chris/mkt.ose.tw
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
9a43563d4536622643e13a11b3dcbe801a5e5a4d
mkt.ose.tw/backend/app/api/dependencies/auth.py
Chris 74d612aca1 first commit
2026-03-23 20:23:58 +08:00

43 lines
1.4 KiB
Python
Raw Blame History

from __future__ import annotations
from fastapi import Depends, HTTPException, status
from fastapi.security import HTTPAuthorizationCredentials, HTTPBearer
from app.application.auth.context import AuthContextService
from app.schemas.auth import AuthenticatedUser
bearer_scheme = HTTPBearer(auto_error=False)
async def get_current_user(
credentials: HTTPAuthorizationCredentials | None = Depends(bearer_scheme),
) -> AuthenticatedUser:
"""Resolve current user from a Directus-issued bearer token.
This keeps auth enforcement centralized and makes later permission mapping
easier to add without rewriting every route.
"""
if not credentials or not credentials.credentials:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Authorization header is required.",
)
service = AuthContextService()
return await service.get_authenticated_user(credentials.credentials)
async def get_access_token(
credentials: HTTPAuthorizationCredentials | None = Depends(bearer_scheme),
) -> str:
"""Return the raw Directus bearer token for repository passthrough reads."""
if not credentials or not credentials.credentials:
raise HTTPException(
status_code=status.HTTP_401_UNAUTHORIZED,
detail="Authorization header is required.",
)
return credentials.credentials
Reference in New Issue View Git Blame Copy Permalink