Рефакторинг

ProFastCode · ProFastCode · commit ec7a7ac51e63 · 2024-04-09T21:13:10.000+03:00
diff --git a/app/api/depends.py b/app/api/depends.py
@@ -5,8 +5,8 @@
 from fastapi import Depends, HTTPException, status, Header
 
 from app.core import security
+from app.core.structures import Role
 from app.database import Database, new_session, models
-from app.database.structures import Role
 
 
 async def get_db() -> Database:
@@ -33,7 +33,7 @@ async def get_current_user(
 async def admins_access(
     user: models.User = Depends(get_current_user),
 ) -> None:
-    if not user.role >= Role.ADMIN.value:
+    if not user.role >= Role.ADMIN:
         raise HTTPException(
             status_code=status.HTTP_403_FORBIDDEN,
             detail="You do not have access to this section",
diff --git a/app/api/endpoints/tokens/auth.py b/app/api/endpoints/tokens/auth.py
@@ -1,7 +1,8 @@
 from fastapi import APIRouter, Depends, Request
 
-from app.api import depends, exps
-from app.core.security import tkn_manager, pswd_manager
+from app.api import depends
+from app.core import exps
+from app.core.security import tkn_manager, pwd_manager
 from app.database import Database
 from app.schemas.tokens import AuthToken
 from app.schemas.users import AuthUser
@@ -22,7 +23,7 @@ async def new_auth_token(
     if not (user := await db.user.get_by_email(data.email)):
         raise exps.USER_NOT_REGISTERED
 
-    if not pswd_manager.verify_password(data.password, user.password):
+    if not pwd_manager.verify_password(data.password, user.password):
         raise exps.USER_INCORRECT_PASSWORD
 
     auth_token = tkn_manager.create_auth_token({"id": user.id})
diff --git a/app/api/endpoints/tokens/pair.py b/app/api/endpoints/tokens/pair.py
@@ -1,6 +1,7 @@
 from fastapi import APIRouter, Depends, Request
 
-from app.api import depends, exps
+from app.api import depends
+from app.core import exps
 from app.core.security import tkn_manager
 from app.database import Database
 from app.schemas.tokens import PairTokens, AuthToken
diff --git a/app/api/endpoints/tokens/refresh.py b/app/api/endpoints/tokens/refresh.py
@@ -1,6 +1,7 @@
 from fastapi import APIRouter, Depends, Request
 
-from app.api import depends, exps
+from app.api import depends
+from app.core import exps
 from app.core.security import tkn_manager
 from app.database import Database
 from app.schemas.tokens import LongToken, ShortToken
diff --git a/app/api/endpoints/users/new.py b/app/api/endpoints/users/new.py
@@ -4,8 +4,9 @@
 
 from fastapi import APIRouter, Depends
 
-from app.api import depends, exps
-from app.core.security import pswd_manager
+from app.api import depends
+from app.core import exps
+from app.core.security import pwd_manager
 from app.database import Database
 from app.schemas.users import GetUser, NewUser
 
@@ -25,7 +26,7 @@ async def new(data: NewUser, db: Database = Depends(depends.get_db)):
     if await db.user.get_by_email(data.email):
         raise exps.USER_EXISTS
 
-    hash_password = pswd_manager.hash_password(data.password)
+    hash_password = pwd_manager.hash_password(data.password)
     user = await db.user.new(data.email, hash_password)
     await db.session.commit()
     return user
diff --git a/app/core/exps.py b/app/core/exps.py
@@ -1,5 +1,6 @@
 from fastapi import HTTPException, status
 
+# Users
 USER_EXISTS = HTTPException(status.HTTP_409_CONFLICT, "User is already taken.")
 USER_NOT_FOUND = HTTPException(status.HTTP_404_NOT_FOUND, "User not found.")
 USER_NOT_REGISTERED = HTTPException(
@@ -8,3 +9,8 @@
 USER_INCORRECT_PASSWORD = HTTPException(
     status.HTTP_401_UNAUTHORIZED, "Incorrect password"
 )
+
+# Tokens
+TOKEN_INVALID = HTTPException(status.HTTP_401_UNAUTHORIZED, "Invalid token")
+TOKEN_EXPIRED = HTTPException(status.HTTP_401_UNAUTHORIZED, "Token expired")
+TOKEN_INVALID_TYPE = HTTPException(status.HTTP_401_UNAUTHORIZED, "Invalid token type")
diff --git a/app/core/security/__init__.py b/app/core/security/__init__.py
@@ -1,5 +1,5 @@
 from . import password_manager, token_manager
-from .password_manager import pswd_manager
+from .password_manager import pwd_manager
 from .token_manager import tkn_manager
 
-__all__ = ["password_manager", "token_manager", "pswd_manager", "tkn_manager"]
+__all__ = ["password_manager", "token_manager", "pwd_manager", "tkn_manager"]
diff --git a/app/core/security/password_manager/__init__.py b/app/core/security/password_manager/__init__.py
@@ -1,5 +1,5 @@
 from .password_manager import PasswordManager
 
-pswd_manager = PasswordManager()
+pwd_manager = PasswordManager()
 
-__all__ = ["PasswordManager", "pswd_manager"]
+__all__ = ["PasswordManager", "pwd_manager"]
diff --git a/app/core/security/token_manager/__init__.py b/app/core/security/token_manager/__init__.py
@@ -1,7 +1,5 @@
-from . import exceptions as exp
-from .structures import TokenType
 from .token_manager import TokenManager
 
 tkn_manager = TokenManager()
 
-__all__ = ["TokenManager", "TokenType", "exp", "tkn_manager"]
+__all__ = ["TokenManager", "tkn_manager"]
diff --git a/app/core/security/token_manager/exceptions.py b/app/core/security/token_manager/exceptions.py
diff --git a/app/core/security/token_manager/structures.py b/app/core/security/token_manager/structures.py
diff --git a/app/core/security/token_manager/token_manager.py b/app/core/security/token_manager/token_manager.py
@@ -2,10 +2,9 @@
 
 from jose import jwt, JWTError
 
-from app.core import settings
+from app.core import settings, exps
 from .abstract import AbstractTokenManager
-from .structures import TokenType
-from .exceptions import TokenExpired, InvalidTokenType, InvalidToken
+from ...structures import TokenType
 
 ALGORITHM = "HS256"
 
@@ -15,7 +14,7 @@ def _decode_token(self, token: str) -> dict:
         try:
             payload = jwt.decode(token, settings.APP_SECRET_KEY, algorithms=[ALGORITHM])
         except JWTError:
-            raise InvalidToken
+            raise exps.TOKEN_INVALID
         return payload
 
     def _create_token(self, payload: dict) -> str:
@@ -35,9 +34,9 @@ def expand_payload(cls, token_type: TokenType, payload: dict, minutes: int) -> d
     def validate_payload(cls, token_type: TokenType, payload: dict) -> None:
         exp: float = payload.get("exp")
         if not (datetime.fromtimestamp(exp) > datetime.now()):
-            raise TokenExpired
+            raise exps.TOKEN_EXPIRED
         if payload.get("token_type") != token_type.value:
-            raise InvalidTokenType
+            raise exps.TOKEN_INVALID_TYPE
 
 
 class TokenManager(JWTTokenManager):
diff --git a/app/core/structures.py b/app/core/structures.py
@@ -4,4 +4,9 @@
 class Role(IntEnum):
     USER = 0
     ADMIN = 1
-    SERVICE = 3
+
+
+class TokenType(IntEnum):
+    AUTH = 0
+    LONG = 1
+    SHORT = 2
diff --git a/app/database/models/user.py b/app/database/models/user.py
@@ -5,12 +5,12 @@
 import sqlalchemy as sa
 from sqlalchemy.orm import Mapped, mapped_column
 
+from app.core.structures import Role
 from .base import Base
-from ..structures import Role
 
 
 class User(Base):
-    role: Mapped[int] = mapped_column(sa.Integer, unique=False, default=Role.USER.value)
+    role: Mapped[int] = mapped_column(sa.Integer, unique=False, default=Role.USER)
     email: Mapped[str] = mapped_column(sa.String, unique=True, nullable=False)
     password: Mapped[str] = mapped_column(sa.String, unique=False, nullable=False)
 
diff --git a/app/schemas/users.py b/app/schemas/users.py
@@ -4,7 +4,7 @@
 
 from pydantic import ConfigDict, BaseModel, Field, EmailStr
 
-from app.database.structures import Role
+from app.core.structures import Role
 
 
 class BaseUser(BaseModel):
@@ -24,7 +24,7 @@ class PasswordUser(BaseUser):
 
 
 class GetUser(EmailUser, RoleUser):
-    id: int = Field(examples=[0])
+    id: int = Field(examples=[1])
 
 
 class NewUser(PasswordUser, EmailUser):
diff --git a/poetry.lock b/poetry.lock
