Home Explore Help
Register Sign In
metaevos
/
aichat_app
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: b637b73cac
Branches Tags
aichat_app
/
backend
/
app
/
api
/
auth.py

auth.py 4.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150 
  1. """
    2. 

  2. 认证相关API
    3. 

  3. """
    4. 

  4. from fastapi import APIRouter, Depends, HTTPException, status
    5. 

  5. from fastapi.security import OAuth2PasswordBearer, OAuth2PasswordRequestForm
    6. 

  6. from sqlalchemy.ext.asyncio import AsyncSession
    7. 

  7. from sqlalchemy import select
    8. 

  8. from app.core.database import get_db
    9. 

  9. from app.core.security import (
    10. 

  10.     verify_password,
    11. 

  11.     get_password_hash,
    12. 

  12.     create_access_token,
    13. 

  13.     create_refresh_token,
    14. 

  14.     decode_token,
    15. 

  15.     encrypt_api_key
    16. 

  16. )
    17. 

  17. from app.models.user import User
    18. 

  18. from app.schemas.user import UserCreate, UserResponse, TokenResponse, APIKeyCreate, APIKeyResponse
    19. 

  19. from typing import List
    20. 

  20. 

  21. router = APIRouter()
    22. 

  22. oauth2_scheme = OAuth2PasswordBearer(tokenUrl="/api/auth/login")
    23. 

  23. 

  24. 

  25. async def get_current_user(
    26. 

  26.     token: str = Depends(oauth2_scheme),
    27. 

  27.     db: AsyncSession = Depends(get_db)
    28. 

  28. ) -> User:
    29. 

  29.     """获取当前用户(依赖注入)"""
    30. 

  30.     payload = decode_token(token)
    31. 

  31.     if not payload:
    32. 

  32.         raise HTTPException(
    33. 

  33.             status_code=status.HTTP_401_UNAUTHORIZED,
    34. 

  34.             detail="无效的令牌"
    35. 

  35.         )
    36. 

  36. 

  37.     user_id = payload.get("user_id")
    38. 

  38.     result = await db.execute(select(User).where(User.id == user_id))
    39. 

  39.     user = result.scalar_one_or_none()
    40. 

  40. 

  41.     if not user or not user.is_active:
    42. 

  42.         raise HTTPException(
    43. 

  43.             status_code=status.HTTP_401_UNAUTHORIZED,
    44. 

  44.             detail="用户不存在或已禁用"
    45. 

  45.         )
    46. 

  46. 

  47.     return user
    48. 

  48. 

  49. 

  50. @router.post("/register", response_model=UserResponse)
    51. 

  51. async def register(user_data: UserCreate, db: AsyncSession = Depends(get_db)):
    52. 

  52.     """用户注册"""
    53. 

  53.     # 检查用户名是否存在
    54. 

  54.     result = await db.execute(select(User).where(User.username == user_data.username))
    55. 

  55.     if result.scalar_one_or_none():
    56. 

  56.         raise HTTPException(status_code=400, detail="用户名已存在")
    57. 

  57. 

  58.     # 检查邮箱是否存在
    59. 

  59.     result = await db.execute(select(User).where(User.email == user_data.email))
    60. 

  60.     if result.scalar_one_or_none():
    61. 

  61.         raise HTTPException(status_code=400, detail="邮箱已被注册")
    62. 

  62. 

  63.     # 创建用户
    64. 

  64.     user = User(
    65. 

  65.         username=user_data.username,
    66. 

  66.         email=user_data.email,
    67. 

  67.         password_hash=get_password_hash(user_data.password)
    68. 

  68.     )
    69. 

  69.     db.add(user)
    70. 

  70.     await db.commit()
    71. 

  71.     await db.refresh(user)
    72. 

  72. 

  73.     return user
    74. 

  74. 

  75. 

  76. @router.post("/login", response_model=TokenResponse)
    77. 

  77. async def login(
    78. 

  78.     form_data: OAuth2PasswordRequestForm = Depends(),
    79. 

  79.     db: AsyncSession = Depends(get_db)
    80. 

  80. ):
    81. 

  81.     """用户登录"""
    82. 

  82.     # 查找用户
    83. 

  83.     result = await db.execute(select(User).where(User.username == form_data.username))
    84. 

  84.     user = result.scalar_one_or_none()
    85. 

  85. 

  86.     if not user or not verify_password(form_data.password, user.password_hash):
    87. 

  87.         raise HTTPException(
    88. 

  88.             status_code=status.HTTP_401_UNAUTHORIZED,
    89. 

  89.             detail="用户名或密码错误"
    90. 

  90.         )
    91. 

  91. 

  92.     # 生成令牌
    93. 

  93.     access_token = create_access_token({"user_id": user.id})
    94. 

  94.     refresh_token = create_refresh_token({"user_id": user.id})
    95. 

  95. 

  96.     return {
    97. 

  97.         "access_token": access_token,
    98. 

  98.         "refresh_token": refresh_token,
    99. 

  99.         "token_type": "bearer"
    100. 

  100.     }
    101. 

  101. 

  102. 

  103. @router.get("/me", response_model=UserResponse)
    104. 

  104. async def get_current_user_info(current_user: User = Depends(get_current_user)):
    105. 

  105.     """获取当前用户信息"""
    106. 

  106.     return current_user
    107. 

  107. 

  108. 

  109. @router.post("/api-keys", response_model=APIKeyResponse)
    110. 

  110. async def save_api_key(
    111. 

  111.     api_key_data: APIKeyCreate,
    112. 

  112.     current_user: User = Depends(get_current_user),
    113. 

  113.     db: AsyncSession = Depends(get_db)
    114. 

  114. ):
    115. 

  115.     """保存用户的API Key"""
    116. 

  116.     # 加密API Key
    117. 

  117.     encrypted_key = encrypt_api_key(api_key_data.api_key)
    118. 

  118. 

  119.     # 更新用户的加密API Keys
    120. 

  120.     if not current_user.encrypted_api_keys:
    121. 

  121.         current_user.encrypted_api_keys = {}
    122. 

  122. 

  123.     current_user.encrypted_api_keys[api_key_data.provider] = {
    124. 

  124.         "key": encrypted_key,
    125. 

  125.         "model": api_key_data.model
    126. 

  126.     }
    127. 

  127. 

  128.     await db.commit()
    129. 

  129. 

  130.     return {
    131. 

  131.         "provider": api_key_data.provider,
    132. 

  132.         "model": api_key_data.model,
    133. 

  133.         "status": "active"
    134. 

  134.     }
    135. 

  135. 

  136. 

  137. @router.get("/api-keys", response_model=List[APIKeyResponse])
    138. 

  138. async def get_api_keys(current_user: User = Depends(get_current_user)):
    139. 

  139.     """获取用户配置的API Key列表(不返回实际key)"""
    140. 

  140.     if not current_user.encrypted_api_keys:
    141. 

  141.         return []
    142. 

  142. 

  143.     return [
    144. 

  144.         {
    145. 

  145.             "provider": provider,
    146. 

  146.             "model": config.get("model"),
    147. 

  147.             "status": "active"
    148. 

  148.         }
    149. 

  149.         for provider, config in current_user.encrypted_api_keys.items()
    150. 

  150.     ]
    151.