Xj@ ddlmZddlmZddlmZmZmZmZm Z m Z ddl m Z ddl mZddlmZddlmZddlmZdd lmZmZmZdd lmZdd lmZmZmZmZdd l m!Z"dd l#m$Z%ddl&m'Z'ddl(m)Z)ddl*m+Z+ddl,m-Z-m.Z.ddl/m0Z0eZ1eZ2ee3Z4Gdde Z5e16de7e)j8dee'fde de5dedefdZ9e16de.e j:e)j8dee'fde d e-dedefd!Z;e16d"e7ee'eefded#e+defd$Ze16d'ed(eefd)e?d(zd#e+defd*Z@d(S)+) timedelta)Any) APIRouterDependsHeader HTTPExceptionRequeststatus) BaseModel)Session)get_current_user)settings)get_translator)is_account_lockedrecord_failed_loginreset_failed_attempts) get_logger)create_access_tokendecode_access_token revoke_tokenverify_password)user) user_role)get_db_without_tenant)limiter)User) UserCreate UserResponse)RBACBootstrapServicecBeZdZUdZedzed<dZedzed<eed<dS) LoginRequestNusernameemailpassword)__name__ __module__ __qualname__r"str__annotations__r#>/lsinfo/ai/hellotax_ai/base_platform/app/api/v1/access/auth.pyr!r! sAHcDjE3:MMMMMr+r!z/login)response_modelz5/minuterequest login_datadbreturnc |jsttjd t |jrttjdn;#t $r.}ttjt|dd}~wwxYw| t tj|jk }|sttj dddit|j|js t#|jn;#t $r.}ttjt|dd}~wwxYwt$|j|jd ttj dddi|jsttjd t1j||t5j||j }d |D}t9|jt;t<j }tAt|j|j|j!|j"|d|}t$|j|j#d|d|j|j|j$|j!|j"|ddS)NzEmail is required status_codedetailzMAccount locked due to too many failed login attempts. Please try again later.zIncorrect email or passwordzWWW-AuthenticateBearer)r4r5headers)user_idr#z Login failed: incorrect passwordz?Email not verified. Please verify your email before logging in.r8cg|] }|j Sr*code.0roles r, zlogin..P333$)333r+minutessubr# tenant_idr? role_codesdata expires_deltazUser logged in successfullybearer)idr#namerFr?roles) access_token token_typer)%r#rr HTTP_422_UNPROCESSABLE_ENTITYrHTTP_429_TOO_MANY_REQUESTS RuntimeErrorHTTP_503_SERVICE_UNAVAILABLEr(queryrfilterfirstHTTP_401_UNAUTHORIZEDrr$hashed_passwordrloggerbindrLwarning is_verifiedHTTP_403_FORBIDDENrsync_user_role_bindingcrud_user_roleget_user_rolesrrrACCESS_TOKEN_EXPIRE_MINUTESrrFr?inforM) r.r/r0er user_rolesrGaccess_token_expiresrOs r,loginrg&s   > z/?!? @ @ F F H HD  40'2    :.0D E E   j  0 1 1 1 1 j j jF,OX[\]X^X^___ei i j DG:+; <<DDEghhh40'2      1T    /D999.r47CCCJ33 333J**+++$X-QRRR&tw<<ZI$   +   L KKtzK22778UVVV$'ZII      s//A B )BB D11 E);)E$$E)z /register)r-r4z3/houruser_inc|ttj|jk}|rt t jdtj ||}|S)NzEmail already registeredr3)r0obj_in) rUrrVr#rWrr HTTP_400_BAD_REQUEST crud_usercreate)r.rhr0rs r,registerrnlsz 88D>> w}!< = = C C E ED  3.rAr+rBrDrHrK)rOrP) r`rarLrrrbrr(r#rFr?)r0rorerGrfrOs r, refresh_tokenrrzs .rrs/NNNNNNNNNNNNNNNN""""""))))))((((((aaaaaaaaaa%%%%%% ,+++++::::::000000------ 55555555KKKKKK  ^   H  9 Xd++z>EgF[>\>\AA A".A4;AAAA,+AH[6CZ[[x9@AV9W9W    ) /6    \[ Z--'/00wwO_G`G`BBB@DBBBB.-B&E,///6w7G/H/HS0/Y &t 77K[C\C\ 2 2: 2<@ 2 2 2 2 2 2 2r+