from datetime import datetime, timedelta from jose import JWTError, jwt from passlib.context import CryptContext from fastapi import Depends, HTTPException, status from fastapi.security import OAuth2PasswordBearer from sqlalchemy.orm import Session from database import get_db import models SECRET_KEY = "hackonlinces2026supersecretkey" ALGORITHM = "HS256" ACCESS_TOKEN_EXPIRE_MINUTES = 60 pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto") oauth2_scheme = OAuth2PasswordBearer(tokenUrl="auth/login") def hash_password(password: str): return pwd_context.hash(password) def verify_password(plain: str, hashed: str): return pwd_context.verify(plain, hashed) def create_token(data: dict): to_encode = data.copy() expire = datetime.utcnow() + timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES) to_encode.update({"exp": expire}) return jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM) def get_current_user(token: str = Depends(oauth2_scheme), db: Session = Depends(get_db)): try: payload = jwt.decode(token, SECRET_KEY, algorithms=[ALGORITHM]) email = payload.get("sub") if email is None: raise HTTPException(status_code=401, detail="Token inválido") except JWTError: raise HTTPException(status_code=401, detail="Token inválido") user = db.query(models.Usuario).filter(models.Usuario.email == email).first() if not user: raise HTTPException(status_code=401, detail="Usuario no encontrado") return user