CDCC
/
registro_escolar
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
16 Commits
4 Branches
Tree: f280ee2a5a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f280ee2a5a'
${ noResults }
registro_escolar/authlib.py

authlib.py 2.9KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. 

  2. import hashlib, time, json

  3. from cryptography.fernet import Fernet

  4. from connect import connection, engine, metadata

  5. import sqlalchemy as db

  6. 

  7. def hash_pass(password):

  8.     return hashlib.sha256(password.encode()).hexdigest()

  9. 

  10. class Auth:

  11.     def __init__(self, session, expire=0):

  12.         self.session = session

  13.         self.id = None

  14.         self.email = None

  15.         self.fernet = Fernet(b'3UH3USxvBcFITpnVa2gvTUIMO5jbc8jqU_Q1O6SNBLs=')

  16. 

  17.         if session.get("id"):

  18.             value = json.loads(self.fernet.decrypt(session["id"]))

  19.             self.id = value["id"]

  20.             self.email = value["email"]

  21.         # Remember to always change

  22.         self.expire=expire

  23. 

  24.     def checkAuth(self):

  25.         if self.expire and time.time() - self.session["tiempo"] > self.expire:

  26.             self.delAuth()

  27.         else:

  28.             self.session["tiempo"] = time.time()

  29. 

  30.         return self.session.get("gallitosccom")

  31. 

  32.     def setAuth(self, id, email):

  33.         self.session["gallitosccom"] = True

  34.         self.id = id

  35.         self.email = email

  36.         self.session["id"] = self.fernet.encrypt(json.dumps({"id": id, "email": email}).encode())

  37.         if self.expire:

  38.             self.session["tiempo"] = time.time()

  39. 

  40.     def delAuth(self):

  41.         if self.session.get("gallitosccom"):

  42.             self.session.pop("gallitosccom", None)

  43.             self.session.pop("id", None)

  44.             # self.session.pop("email", None)

  45. 

  46.     def do_login(self, username, password):

  47.         password = hash_pass(password)

  48.         usuarios = db.Table('usuarios', metadata, autoload=True, autoload_with=engine)

  49.         query = db.select([usuarios])

  50.         if username.find("@") > 1:

  51.             print("email")

  52.             query = query.select_from(usuarios).where(usuarios.columns.email == username)

  53.         else:

  54.             print("username")

  55.             query = query.select_from(usuarios).where(usuarios.columns.username == username)

  56. 

  57.         result = connection.execute(query).fetchone()

  58.         if result and password == result["password"]:

  59.             print(result)

  60.             self.setAuth(result["id"], result["email"])

  61.             # Añadir feature de last login.

  62.             return True

  63. 

  64.         return False

  65. 

  66.     def checkRole(self, tipo):

  67.         tables = {"admin": "administracion", "madre": "madres", "enfermera":"enfermeras", "facultad": "facultad", "estudiante": "estudiantes"}

  68.         if tipo in tables:

  69.             table = tables[tipo]

  70.         else:

  71.             return False

  72. 

  73.         usuarios = db.Table('usuarios', metadata, autoload=True, autoload_with=engine)

  74.         role = db.Table(table, metadata, autoload=True, autoload_with=engine)

  75.         query = db.select([usuarios, role])

  76.         query = query.select_from(usuarios.join(role, usuarios.columns.id == role.columns.user_id)).where(role.columns.user_id == self.id)

  77.         result = connection.execute(query).fetchone()

  78. 

  79.         if result:

  80.             return True

  81. 

  82.         return False

  83. 

  84.     def do_logout(self):

  85.         self.delAuth()