69 lines
2.0 KiB
Python
69 lines
2.0 KiB
Python
import time
|
|
from werkzeug.security import generate_password_hash, check_password_hash
|
|
from flask_sqlalchemy import SQLAlchemy
|
|
from authlib.integrations.sqla_oauth2 import (
|
|
OAuth2ClientMixin,
|
|
OAuth2AuthorizationCodeMixin,
|
|
OAuth2TokenMixin,
|
|
)
|
|
from flask_login import UserMixin
|
|
|
|
db = SQLAlchemy()
|
|
|
|
|
|
class User(db.Model, UserMixin):
|
|
id = db.Column(db.Integer, primary_key=True)
|
|
username = db.Column(db.String(40), unique=True)
|
|
name = db.Column(db.String(100))
|
|
email = db.Column(db.String(100), nullable=False, unique=True)
|
|
password_hash = db.Column(db.String(100), nullable=False)
|
|
clients = db.relationship('OAuth2Client')
|
|
auth_codes = db.relationship('OAuth2AuthorizationCode')
|
|
tokens = db.relationship('OAuth2Token')
|
|
|
|
def __repr__(self):
|
|
return "<{}:{}>".format(self.id, self.username)
|
|
|
|
def get_user_id(self):
|
|
return self.id
|
|
|
|
def set_password(self, password):
|
|
self.password_hash = generate_password_hash(password)
|
|
|
|
def check_password(self, password):
|
|
return check_password_hash(self.password_hash, password)
|
|
|
|
|
|
class OAuth2Client(db.Model, OAuth2ClientMixin):
|
|
__tablename__ = 'oauth2_client'
|
|
|
|
id = db.Column(db.Integer, primary_key=True)
|
|
user_id = db.Column(
|
|
db.Integer, db.ForeignKey('user.id', ondelete='CASCADE'))
|
|
user = db.relationship('User')
|
|
|
|
|
|
class OAuth2AuthorizationCode(db.Model, OAuth2AuthorizationCodeMixin):
|
|
__tablename__ = 'oauth2_code'
|
|
|
|
id = db.Column(db.Integer, primary_key=True)
|
|
user_id = db.Column(
|
|
db.Integer, db.ForeignKey('user.id', ondelete='CASCADE'))
|
|
user = db.relationship('User')
|
|
|
|
|
|
class OAuth2Token(db.Model, OAuth2TokenMixin):
|
|
__tablename__ = 'oauth2_token'
|
|
|
|
id = db.Column(db.Integer, primary_key=True)
|
|
user_id = db.Column(
|
|
db.Integer, db.ForeignKey('user.id', ondelete='CASCADE'))
|
|
user = db.relationship('User')
|
|
|
|
def is_refresh_token_active(self):
|
|
if self.revoked:
|
|
return False
|
|
expires_at = self.issued_at + self.expires_in * 2
|
|
return expires_at >= time.time()
|
|
|