Inplement ApiKeys

2025-06-05 19:36:35 +02:00
parent f8b15e3407
commit 2b865aa249
8 changed files with 312 additions and 14 deletions
--- a/backend/app/api/routes/login.py
+++ b/backend/app/api/routes/login.py
@@ -11,6 +11,7 @@ from app.core.config import settings
 from app.core.security import get_password_hash
 from app.models.base import Message
 from app.models.user import User, NewPassword, Token, UserPublic
+from app.models.apikey import ApiKey
 from app.utils import (
    generate_password_reset_token,
    generate_reset_password_email,
@@ -43,6 +44,27 @@ def login_access_token(
    )


+@router.get("/login/api-key/{api_key}")
+def login_apikey(
+    session: SessionDep,
+    api_key: str,
+) -> Token:
+    """
+    Plain apikey compatible login, get an access token for future requests
+    """
+    user = ApiKey.authenticate(session=session, api_key=api_key)
+    if not user:
+        raise HTTPException(status_code=400, detail="Incorrect apikey")
+    elif not user.is_active:
+        raise HTTPException(status_code=400, detail="Inactive user")
+    access_token_expires = timedelta(minutes=settings.ACCESS_TOKEN_EXPIRE_MINUTES)
+    return Token(
+        access_token=security.create_access_token(
+            user.id, expires_delta=access_token_expires
+        )
+    )
+
+
@router.post("/login/test-token", response_model=UserPublic)
 def test_token(current_user: CurrentUser) -> Any:
    """