Эхлэл Бүгдийг харах Тусламж
Бүртгүүлэх Нэвтрэх
haiany
/
codegraph
-ын хуулбар https://github.com/colbymchenry/codegraph.git
1
0
Салаа 0
Файлууд Асуудлууд 0 Мэдлэгийн сан
Мод: f0ddfccf47
Салаанууд Тагууд
codegraph
/
__tests__
/
evaluation
/
fixtures
/
python-project
/
auth.py

auth.py 2.2 KB
Түүх Анхны өгөгдөл

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. """Authentication service."""
    2. 

  2. 

  3. import hashlib
    4. 

  4. import secrets
    5. 

  5. from datetime import datetime
    6. 

  6. from typing import Optional, Tuple
    7. 

  7. 

  8. from models import User
    9. 

  9. from database import db
    10. 

  10. from validation import validate_email, validate_password
    11. 

  11. 

  12. 

  13. def hash_password(password: str) -> str:
    14. 

  14.     """Hash a password for storage."""
    15. 

  15.     salt = secrets.token_hex(16)
    16. 

  16.     hash_obj = hashlib.sha256((password + salt).encode())
    17. 

  17.     return f"{salt}:{hash_obj.hexdigest()}"
    18. 

  18. 

  19. 

  20. def verify_password(password: str, password_hash: str) -> bool:
    21. 

  21.     """Verify a password against its hash."""
    22. 

  22.     salt, stored_hash = password_hash.split(":")
    23. 

  23.     hash_obj = hashlib.sha256((password + salt).encode())
    24. 

  24.     return hash_obj.hexdigest() == stored_hash
    25. 

  25. 

  26. 

  27. def generate_token() -> str:
    28. 

  28.     """Generate a secure random token."""
    29. 

  29.     return secrets.token_urlsafe(32)
    30. 

  30. 

  31. 

  32. class AuthService:
    33. 

  33.     def __init__(self):
    34. 

  34.         self.tokens: dict = {}
    35. 

  35. 

  36.     def register(self, email: str, password: str, name: str) -> Tuple[bool, str]:
    37. 

  37.         """Register a new user."""
    38. 

  38.         if not validate_email(email):
    39. 

  39.             return False, "Invalid email format"
    40. 

  40. 

  41.         if not validate_password(password):
    42. 

  42.             return False, "Password too weak"
    43. 

  43. 

  44.         if db.get_user_by_email(email):
    45. 

  45.             return False, "Email already registered"
    46. 

  46. 

  47.         user = User(
    48. 

  48.             id=generate_token(),
    49. 

  49.             email=email,
    50. 

  50.             name=name,
    51. 

  51.             password_hash=hash_password(password),
    52. 

  52.             created_at=datetime.now(),
    53. 

  53.         )
    54. 

  54.         db.create_user(user)
    55. 

  55.         return True, user.id
    56. 

  56. 

  57.     def login(self, email: str, password: str) -> Optional[str]:
    58. 

  58.         """Authenticate user and return token."""
    59. 

  59.         user = db.get_user_by_email(email)
    60. 

  60.         if not user:
    61. 

  61.             return None
    62. 

  62. 

  63.         if not verify_password(password, user.password_hash):
    64. 

  64.             return None
    65. 

  65. 

  66.         token = generate_token()
    67. 

  67.         self.tokens[token] = user.id
    68. 

  68.         return token
    69. 

  69. 

  70.     def logout(self, token: str) -> None:
    71. 

  71.         """Invalidate a token."""
    72. 

  72.         self.tokens.pop(token, None)
    73. 

  73. 

  74.     def get_user_id(self, token: str) -> Optional[str]:
    75. 

  75.         """Get user ID from token."""
    76. 

  76.         return self.tokens.get(token)
    77. 

  77. 

  78. 

  79. auth_service = AuthService()
    80.