Fix database

2025-08-14 00:25:46 +02:00 · 2025-01-07 05:26:33 +06:00
parent d9e276ad6b
commit bdf4ae9d70
29 changed files with 727 additions and 531 deletions
--- a/backend/app/utils/auth.py
+++ b/backend/app/utils/auth.py
@@ -3,11 +3,11 @@ from fastapi import Depends, HTTPException, status
 from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
 from passlib.context import CryptContext
 from sqlalchemy.orm import Session
-import re

 from .jwt import verify_token
 from ..database import get_db
 from ..crud import employees
+from ..models.employee import Employee

 pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
 security = HTTPBearer(auto_error=False)
@@ -23,7 +23,7 @@ def verify_password(plain_password: str, hashed_password: str) -> bool:
 def get_current_admin(
    credentials: HTTPAuthorizationCredentials = Depends(security),
    db: Session = Depends(get_db)
-) -> dict:
+) -> Employee:
    """Get current admin from token"""
    if not credentials:
        raise HTTPException(
@@ -34,11 +34,16 @@ def get_current_admin(
    
    try:
        token = credentials.credentials
-        payload = verify_token(token, db)
-        employee_id = int(payload.get("sub"))
+        token_data = verify_token(token, db)
+        if not token_data:
+            raise HTTPException(
+                status_code=status.HTTP_401_UNAUTHORIZED,
+                detail="Invalid authentication credentials",
+                headers={"WWW-Authenticate": "Bearer"},
+            )
        
        # Проверяем, что это админ
-        employee = employees.get_employee(db, employee_id)
+        employee = employees.get_employee(db, token_data.employee_id)
        if not employee or not employee.is_admin:
            raise HTTPException(
                status_code=status.HTTP_403_FORBIDDEN,
@@ -47,7 +52,7 @@ def get_current_admin(
            )
            
        return employee
-    except Exception as e:
+    except Exception:
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED,
            detail="Invalid authentication credentials",
@@ -57,7 +62,7 @@ def get_current_admin(
 def get_current_employee(
    credentials: HTTPAuthorizationCredentials = Depends(security),
    db: Session = Depends(get_db)
-) -> dict:
+) -> Employee:
    """Get current employee from token"""
    if not credentials:
        raise HTTPException(
@@ -68,11 +73,16 @@ def get_current_employee(
    
    try:
        token = credentials.credentials
-        payload = verify_token(token, db)
-        employee_id = int(payload.get("sub"))
+        token_data = verify_token(token, db)
+        if not token_data:
+            raise HTTPException(
+                status_code=status.HTTP_401_UNAUTHORIZED,
+                detail="Invalid authentication credentials",
+                headers={"WWW-Authenticate": "Bearer"},
+            )
        
        # Проверяем существование сотрудника
-        employee = employees.get_employee(db, employee_id)
+        employee = employees.get_employee(db, token_data.employee_id)
        if not employee:
            raise HTTPException(
                status_code=status.HTTP_401_UNAUTHORIZED,