o ߭h`@sddlZddlmZmZmZmZddlZddlmZm Z ddl m Z ddl m Z mZmZddlmZddlmZmZmZddlmZmZdd lmZd Zd ZGd d d eejejfZGdddZ GdddZ!eeejejfZ"dS)N)AnyGenericOptionalUnion)RequestResponse)OAuth2PasswordRequestForm) exceptionsmodelsschemas)BaseUserDatabase) SecretType decode_jwt generate_jwt)PasswordHelperPasswordHelperProtocol)DependencyCallablezfastapi-users:resetzfastapi-users:verifyc@seZdZUdZeed<dZeed<eZ e ed<eed<dZ eed<e Z e ed<eejejfed <eed < d[d eejejfd eefd d ZdedejfddZdejdejfddZde dejfddZde de dejfddZ  d\dejdedeedejfd d!Z d]ddd"d#d$d%e d&e de d'e d(eed)ee deed*ed+edejfd,d-Z d]d#d$d.ejd%e d&e de d'e d(eed)ee deedejfd/d0Z! d[d.ejdeedd fd1d2Z"d[d3e deedejfd4d5Z# d[d.ejdeedd fd6d7Z$ d[d3e d8e deedejfd9d:Z%  d\d;ej&d.ejdedeedejf dd?Z(d8e d.e)ejejfdd fd@dAZ* d[d.ejdeedd fdBdCZ+ d[d.ejdDe,e efdeedd fdEdFZ- d[d.ejd3e deedd fdGdHZ. d[d.ejdeedd fdIdJZ/ d[d.ejd3e deedd fdKdLZ0 d[d.ejdeedd fdMdNZ1 d^d.ejdeedOee2dd fdPdQZ3 d[d.ejdeedd fdRdSZ4 d[d.ejdeedd fdTdUZ5dVe6deejfdWdXZ7d.ejdDe,e efdejfdYdZZ8d S)_BaseUserManageraC User management logic. :attribute reset_password_token_secret: Secret to encode reset password token. :attribute reset_password_token_lifetime_seconds: Lifetime of reset password token. :attribute reset_password_token_audience: JWT audience of reset password token. :attribute verification_token_secret: Secret to encode verification token. :attribute verification_token_lifetime_seconds: Lifetime of verification token. :attribute verification_token_audience: JWT audience of verification token. :param user_db: Database adapter instance. reset_password_token_secreti%reset_password_token_lifetime_secondsreset_password_token_audienceverification_token_secret#verification_token_lifetime_secondsverification_token_audienceuser_dbpassword_helperNcCs$||_|dur t|_dS||_dSN)rrr)selfrrrZ/var/www/html/stock_analysis/be/venv/lib/python3.10/site-packages/fastapi_users/manager.py__init__+s  zBaseUserManager.__init__valuereturncCst)z Parse a value into a correct models.ID instance. :param value: The value to parse. :raises InvalidID: The models.ID value is invalid. :return: An models.ID object. )NotImplementedError)rr!rrrparse_id6szBaseUserManager.parse_ididc(|j|IdH}|durt|S)z Get a user by id. :param id: Id. of the user to retrieve. :raises UserNotExists: The user does not exist. :return: A user. N)rgetr UserNotExists)rr%userrrrr'@ zBaseUserManager.get user_emailcr&)z Get a user by e-mail. :param user_email: E-mail of the user to retrieve. :raises UserNotExists: The user does not exist. :return: A user. N)r get_by_emailr r()rr+r)rrrr,Or*zBaseUserManager.get_by_emailoauth account_idcs*|j||IdH}|durt|S)z Get a user by OAuth account. :param oauth: Name of the OAuth client. :param account_id: Id. of the account on the external OAuth service. :raises UserNotExists: The user does not exist. :return: A user. N)rget_by_oauth_accountr r()rr-r.r)rrrr/^s  z$BaseUserManager.get_by_oauth_accountF user_createsaferequestcs||j|IdH|j|jIdH}|durt|r#|n|}| d}|j ||d<|j |IdH}| ||IdH|S)a  Create a user in database. Triggers the on_after_register handler on success. :param user_create: The UserCreate model to create. :param safe: If True, sensitive values like is_superuser or is_verified will be ignored during the creation, defaults to False. :param request: Optional FastAPI request that triggered the operation, defaults to None. :raises UserAlreadyExists: A user already exists with the same e-mail. :return: A new user. Npasswordhashed_password)validate_passwordr3rr,emailr UserAlreadyExistscreate_update_dictcreate_update_dict_superuserpoprhashcreateon_after_register)rr0r1r2 existing_user user_dictr3 created_userrrrr<ns  zBaseUserManager.create)associate_by_emailis_verified_by_defaultrz'BaseUserManager[models.UOAP, models.ID] oauth_name access_token account_email expires_at refresh_tokenrArBc s||||||d} z |||IdH} Wn\tjyqz||IdH} |s,t|j| | IdH} WY| Stjyp|j} ||j | | d} |j | IdH} |j| | IdH} | | |IdHYY| Sww| j D]}|j |kr|j|kr|j| || IdH} qu| S)a Handle the callback after a successful OAuth authentication. If the user already exists with this OAuth account, the token is updated. If a user with the same e-mail already exists and `associate_by_email` is True, the OAuth account is associated to this user. Otherwise, the `UserNotExists` exception is raised. If the user does not exist, it is created and the on_after_register handler is triggered. :param oauth_name: Name of the OAuth client. :param access_token: Valid access token for the service provider. :param account_id: models.ID of the user on the service provider. :param account_email: E-mail of the user on the service provider. :param expires_at: Optional timestamp at which the access token expires. :param refresh_token: Optional refresh token to get a fresh access token from the service provider. :param request: Optional FastAPI request that triggered the operation, defaults to None :param associate_by_email: If True, any existing user with the same e-mail address will be associated to this user. Defaults to False. :param is_verified_by_default: If True, the `is_verified` flag will be set to `True` on newly created user. Make sure the OAuth Provider you're using does verify the email address before enabling this flag. Defaults to False. :return: A user. rCrDr.rErFrGN)r6r4 is_verified)r/r r(r,r7radd_oauth_accountrgenerater;r<r=oauth_accountsr.rCupdate_oauth_account)rrCrDr.rErFrGr2rArBoauth_account_dictr)r3r?existing_oauth_accountrrroauth_callbacksN+      zBaseUserManager.oauth_callbackr)c s@||||||d} |j|| IdH}||i|IdH|S)a Handle the callback after a successful OAuth association. We add this new OAuth account to the given user. :param oauth_name: Name of the OAuth client. :param access_token: Valid access token for the service provider. :param account_id: models.ID of the user on the service provider. :param account_email: E-mail of the user on the service provider. :param expires_at: Optional timestamp at which the access token expires. :param refresh_token: Optional refresh token to get a fresh access token from the service provider. :param request: Optional FastAPI request that triggered the operation, defaults to None :return: A user. rHN)rrJon_after_update) rr)rCrDr.rErFrGr2rNrrroauth_associate_callbacks z(BaseUserManager.oauth_associate_callbackcs\|jst|jrtt|j|j|jd}t ||j |j }| |||IdHdS)a{ Start a verification request. Triggers the on_after_request_verify handler on success. :param user: The user to verify. :param request: Optional FastAPI request that triggered the operation, defaults to None. :raises UserInactive: The user is inactive. :raises UserAlreadyVerified: The user is already verified. )subr6audN) is_activer UserInactiverIUserAlreadyVerifiedstrr%r6rrrron_after_request_verifyrr)r2 token_datatokenrrrrequest_verifyszBaseUserManager.request_verifyr\c sz t||j|jg}Wn tjytwz |d}|d}Wn ty.twz ||IdH}Wn tj yEtwz| |}Wn tj yYtw||j krct|j rjt||ddiIdH}|||IdH|S)a Validate a verification request. Changes the is_verified flag of the user to True. Triggers the on_after_verify handler on success. :param token: The verification token generated by request_verify. :param request: Optional FastAPI request that triggered the operation, defaults to None. :raises InvalidVerifyToken: The token is invalid or expired. :raises UserAlreadyVerified: The user is already verified. :return: The verified user. rSr6NrIT)rrrjwt PyJWTErrorr InvalidVerifyTokenKeyErrorr,r(r$ InvalidIDr%rIrW_updateon_after_verify) rr\r2datauser_idr6r) parsed_id verified_userrrrverify2sB   zBaseUserManager.verifycsV|jstt|j|j|j|jd}t ||j |j }| |||IdHdS)aK Start a forgot password request. Triggers the on_after_forgot_password handler on success. :param user: The user that forgot its password. :param request: Optional FastAPI request that triggered the operation, defaults to None. :raises UserInactive: The user is inactive. )rS password_fgptrTN) rUr rVrXr%rr;r4rrrron_after_forgot_passwordrZrrrforgot_passwordfs  zBaseUserManager.forgot_passwordr3c sz t||j|jg}Wn tjytwz |d}|d}Wn ty.twz||}Wn tj yBtw| |IdH}|j |j |\} } | s[t|jsbt||d|iIdH} |||IdH| S)a? Reset the password of a user. Triggers the on_after_reset_password handler on success. :param token: The token generated by forgot_password. :param password: The new password to set. :param request: Optional FastAPI request that triggered the operation, defaults to None. :raises InvalidResetPasswordToken: The token is invalid or expired. :raises UserInactive: The user is inactive. :raises InvalidPasswordException: The password is invalid. :return: The user with updated password. rSrjNr3)rrrr^r_r InvalidResetPasswordTokenrar$rbr'rverify_and_updater4rUrVrcon_after_reset_password) rr\r3r2rerfpassword_fingerprintrgr)valid_password_fingerprint_ updated_userrrrreset_passwords@  zBaseUserManager.reset_password user_updatecsB|r|}n|}|||IdH}||||IdH|S)a  Update a user. Triggers the on_after_update handler on success :param user_update: The UserUpdate model containing the changes to apply to the user. :param user: The current user to update. :param safe: If True, sensitive values like is_superuser or is_verified will be ignored during the update, defaults to False :param request: Optional FastAPI request that triggered the operation, defaults to None. :return: The updated user. N)r8r9rcrQ)rrur)r1r2updated_user_datarsrrrupdates zBaseUserManager.updatecs<|||IdH|j|IdH|||IdHdS)z Delete a user. :param user: The user to delete. :param request: Optional FastAPI request that triggered the operation, defaults to None. N)on_before_deleterdeleteon_after_deleterr)r2rrrrys zBaseUserManager.deletecdS)aU Validate a password. *You should overload this method to add your own validation logic.* :param password: The password to validate. :param user: The user associated to this password. :raises InvalidPasswordException: The password is invalid. :return: None if the password is valid. Nr)rr3r)rrrr5 z!BaseUserManager.validate_passwordcr|)a Perform logic after successful user registration. *You should overload this method to add your own logic.* :param user: The registered user :param request: Optional FastAPI request that triggered the operation, defaults to None. Nrr{rrrr= z!BaseUserManager.on_after_register update_dictcr|)aT Perform logic after successful user update. *You should overload this method to add your own logic.* :param user: The updated user :param update_dict: Dictionary with the updated user fields. :param request: Optional FastAPI request that triggered the operation, defaults to None. Nr)rr)rr2rrrrQzBaseUserManager.on_after_updatecr|)aI Perform logic after successful verification request. *You should overload this method to add your own logic.* :param user: The user to verify. :param token: The verification token. :param request: Optional FastAPI request that triggered the operation, defaults to None. Nrrr)r\r2rrrrYr}z'BaseUserManager.on_after_request_verifycr|)a Perform logic after successful user verification. *You should overload this method to add your own logic.* :param user: The verified user. :param request: Optional FastAPI request that triggered the operation, defaults to None. Nrr{rrrrd#r~zBaseUserManager.on_after_verifycr|)a^ Perform logic after successful forgot password request. *You should overload this method to add your own logic.* :param user: The user that forgot its password. :param token: The forgot password token. :param request: Optional FastAPI request that triggered the operation, defaults to None. Nrrrrrrk1r}z(BaseUserManager.on_after_forgot_passwordcr|)a# Perform logic after successful password reset. *You should overload this method to add your own logic.* :param user: The user that reset its password. :param request: Optional FastAPI request that triggered the operation, defaults to None. Nrr{rrrro@r~z'BaseUserManager.on_after_reset_passwordresponsecr|)a2 Perform logic after user login. *You should overload this method to add your own logic.* :param user: The user that is logging in :param request: Optional FastAPI request :param response: Optional response built by the transport. Defaults to None Nr)rr)r2rrrron_after_loginNrzBaseUserManager.on_after_logincr|a  Perform logic before user delete. *You should overload this method to add your own logic.* :param user: The user to be deleted :param request: Optional FastAPI request that triggered the operation, defaults to None. Nrr{rrrrx`r~z BaseUserManager.on_before_deletecr|rrr{rrrrznr~zBaseUserManager.on_after_delete credentialscsz ||jIdH}Wntjy|j|jYdSw|j|j|j\}}|s.dS|dur>|j |d|iIdH|S)z Authenticate and return a user following an email and a password. Will automatically upgrade password hash if necessary. :param credentials: The user credentials. Nr4) r,usernamer r(rr;r3rnr4rrw)rrr)verifiedupdated_password_hashrrr authenticate|s zBaseUserManager.authenticatec si}|D]J\}}|dkr3||jkr3z ||IdHttjy2||d<d|d<Yqw|dkrM|durM|||IdH|j||d<q|||<q|j ||IdHS)Nr6FrIr3r4) itemsr6r,r r7r(r5rr;rrw)rr)rvalidated_update_dictfieldr!rrrrcs$  zBaseUserManager._updater)FN)NNN)NN)9__name__ __module__ __qualname____doc__r __annotations__rintRESET_PASSWORD_TOKEN_AUDIENCErrXrVERIFY_USER_TOKEN_AUDIENCErr r UPIDrrr rr$r'r,r/r UCboolrr<UOAPrPrRr]rirlrtUUrwryrr5r=dictrQrYrdrkrorrrxrzrrrcrrrrrs         -    [  + 5  :               &rc@s eZdZdedejfddZdS) UUIDIDMixinr!r"c Cs@t|tjr|Szt|WSty}zt|d}~wwr) isinstanceuuidUUID ValueErrorr rbrr!errrr$s   zUUIDIDMixin.parse_idN)rrrrrrr$rrrrrsrc@seZdZdedefddZdS)IntegerIDMixinr!r"c Cs@t|tr tzt|WSty}zt|d}~wwr)rfloatr rbrrrrrrr$s   zIntegerIDMixin.parse_idN)rrrrrr$rrrrrsr)#rtypingrrrrr^fastapirrfastapi.securityr fastapi_usersr r r fastapi_users.dbr fastapi_users.jwtr rrfastapi_users.passwordrrfastapi_users.typesrrrrrrrrUserManagerDependencyrrrrs*