HCiddlmZmZmZddlmZddlmZmZddl m Z ddl m Z ddl mZddlmZddlmZmZdd lmZdd lmZmZmZmZmZed ZeZeeeefd ededefdZdefdZ y))Depends HTTPExceptionstatus)OAuth2PasswordBearer)Sessionselect)JWTError) decode_token) get_settings) get_session)UserRole)UserSessionRepository)ERR_INVALID_TOKENERR_NOT_VALID_CREDERR_USER_NOT_FOUNDERR_USER_DELETED ERR_FORBIDDENz/api/auth/login)tokenUrltokensessionreturnc t|}|jddk7rttjt |jd}|jd}|r|sttjt  tj||}|sttjt ttjtj|k(tjdk(}|j|j!}|sttjt"|S#t $r$}ttjtd}~wwxYw)Ntypeaccess status_codedetailsubsidF)r getrrHTTP_401_UNAUTHORIZEDrr rrget_active_by_session_idrr whereemail is_deletedexecfirstr) rrpayloadrr e user_sessionstmtusers >/var/www/html/story-book/Story-Book-python-api/app/api/deps.pyget_current_userr/s au% ;;v ( *F,H,HQbc ckk% kk% #F,H,HQbc c )AA'3OL (D(DM^__ $<  djjC/E1I JD <<  # # %D (D(DM_`` K a(D(DM_``asBE E- E((E- allowed_rolesc>ttfdtffd }|S)z] Correct FastAPI-compatible role checker. Must return a callable, NOT Depends(). current_usercjK|jvrttjt|Sw)Nr)rolerrHTTP_403_FORBIDDENr)r2r0s r. role_checkerz#require_roles..role_checker1s6   M 1"55$ s03)rr/r )r0r6s` r. require_rolesr7,s" 188H0I N)!fastapirrrfastapi.securityrsqlmodelrrjoser app.utils.tokensr app.core.configr app.db.sessionr app.modelsr r"app.repositories.user_session_reporapp.core.constantsrrrrr oauth2_schemesettingsstrr/r7r8r.rGsx221$)(&!D%.?@ >")-"8WU`MaC7fj. $ r8