Feat/api jwt (#1212)

2023-09-25 12:49:16 +08:00
parent c40ee7e629
commit 227f9fb77d
15 changed files with 142 additions and 339 deletions
--- a/api/controllers/console/auth/login.py
+++ b/api/controllers/console/auth/login.py
@@ -6,7 +6,6 @@ from flask_restful import Resource, reqparse

 import services
 from controllers.console import api
-from controllers.console.error import AccountNotLinkTenantError
 from controllers.console.setup import setup_required
 from libs.helper import email
 from libs.password import valid_password
@@ -37,12 +36,12 @@ class LoginApi(Resource):
        except Exception:
            pass

-        flask_login.login_user(account, remember=args['remember_me'])
        AccountService.update_last_login(account, request)

        # todo: return the user info
+        token = AccountService.get_account_jwt_token(account)

-        return {'result': 'success'}
+        return {'result': 'success', 'data': token}


 class LogoutApi(Resource):
--- a/api/controllers/console/auth/oauth.py
+++ b/api/controllers/console/auth/oauth.py
@@ -2,9 +2,8 @@ import logging
 from datetime import datetime
 from typing import Optional

-import flask_login
 import requests
-from flask import request, redirect, current_app, session
+from flask import request, redirect, current_app
 from flask_restful import Resource

 from libs.oauth import OAuthUserInfo, GitHubOAuth, GoogleOAuth
@@ -75,12 +74,11 @@ class OAuthCallback(Resource):
            account.initialized_at = datetime.utcnow()
            db.session.commit()

-        # login user
-        session.clear()
-        flask_login.login_user(account, remember=True)
        AccountService.update_last_login(account, request)

-        return redirect(f'{current_app.config.get("CONSOLE_WEB_URL")}?oauth_login=success')
+        token = AccountService.get_account_jwt_token(account)
+
+        return redirect(f'{current_app.config.get("CONSOLE_WEB_URL")}?console_token={token}')


 def _get_account_by_openid_or_email(provider: str, user_info: OAuthUserInfo) -> Optional[Account]:
--- a/api/controllers/console/setup.py
+++ b/api/controllers/console/setup.py
@@ -1,7 +1,6 @@
 # -*- coding:utf-8 -*-
 from functools import wraps

-import flask_login
 from flask import request, current_app
 from flask_restful import Resource, reqparse

@@ -58,9 +57,6 @@ class SetupApi(Resource):
        )

        setup()
-
-        # Login
-        flask_login.login_user(account)
        AccountService.update_last_login(account, request)

        return {'result': 'success'}, 201