j}|s tdd|jtj tj |dk(j}|s tdd|jtj tj|jk(j}d}d}g}|r|dj}|jtj tj|k(j}|r |j}|D cgc].} t| j| j | j"0}} t%d |j|j||| Scc} w) Nr*Invalid or expired token status_codedetailr+r$r%r) branch_id branch_namebranch_addressT)rr, user_namestore_id store_namebranches)rr-rr8rr9r:r<rr,allr]rnamerrYrZaddressr) rQr"payloadrJr_r]r^ branch_datastorebranchs rOget_user_details_from_tokenrgs[ "'--0G 4NOO 88D> wu~!= > D D FD 4DEExx&&v~~'EFJJLHHJKA;''&&u~~'ABHHJ J#    **"..%~~     ))   s33F z/logoutrJc|jtjtj|jk(j |j ddiS)z-Logout user by deleting their session tokens.r(z User logged out, session removed)r8r r9r,r?rE)rJr"s rOlogoutrisHHH[  !4!4 !DELLNIIK 9 ::z/forgot-passwordc6Kt||d{S7w)N)r)rQr"s rOforgot_password_endpointrls "- -- -s z/reset-passwordcK|j}|j}t|}|s tdd|j t j t j|dk(j}|s tddt|}||_ |j|j|tdd Sw) Nr*rUrVr+r$r%Tz%Password has been reset successfully.)successr()r- new_passwordrrr8rr9r:r<rr>rErefreshr)rQr"r-ro current_userhashed_passwords rOreset_password_endpointrss MME''L'u-L 4NOO88D>((|E7J)JKQQSL 4DEE$L1O"1LIIKJJ| !7 sCC z/latest-reset-tokenr:cK|jtjtj|k(j }|s t dd|jt jt j|jk(jt jjj }|s t ddd|jiSw)zf Fetch the latest reset token for a given email. Only for debugging and testing purposes. r$r%rVzNo reset token foundr-) r8rr9r:r<rr r,order_byr0descr-)r:r"rJ reset_tokens rOget_latest_tokenrx?s 88D> u!4 5 ; ; =D 4DEE((-.55""dll2h!,,1134UUW 4JKK [&& ''sC(C*)5fastapirrrrfastapi.securityrsqlalchemy.ormrr src.utils.dbr src.apps.auth.servicesr src.apps.auth.modelsr r src.apps.users.modelsrsrc.apps.auth.schemasrrrrsrc.apps.auth.controllerrrrrrHsecretsrrrrrrrsrc.apps.stores.modelsrrrouterpostdictrPrSrgrirlrsgetrArxrjrOrs==6"6?&aaii--]]D00  Xd+-4Y&/D *D D ,D P t4&/: : : 5: z_-@A&/- --B-dY 01;;w;; 0EFQXY_Q`.,A.w.G. (  &/' '' 'b !"5