open-webui/backend/apps/webui/routers/auths.py

import logging

from fastapi import Request, UploadFile, File
from fastapi import Depends, HTTPException, status

from fastapi import APIRouter
from pydantic import BaseModel
import re
import uuid
import csv


from apps.webui.models.auths import (
    SigninForm,
    SignupForm,
    AddUserForm,
    UpdateProfileForm,
    UpdatePasswordForm,
    UserResponse,
    SigninResponse,
    Auths,
    ApiKey,
)
from apps.webui.models.users import Users

from utils.utils import (
    get_password_hash,
    get_current_user,
    get_admin_user,
    create_token,
    create_api_key,
)
from utils.misc import parse_duration, validate_email_format
from utils.webhook import post_webhook
from constants import ERROR_MESSAGES, WEBHOOK_MESSAGES
from config import WEBUI_AUTH, WEBUI_AUTH_TRUSTED_EMAIL_HEADER

router = APIRouter()

############################
# GetSessionUser
############################


@router.get("/", response_model=UserResponse)
async def get_session_user(user=Depends(get_current_user)):
    return {
        "id": user.id,
        "email": user.email,
        "name": user.name,
        "role": user.role,
        "profile_image_url": user.profile_image_url,
    }


############################
# Update Profile
############################


@router.post("/update/profile", response_model=UserResponse)
async def update_profile(
    form_data: UpdateProfileForm, session_user=Depends(get_current_user)
):
    if session_user:
        user = Users.update_user_by_id(
            session_user.id,
            {"profile_image_url": form_data.profile_image_url, "name": form_data.name},
        )
        if user:
            return user
        else:
            raise HTTPException(400, detail=ERROR_MESSAGES.DEFAULT())
    else:
        raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)


############################
# Update Password
############################


@router.post("/update/password", response_model=bool)
async def update_password(
    form_data: UpdatePasswordForm, session_user=Depends(get_current_user)
):
    if WEBUI_AUTH_TRUSTED_EMAIL_HEADER:
        raise HTTPException(400, detail=ERROR_MESSAGES.ACTION_PROHIBITED)
    if session_user:
        user = Auths.authenticate_user(session_user.email, form_data.password)

        if user:
            hashed = get_password_hash(form_data.new_password)
            return Auths.update_user_password_by_id(user.id, hashed)
        else:
            raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_PASSWORD)
    else:
        raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)


############################
# SignIn
############################


@router.post("/signin", response_model=SigninResponse)
async def signin(request: Request, form_data: SigninForm):
    if WEBUI_AUTH_TRUSTED_EMAIL_HEADER:
        if WEBUI_AUTH_TRUSTED_EMAIL_HEADER not in request.headers:
            raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_TRUSTED_HEADER)

        trusted_email = request.headers[WEBUI_AUTH_TRUSTED_EMAIL_HEADER].lower()
        if not Users.get_user_by_email(trusted_email.lower()):
            await signup(
                request,
                SignupForm(
                    email=trusted_email, password=str(uuid.uuid4()), name=trusted_email
                ),
            )
        user = Auths.authenticate_user_by_trusted_header(trusted_email)
    elif WEBUI_AUTH == False:
        admin_email = "admin@localhost"
        admin_password = "admin"

        if Users.get_user_by_email(admin_email.lower()):
            user = Auths.authenticate_user(admin_email.lower(), admin_password)
        else:
            if Users.get_num_users() != 0:
                raise HTTPException(400, detail=ERROR_MESSAGES.EXISTING_USERS)

            await signup(
                request,
                SignupForm(email=admin_email, password=admin_password, name="User"),
            )

            user = Auths.authenticate_user(admin_email.lower(), admin_password)
    else:
        user = Auths.authenticate_user(form_data.email.lower(), form_data.password)

    if user:
        token = create_token(
            data={"id": user.id},
            expires_delta=parse_duration(request.app.state.config.JWT_EXPIRES_IN),
        )

        return {
            "token": token,
            "token_type": "Bearer",
            "id": user.id,
            "email": user.email,
            "name": user.name,
            "role": user.role,
            "profile_image_url": user.profile_image_url,
        }
    else:
        raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)


############################
# SignUp
############################


@router.post("/signup", response_model=SigninResponse)
async def signup(request: Request, form_data: SignupForm):
    if not request.app.state.config.ENABLE_SIGNUP and WEBUI_AUTH:
        raise HTTPException(
            status.HTTP_403_FORBIDDEN, detail=ERROR_MESSAGES.ACCESS_PROHIBITED
        )

    if not validate_email_format(form_data.email.lower()):
        raise HTTPException(
            status.HTTP_400_BAD_REQUEST, detail=ERROR_MESSAGES.INVALID_EMAIL_FORMAT
        )

    if Users.get_user_by_email(form_data.email.lower()):
        raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_TAKEN)

    try:
        role = (
            "admin"
            if Users.get_num_users() == 0
            else request.app.state.config.DEFAULT_USER_ROLE
        )
        hashed = get_password_hash(form_data.password)
        user = Auths.insert_new_auth(
            form_data.email.lower(),
            hashed,
            form_data.name,
            form_data.profile_image_url,
            role,
        )

        if user:
            token = create_token(
                data={"id": user.id},
                expires_delta=parse_duration(request.app.state.config.JWT_EXPIRES_IN),
            )
            # response.set_cookie(key='token', value=token, httponly=True)

            if request.app.state.config.WEBHOOK_URL:
                post_webhook(
                    request.app.state.config.WEBHOOK_URL,
                    WEBHOOK_MESSAGES.USER_SIGNUP(user.name),
                    {
                        "action": "signup",
                        "message": WEBHOOK_MESSAGES.USER_SIGNUP(user.name),
                        "user": user.model_dump_json(exclude_none=True),
                    },
                )

            return {
                "token": token,
                "token_type": "Bearer",
                "id": user.id,
                "email": user.email,
                "name": user.name,
                "role": user.role,
                "profile_image_url": user.profile_image_url,
            }
        else:
            raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR)
    except Exception as err:
        raise HTTPException(500, detail=ERROR_MESSAGES.DEFAULT(err))


############################
# AddUser
############################


@router.post("/add", response_model=SigninResponse)
async def add_user(form_data: AddUserForm, user=Depends(get_admin_user)):

    if not validate_email_format(form_data.email.lower()):
        raise HTTPException(
            status.HTTP_400_BAD_REQUEST, detail=ERROR_MESSAGES.INVALID_EMAIL_FORMAT
        )

    if Users.get_user_by_email(form_data.email.lower()):
        raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_TAKEN)

    try:

        print(form_data)
        hashed = get_password_hash(form_data.password)
        user = Auths.insert_new_auth(
            form_data.email.lower(),
            hashed,
            form_data.name,
            form_data.profile_image_url,
            form_data.role,
        )

        if user:
            token = create_token(data={"id": user.id})
            return {
                "token": token,
                "token_type": "Bearer",
                "id": user.id,
                "email": user.email,
                "name": user.name,
                "role": user.role,
                "profile_image_url": user.profile_image_url,
            }
        else:
            raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR)
    except Exception as err:
        raise HTTPException(500, detail=ERROR_MESSAGES.DEFAULT(err))


############################
# GetAdminDetails
############################


@router.get("/admin/details")
async def get_admin_details(request: Request, user=Depends(get_current_user)):
    if request.app.state.config.SHOW_ADMIN_DETAILS:
        admin_email = request.app.state.config.ADMIN_EMAIL
        admin_name = None

        print(admin_email, admin_name)

        if admin_email:
            admin = Users.get_user_by_email(admin_email)
            if admin:
                admin_name = admin.name
        else:
            admin = Users.get_first_user()
            if admin:
                admin_email = admin.email
                admin_name = admin.name

        return {
            "name": admin_name,
            "email": admin_email,
        }
    else:
        raise HTTPException(400, detail=ERROR_MESSAGES.ACTION_PROHIBITED)


############################
# ToggleSignUp
############################


@router.get("/admin/config")
async def get_admin_config(request: Request, user=Depends(get_admin_user)):
    return {
        "SHOW_ADMIN_DETAILS": request.app.state.config.SHOW_ADMIN_DETAILS,
        "ENABLE_SIGNUP": request.app.state.config.ENABLE_SIGNUP,
        "DEFAULT_USER_ROLE": request.app.state.config.DEFAULT_USER_ROLE,
        "JWT_EXPIRES_IN": request.app.state.config.JWT_EXPIRES_IN,
        "ENABLE_COMMUNITY_SHARING": request.app.state.config.ENABLE_COMMUNITY_SHARING,
    }


class AdminConfig(BaseModel):
    SHOW_ADMIN_DETAILS: bool
    ENABLE_SIGNUP: bool
    DEFAULT_USER_ROLE: str
    JWT_EXPIRES_IN: str
    ENABLE_COMMUNITY_SHARING: bool


@router.post("/admin/config")
async def update_admin_config(
    request: Request, form_data: AdminConfig, user=Depends(get_admin_user)
):
    request.app.state.config.SHOW_ADMIN_DETAILS = form_data.SHOW_ADMIN_DETAILS
    request.app.state.config.ENABLE_SIGNUP = form_data.ENABLE_SIGNUP

    if form_data.DEFAULT_USER_ROLE in ["pending", "user", "admin"]:
        request.app.state.config.DEFAULT_USER_ROLE = form_data.DEFAULT_USER_ROLE

    pattern = r"^(-1|0|(-?\d+(\.\d+)?)(ms|s|m|h|d|w))$"

    # Check if the input string matches the pattern
    if re.match(pattern, form_data.JWT_EXPIRES_IN):
        request.app.state.config.JWT_EXPIRES_IN = form_data.JWT_EXPIRES_IN

    request.app.state.config.ENABLE_COMMUNITY_SHARING = (
        form_data.ENABLE_COMMUNITY_SHARING
    )

    return {
        "SHOW_ADMIN_DETAILS": request.app.state.config.SHOW_ADMIN_DETAILS,
        "ENABLE_SIGNUP": request.app.state.config.ENABLE_SIGNUP,
        "DEFAULT_USER_ROLE": request.app.state.config.DEFAULT_USER_ROLE,
        "JWT_EXPIRES_IN": request.app.state.config.JWT_EXPIRES_IN,
        "ENABLE_COMMUNITY_SHARING": request.app.state.config.ENABLE_COMMUNITY_SHARING,
    }


############################
# API Key
############################


# create api key
@router.post("/api_key", response_model=ApiKey)
async def create_api_key_(user=Depends(get_current_user)):
    api_key = create_api_key()
    success = Users.update_user_api_key_by_id(user.id, api_key)
    if success:
        return {
            "api_key": api_key,
        }
    else:
        raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_API_KEY_ERROR)


# delete api key
@router.delete("/api_key", response_model=bool)
async def delete_api_key(user=Depends(get_current_user)):
    success = Users.update_user_api_key_by_id(user.id, None)
    return success


# get api key
@router.get("/api_key", response_model=ApiKey)
async def get_api_key(user=Depends(get_current_user)):
    api_key = Users.get_user_api_key_by_id(user.id)
    if api_key:
        return {
            "api_key": api_key,
        }
    else:
        raise HTTPException(404, detail=ERROR_MESSAGES.API_KEY_NOT_FOUND)
feat: add support for using postgres for the backend DB 2024-04-24 17:10:18 +00:00			`import logging`

feat: csv user import frontend 2024-05-02 02:02:25 +00:00			`from fastapi import Request, UploadFile, File`
backend support api key 2024-03-26 10:22:17 +00:00			`from fastapi import Depends, HTTPException, status`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00
backend support api key 2024-03-26 10:22:17 +00:00			`from fastapi import APIRouter`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00			`from pydantic import BaseModel`
feat: jwt utils 2024-02-20 04:44:00 +00:00			`import re`
fix: import 2024-04-02 16:18:36 +00:00			`import uuid`
feat: csv user import frontend 2024-05-02 02:02:25 +00:00			`import csv`

feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00
refac: folder rename web -> webui 2024-05-26 08:15:48 +00:00			`from apps.webui.models.auths import (`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00			`SigninForm,`
			`SignupForm,`
refac: styling 2024-05-02 00:55:18 +00:00			`AddUserForm,`
feat: profile update frontend integration 2024-01-27 05:22:25 +00:00			`UpdateProfileForm,`
feat: change password support 2023-12-29 08:12:30 +00:00			`UpdatePasswordForm,`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00			`UserResponse,`
			`SigninResponse,`
			`Auths,`
fix: import 2024-04-02 16:18:36 +00:00			`ApiKey,`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00			`)`
refac: folder rename web -> webui 2024-05-26 08:15:48 +00:00			`from apps.webui.models.users import Users`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00
feat: admin settings 2024-02-14 09:17:43 +00:00			`from utils.utils import (`
			`get_password_hash,`
			`get_current_user,`
			`get_admin_user,`
			`create_token,`
fix: import 2024-04-02 16:18:36 +00:00			`create_api_key,`
feat: admin settings 2024-02-14 09:17:43 +00:00			`)`
feat: jwt utils 2024-02-20 04:44:00 +00:00			`from utils.misc import parse_duration, validate_email_format`
feat: webhook backend 2024-03-21 01:35:02 +00:00			`from utils.webhook import post_webhook`
			`from constants import ERROR_MESSAGES, WEBHOOK_MESSAGES`
feat: switch to config proxy, remove config_get/set 2024-05-10 07:03:24 +00:00			`from config import WEBUI_AUTH, WEBUI_AUTH_TRUSTED_EMAIL_HEADER`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00
feat: admin panel added 2023-11-19 08:13:59 +00:00			`router = APIRouter()`

feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00			`############################`
			`# GetSessionUser`
			`############################`


refac: remove the verify_token and use get-current user for auth+user 2024-01-01 08:55:50 +00:00			`@router.get("/", response_model=UserResponse)`
refac: use dependencies to verify token - feat: added new util to get the current user when needed. Middleware was adding authentication logic to all the routes. let's revisit if we can move the non-auth endpoints to a separate route. - refac: update the routes to use new helpers for verification and retrieving user - chore: added black for local formatting of py code 2023-12-30 10:53:33 +00:00			`async def get_session_user(user=Depends(get_current_user)):`
			`return {`
			`"id": user.id,`
			`"email": user.email,`
			`"name": user.name,`
			`"role": user.role,`
			`"profile_image_url": user.profile_image_url,`
			`}`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00

feat: profile image update backend 2024-01-27 04:27:45 +00:00			`############################`
feat: profile update frontend integration 2024-01-27 05:22:25 +00:00			`# Update Profile`
feat: profile image update backend 2024-01-27 04:27:45 +00:00			`############################`


			`@router.post("/update/profile", response_model=UserResponse)`
feat: profile update frontend integration 2024-01-27 05:22:25 +00:00			`async def update_profile(`
			`form_data: UpdateProfileForm, session_user=Depends(get_current_user)`
feat: profile image update backend 2024-01-27 04:27:45 +00:00			`):`
			`if session_user:`
feat: profile update frontend integration 2024-01-27 05:22:25 +00:00			`user = Users.update_user_by_id(`
			`session_user.id,`
			`{"profile_image_url": form_data.profile_image_url, "name": form_data.name},`
feat: profile image update backend 2024-01-27 04:27:45 +00:00			`)`
			`if user:`
			`return user`
			`else:`
			`raise HTTPException(400, detail=ERROR_MESSAGES.DEFAULT())`
			`else:`
			`raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)`


feat: change password support 2023-12-29 08:12:30 +00:00			`############################`
			`# Update Password`
			`############################`


refac: remove the verify_token and use get-current user for auth+user 2024-01-01 08:55:50 +00:00			`@router.post("/update/password", response_model=bool)`
feat: profile image update backend 2024-01-27 04:27:45 +00:00			`async def update_password(`
			`form_data: UpdatePasswordForm, session_user=Depends(get_current_user)`
			`):`
feat: add WEBUI_AUTH_TRUSTED_EMAIL_HEADER for authenticating users by a trusted header This is very yolo code, use at your own risk 2024-03-26 21:30:53 +00:00			`if WEBUI_AUTH_TRUSTED_EMAIL_HEADER:`
			`raise HTTPException(400, detail=ERROR_MESSAGES.ACTION_PROHIBITED)`
feat: change password frontend added 2023-12-29 08:26:47 +00:00			`if session_user:`
			`user = Auths.authenticate_user(session_user.email, form_data.password)`
feat: change password support 2023-12-29 08:12:30 +00:00
feat: change password frontend added 2023-12-29 08:26:47 +00:00			`if user:`
			`hashed = get_password_hash(form_data.new_password)`
chore: update password refac 2023-12-29 08:29:18 +00:00			`return Auths.update_user_password_by_id(user.id, hashed)`
feat: change password frontend added 2023-12-29 08:26:47 +00:00			`else:`
			`raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_PASSWORD)`
feat: change password support 2023-12-29 08:12:30 +00:00			`else:`
			`raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)`


feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00			`############################`
			`# SignIn`
			`############################`


			`@router.post("/signin", response_model=SigninResponse)`
feat: jwt utils 2024-02-20 04:44:00 +00:00			`async def signin(request: Request, form_data: SigninForm):`
feat: add WEBUI_AUTH_TRUSTED_EMAIL_HEADER for authenticating users by a trusted header This is very yolo code, use at your own risk 2024-03-26 21:30:53 +00:00			`if WEBUI_AUTH_TRUSTED_EMAIL_HEADER:`
			`if WEBUI_AUTH_TRUSTED_EMAIL_HEADER not in request.headers:`
chore: code formatting 2024-03-29 20:06:18 +00:00			`raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_TRUSTED_HEADER)`

feat: auto signup/login with WEBUI_AUTH_TRUSTED_EMAIL_HEADER 2024-03-28 10:34:57 +00:00			`trusted_email = request.headers[WEBUI_AUTH_TRUSTED_EMAIL_HEADER].lower()`
			`if not Users.get_user_by_email(trusted_email.lower()):`
chore: code formatting 2024-03-29 20:06:18 +00:00			`await signup(`
			`request,`
			`SignupForm(`
			`email=trusted_email, password=str(uuid.uuid4()), name=trusted_email`
			`),`
			`)`
feat: add WEBUI_AUTH_TRUSTED_EMAIL_HEADER for authenticating users by a trusted header This is very yolo code, use at your own risk 2024-03-26 21:30:53 +00:00			`user = Auths.authenticate_user_by_trusted_header(trusted_email)`
fix 2024-05-09 00:17:21 +00:00			`elif WEBUI_AUTH == False:`
			`admin_email = "admin@localhost"`
			`admin_password = "admin"`
fix: trusted header 2024-05-08 23:19:59 +00:00
fix 2024-05-09 00:17:21 +00:00			`if Users.get_user_by_email(admin_email.lower()):`
			`user = Auths.authenticate_user(admin_email.lower(), admin_password)`
			`else:`
			`if Users.get_num_users() != 0:`
			`raise HTTPException(400, detail=ERROR_MESSAGES.EXISTING_USERS)`
fix 2024-05-09 00:15:54 +00:00
fix 2024-05-09 00:17:21 +00:00			`await signup(`
			`request,`
			`SignupForm(email=admin_email, password=admin_password, name="User"),`
			`)`
fix: webui_auth permission issue 2024-05-08 23:42:41 +00:00
fix 2024-05-09 00:17:21 +00:00			`user = Auths.authenticate_user(admin_email.lower(), admin_password)`
			`else:`
			`user = Auths.authenticate_user(form_data.email.lower(), form_data.password)`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00
			`if user:`
feat: jwt utils 2024-02-20 04:44:00 +00:00			`token = create_token(`
			`data={"id": user.id},`
feat: switch to config proxy, remove config_get/set 2024-05-10 07:03:24 +00:00			`expires_delta=parse_duration(request.app.state.config.JWT_EXPIRES_IN),`
feat: jwt utils 2024-02-20 04:44:00 +00:00			`)`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00
			`return {`
			`"token": token,`
			`"token_type": "Bearer",`
			`"id": user.id,`
			`"email": user.email,`
			`"name": user.name,`
			`"role": user.role,`
feat: basic RBAC support 2023-11-19 05:41:43 +00:00			`"profile_image_url": user.profile_image_url,`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00			`}`
			`else:`
feat: basic RBAC support 2023-11-19 05:41:43 +00:00			`raise HTTPException(400, detail=ERROR_MESSAGES.INVALID_CRED)`
feat: multi-user support w/ RBAC 2023-11-19 00:47:12 +00:00

			`############################`
			`# SignUp`
			`############################`


			`@router.post("/signup", response_model=SigninResponse)`
feat: toggle signup enable from admin panel 2024-01-01 20:32:28 +00:00			`async def signup(request: Request, form_data: SignupForm):`
feat: switch to config proxy, remove config_get/set 2024-05-10 07:03:24 +00:00			`if not request.app.state.config.ENABLE_SIGNUP and WEBUI_AUTH:`
feat: admin settings 2024-02-14 09:17:43 +00:00			`raise HTTPException(`
			`status.HTTP_403_FORBIDDEN, detail=ERROR_MESSAGES.ACCESS_PROHIBITED`
			`)`
feat: profile image update backend 2024-01-27 04:27:45 +00:00
feat: add guard clause to improve signup process 2024-01-20 14:54:53 +00:00			`if not validate_email_format(form_data.email.lower()):`
feat: admin settings 2024-02-14 09:17:43 +00:00			`raise HTTPException(`
			`status.HTTP_400_BAD_REQUEST, detail=ERROR_MESSAGES.INVALID_EMAIL_FORMAT`
			`)`
feat: profile image update backend 2024-01-27 04:27:45 +00:00
feat: add guard clause to improve signup process 2024-01-20 14:54:53 +00:00			`if Users.get_user_by_email(form_data.email.lower()):`
			`raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_TAKEN)`
feat: profile image update backend 2024-01-27 04:27:45 +00:00
feat: add guard clause to improve signup process 2024-01-20 14:54:53 +00:00			`try:`
feat: admin settings 2024-02-14 09:17:43 +00:00			`role = (`
			`"admin"`
			`if Users.get_num_users() == 0`
feat: switch to config proxy, remove config_get/set 2024-05-10 07:03:24 +00:00			`else request.app.state.config.DEFAULT_USER_ROLE`
feat: admin settings 2024-02-14 09:17:43 +00:00			`)`
feat: add guard clause to improve signup process 2024-01-20 14:54:53 +00:00			`hashed = get_password_hash(form_data.password)`
feat: profile image update backend 2024-01-27 04:27:45 +00:00			`user = Auths.insert_new_auth(`
run npm run lint:backend 2024-04-04 08:10:51 +00:00			`form_data.email.lower(),`
			`hashed,`
			`form_data.name,`
			`form_data.profile_image_url,`
			`role,`
feat: profile image update backend 2024-01-27 04:27:45 +00:00			`)`
feat: toggle signup enable from admin panel 2024-01-01 20:32:28 +00:00
feat: add guard clause to improve signup process 2024-01-20 14:54:53 +00:00			`if user:`
feat: jwt utils 2024-02-20 04:44:00 +00:00			`token = create_token(`
			`data={"id": user.id},`
feat: switch to config proxy, remove config_get/set 2024-05-10 07:03:24 +00:00			`expires_delta=parse_duration(request.app.state.config.JWT_EXPIRES_IN),`
feat: jwt utils 2024-02-20 04:44:00 +00:00			`)`
feat: add guard clause to improve signup process 2024-01-20 14:54:53 +00:00			`# response.set_cookie(key='token', value=token, httponly=True)`

feat: switch to config proxy, remove config_get/set 2024-05-10 07:03:24 +00:00			`if request.app.state.config.WEBHOOK_URL:`
feat: webhook backend 2024-03-21 01:35:02 +00:00			`post_webhook(`
feat: switch to config proxy, remove config_get/set 2024-05-10 07:03:24 +00:00			`request.app.state.config.WEBHOOK_URL,`
refac: post webhook 2024-03-21 01:47:13 +00:00			`WEBHOOK_MESSAGES.USER_SIGNUP(user.name),`
feat: webhook backend 2024-03-21 01:35:02 +00:00			`{`
			`"action": "signup",`
			`"message": WEBHOOK_MESSAGES.USER_SIGNUP(user.name),`
			`"user": user.model_dump_json(exclude_none=True),`
			`},`
			`)`

feat: add guard clause to improve signup process 2024-01-20 14:54:53 +00:00			`return {`
			`"token": token,`
			`"token_type": "Bearer",`
			`"id": user.id,`
			`"email": user.email,`
			`"name": user.name,`
			`"role": user.role,`
			`"profile_image_url": user.profile_image_url,`
			`}`
			`else:`
feat: profile image update backend 2024-01-27 04:27:45 +00:00			`raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR)`
refac: styling 2024-05-02 00:55:18 +00:00			`except Exception as err:`
			`raise HTTPException(500, detail=ERROR_MESSAGES.DEFAULT(err))`


			`############################`
			`# AddUser`
			`############################`


			`@router.post("/add", response_model=SigninResponse)`
feat: csv user import frontend 2024-05-02 02:02:25 +00:00			`async def add_user(form_data: AddUserForm, user=Depends(get_admin_user)):`
refac: styling 2024-05-02 00:55:18 +00:00
			`if not validate_email_format(form_data.email.lower()):`
			`raise HTTPException(`
			`status.HTTP_400_BAD_REQUEST, detail=ERROR_MESSAGES.INVALID_EMAIL_FORMAT`
			`)`

			`if Users.get_user_by_email(form_data.email.lower()):`
			`raise HTTPException(400, detail=ERROR_MESSAGES.EMAIL_TAKEN)`

			`try:`
feat: add user from admin panel 2024-05-02 01:06:02 +00:00
			`print(form_data)`
refac: styling 2024-05-02 00:55:18 +00:00			`hashed = get_password_hash(form_data.password)`
			`user = Auths.insert_new_auth(`
			`form_data.email.lower(),`
			`hashed,`
			`form_data.name,`
			`form_data.profile_image_url,`
feat: add user from admin panel 2024-05-02 01:06:02 +00:00			`form_data.role,`
refac: styling 2024-05-02 00:55:18 +00:00			`)`

			`if user:`
			`token = create_token(data={"id": user.id})`
			`return {`
			`"token": token,`
			`"token_type": "Bearer",`
			`"id": user.id,`
			`"email": user.email,`
			`"name": user.name,`
			`"role": user.role,`
			`"profile_image_url": user.profile_image_url,`
			`}`
			`else:`
			`raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_USER_ERROR)`
feat: add guard clause to improve signup process 2024-01-20 14:54:53 +00:00			`except Exception as err:`
feat: profile image update backend 2024-01-27 04:27:45 +00:00			`raise HTTPException(500, detail=ERROR_MESSAGES.DEFAULT(err))`

feat: toggle signup enable from admin panel 2024-01-01 20:32:28 +00:00
			`############################`
feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`# GetAdminDetails`
feat: toggle signup enable from admin panel 2024-01-01 20:32:28 +00:00			`############################`


feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`@router.get("/admin/details")`
			`async def get_admin_details(request: Request, user=Depends(get_current_user)):`
			`if request.app.state.config.SHOW_ADMIN_DETAILS:`
			`admin_email = request.app.state.config.ADMIN_EMAIL`
			`admin_name = None`

			`print(admin_email, admin_name)`
feat: toggle signup enable from admin panel 2024-01-01 20:32:28 +00:00
feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`if admin_email:`
			`admin = Users.get_user_by_email(admin_email)`
			`if admin:`
			`admin_name = admin.name`
			`else:`
			`admin = Users.get_first_user()`
			`if admin:`
			`admin_email = admin.email`
			`admin_name = admin.name`
feat: toggle signup enable from admin panel 2024-01-01 20:32:28 +00:00
feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`return {`
			`"name": admin_name,`
			`"email": admin_email,`
			`}`
			`else:`
			`raise HTTPException(400, detail=ERROR_MESSAGES.ACTION_PROHIBITED)`
feat: admin settings 2024-02-14 09:17:43 +00:00

			`############################`
feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`# ToggleSignUp`
feat: admin settings 2024-02-14 09:17:43 +00:00			`############################`


feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`@router.get("/admin/config")`
			`async def get_admin_config(request: Request, user=Depends(get_admin_user)):`
			`return {`
			`"SHOW_ADMIN_DETAILS": request.app.state.config.SHOW_ADMIN_DETAILS,`
			`"ENABLE_SIGNUP": request.app.state.config.ENABLE_SIGNUP,`
			`"DEFAULT_USER_ROLE": request.app.state.config.DEFAULT_USER_ROLE,`
			`"JWT_EXPIRES_IN": request.app.state.config.JWT_EXPIRES_IN,`
			`"ENABLE_COMMUNITY_SHARING": request.app.state.config.ENABLE_COMMUNITY_SHARING,`
			`}`
feat: admin settings 2024-02-14 09:17:43 +00:00

feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`class AdminConfig(BaseModel):`
			`SHOW_ADMIN_DETAILS: bool`
			`ENABLE_SIGNUP: bool`
			`DEFAULT_USER_ROLE: str`
			`JWT_EXPIRES_IN: str`
			`ENABLE_COMMUNITY_SHARING: bool`
feat: admin settings 2024-02-14 09:17:43 +00:00

feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`@router.post("/admin/config")`
			`async def update_admin_config(`
			`request: Request, form_data: AdminConfig, user=Depends(get_admin_user)`
feat: admin settings 2024-02-14 09:17:43 +00:00			`):`
feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`request.app.state.config.SHOW_ADMIN_DETAILS = form_data.SHOW_ADMIN_DETAILS`
			`request.app.state.config.ENABLE_SIGNUP = form_data.ENABLE_SIGNUP`
feat: jwt utils 2024-02-20 04:44:00 +00:00
feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`if form_data.DEFAULT_USER_ROLE in ["pending", "user", "admin"]:`
			`request.app.state.config.DEFAULT_USER_ROLE = form_data.DEFAULT_USER_ROLE`
feat: jwt utils 2024-02-20 04:44:00 +00:00
			`pattern = r"^(-1\|0\|(-?\d+(\.\d+)?)(ms\|s\|m\|h\|d\|w))$"`

			`# Check if the input string matches the pattern`
feat: admin details in account pending overlay 2024-06-04 04:17:43 +00:00			`if re.match(pattern, form_data.JWT_EXPIRES_IN):`
			`request.app.state.config.JWT_EXPIRES_IN = form_data.JWT_EXPIRES_IN`

			`request.app.state.config.ENABLE_COMMUNITY_SHARING = (`
			`form_data.ENABLE_COMMUNITY_SHARING`
			`)`

			`return {`
			`"SHOW_ADMIN_DETAILS": request.app.state.config.SHOW_ADMIN_DETAILS,`
			`"ENABLE_SIGNUP": request.app.state.config.ENABLE_SIGNUP,`
			`"DEFAULT_USER_ROLE": request.app.state.config.DEFAULT_USER_ROLE,`
			`"JWT_EXPIRES_IN": request.app.state.config.JWT_EXPIRES_IN,`
			`"ENABLE_COMMUNITY_SHARING": request.app.state.config.ENABLE_COMMUNITY_SHARING,`
			`}`
backend support api key 2024-03-26 10:22:17 +00:00

			`############################`
			`# API Key`
			`############################`


			`# create api key`
			`@router.post("/api_key", response_model=ApiKey)`
			`async def create_api_key_(user=Depends(get_current_user)):`
			`api_key = create_api_key()`
refac 2024-04-02 16:27:35 +00:00			`success = Users.update_user_api_key_by_id(user.id, api_key)`
backend support api key 2024-03-26 10:22:17 +00:00			`if success:`
			`return {`
			`"api_key": api_key,`
			`}`
			`else:`
			`raise HTTPException(500, detail=ERROR_MESSAGES.CREATE_API_KEY_ERROR)`


			`# delete api key`
			`@router.delete("/api_key", response_model=bool)`
			`async def delete_api_key(user=Depends(get_current_user)):`
refac 2024-04-02 16:27:35 +00:00			`success = Users.update_user_api_key_by_id(user.id, None)`
backend support api key 2024-03-26 10:22:17 +00:00			`return success`


			`# get api key`
			`@router.get("/api_key", response_model=ApiKey)`
			`async def get_api_key(user=Depends(get_current_user)):`
refac 2024-04-02 16:27:35 +00:00			`api_key = Users.get_user_api_key_by_id(user.id)`
backend support api key 2024-03-26 10:22:17 +00:00			`if api_key:`
			`return {`
			`"api_key": api_key,`
			`}`
			`else:`
			`raise HTTPException(404, detail=ERROR_MESSAGES.API_KEY_NOT_FOUND)`