| | |
|---|
| | | from fastapi import APIRouter, Depends |
|---|
| | | from app.api import Response, pwd_context, get_current_user, ResponseList |
|---|
| | | from app.models.public_api_model import AppRegisterModel |
|---|
| | | from app.config.const import USER_STATSU_DELETE |
|---|
| | | from app.models.base_model import get_db |
|---|
| | | from app.models.user import PageParameter, UserStatus, UserInfo, LoginData |
|---|
| | | from app.models.user import PageParameter, UserStatus, UserInfo, LoginData, UserPassword, UserDept |
|---|
| | | from app.models.user_model import UserModel |
|---|
| | | from app.service.auth import is_valid_password, verify_password, password_rsa |
|---|
| | | from app.service.user import get_user_list, edit_user_status, delete_user_data, create_user, edit_user_data, \ |
|---|
| | | edit_user_pwd, get_user_info, get_user_routers, get_user_menus |
|---|
| | | edit_user_pwd, get_user_info, get_user_routers, get_user_menus, get_user_permission, get_user_dept, change_user_pwd, \ |
|---|
| | | user_data_service, edit_user_dept |
|---|
| | | |
|---|
| | | user_router = APIRouter() |
|---|
| | | |
|---|
| | |
|---|
| | | async def add_user(user: UserInfo, current_user: UserModel = Depends(get_current_user), db=Depends(get_db)): |
|---|
| | | if not user.userName: |
|---|
| | | return Response(code=400, msg="The userName cannot be empty!") |
|---|
| | | db_user = db.query(UserModel).filter(UserModel.username == user.userName).first() |
|---|
| | | if "@" in user.userName: |
|---|
| | | return Response(code=400, msg="Username cannot contain @") |
|---|
| | | if user.pwd: |
|---|
| | | if not is_valid_password(user.pwd): |
|---|
| | | return Response(code=400, msg="The password must be at least 8 and contain both numbers and letters") |
|---|
| | | db_user = db.query(UserModel).filter(UserModel.username == user.userName, UserModel.status != USER_STATSU_DELETE).first() |
|---|
| | | if db_user: |
|---|
| | | return Response(code=200, msg="user already created") |
|---|
| | | pwd = user.pwd |
|---|
| | | if not pwd: |
|---|
| | | pwd = "000000" |
|---|
| | | is_create = await create_user(db, user.userName, user.email, user.phone, user.loginName, pwd, user.roles, |
|---|
| | | pwd = "basic123456" |
|---|
| | | user_flag = await create_user(db, user.userName, user.email, user.phone, user.loginName, pwd, user.roles, |
|---|
| | | user.groups, current_user.id) |
|---|
| | | if not is_create: |
|---|
| | | return Response(code=500, msg="user create failure", data={}) |
|---|
| | | return Response(code=200, msg="user create successfully", data={}) |
|---|
| | | # if not is_create: |
|---|
| | | # return Response(code=500, msg="user create failure", data={}) |
|---|
| | | return Response(code=200, msg="user create successfully", data={"userFlag": user_flag}) |
|---|
| | | |
|---|
| | | |
|---|
| | | @user_router.put("/edit_user", response_model=Response) |
|---|
| | | async def edit_user(user: UserInfo, current_user: UserModel = Depends(get_current_user), db=Depends(get_db)): |
|---|
| | | # if not user.userName: |
|---|
| | | # return Response(code=400, msg="The userName cannot be empty!") |
|---|
| | | user_info = db.query(UserModel).filter(UserModel.id == user.userId).first() |
|---|
| | | if not user_info: |
|---|
| | | return Response(code=200, msg="user does not exist") |
|---|
| | | # db_user = db.query(UserModel).filter(UserModel.username == user.userName).first() |
|---|
| | | # if db_user and db_user.id != user.userId: |
|---|
| | | # return Response(code=200, msg="user already created") |
|---|
| | | is_edit = await edit_user_data(db, user.userId, user.email, user.phone, user.loginName, user.roles, user.groups) |
|---|
| | | if not is_edit: |
|---|
| | | return Response(code=500, msg="user edit failure", data={}) |
|---|
| | |
|---|
| | | return Response(code=200, msg="user pwd reset successfully", data={}) |
|---|
| | | |
|---|
| | | |
|---|
| | | @user_router.put("/change_password", response_model=Response) |
|---|
| | | async def change_user_password(user: UserPassword, current_user: UserModel = Depends(get_current_user),db=Depends(get_db)): |
|---|
| | | user_info = db.query(UserModel).filter(UserModel.id==current_user.id).first() |
|---|
| | | if not user_info: |
|---|
| | | return Response(code=401, msg="Incorrect change password !") |
|---|
| | | old_password = await password_rsa(user.oldPassword) |
|---|
| | | new_password = await password_rsa(user.newPassword) |
|---|
| | | if not verify_password(old_password, user_info.hashed_password): |
|---|
| | | return Response(code=400, msg="Incorrect password !") |
|---|
| | | if not is_valid_password(new_password): |
|---|
| | | return Response(code=400, msg="The password must be at least 8 and contain both numbers and letters") |
|---|
| | | is_edit = await change_user_pwd(db, user_info.id, new_password) |
|---|
| | | if not is_edit: |
|---|
| | | return Response(code=500, msg="user pwd change failure", data={}) |
|---|
| | | return Response(code=200, msg="user pwd change success", data={}) |
|---|
| | | |
|---|
| | | |
|---|
| | | @user_router.get("/user_info", response_model=Response) |
|---|
| | | async def user_info(current_user: UserModel = Depends(get_current_user),db=Depends(get_db)): |
|---|
| | | user_info = await get_user_info(db, current_user.id) |
|---|
| | |
|---|
| | | menus = await get_user_menus(db, current_user.id) |
|---|
| | | # return Response(code=200, msg="successfully", data=menus) |
|---|
| | | # result = [item.to_dict() for item in agents] |
|---|
| | | return ResponseList(code=200, msg="successfully", data=menus) |
|---|
| | | return ResponseList(code=200, msg="successfully", data=menus) |
|---|
| | | |
|---|
| | | |
|---|
| | | @user_router.get("/permission", response_model=Response) |
|---|
| | | async def user_permission(userId:int, current_user: UserModel = Depends(get_current_user),db=Depends(get_db)): |
|---|
| | | menus = await get_user_permission(db, userId) |
|---|
| | | return Response(code=200, msg="successfully", data=menus) |
|---|
| | | |
|---|
| | | |
|---|
| | | @user_router.get("/dept", response_model=Response) |
|---|
| | | async def user_dept_api(userId:int, current_user: UserModel = Depends(get_current_user),db=Depends(get_db)): |
|---|
| | | menus = await get_user_dept(db, userId) |
|---|
| | | return Response(code=200, msg="successfully", data=menus) |
|---|
| | | |
|---|
| | | |
|---|
| | | @user_router.get("/user_data", response_model=Response) |
|---|
| | | async def user_data_api(userId, current_user: UserModel = Depends(get_current_user),db=Depends(get_db)): |
|---|
| | | user_info = await user_data_service(db, userId) |
|---|
| | | if not user_info: |
|---|
| | | return Response(code=500, msg="user get failure", data={}) |
|---|
| | | return Response(code=200, msg="successfully", data=user_info) |
|---|
| | | |
|---|
| | | |
|---|
| | | |
|---|
| | | @user_router.put("/dept", response_model=Response) |
|---|
| | | async def edit_user(user: UserDept, current_user: UserModel = Depends(get_current_user), db=Depends(get_db)): |
|---|
| | | user_info = db.query(UserModel).filter(UserModel.id == user.userId).first() |
|---|
| | | if not user_info: |
|---|
| | | return Response(code=400, msg="user does not exist") |
|---|
| | | is_edit = await edit_user_dept(db, user.userId, user.depts) |
|---|
| | | if not is_edit: |
|---|
| | | return Response(code=500, msg="user edit failure", data={}) |
|---|
| | | return Response(code=200, msg="user edit successfully", data={}) |
|---|
