127 lines
4.0 KiB
Python
127 lines
4.0 KiB
Python
from fastapi import APIRouter, Depends, HTTPException, status
|
|
|
|
from app.core.deps import get_current_user
|
|
from app.core.supabase_client import supabase, supabase_admin
|
|
from app.schemas.users import UserMe, UserUpdateMe, ChangePasswordIn
|
|
|
|
router = APIRouter(prefix="/users", tags=["users"])
|
|
|
|
|
|
@router.get("/me", response_model=UserMe)
|
|
def get_me(current_user: dict = Depends(get_current_user)):
|
|
"""Devuelve el perfil del usuario autenticado (datos públicos + email/phone de auth)."""
|
|
user_id = current_user["user_id"]
|
|
|
|
try:
|
|
public_row = (
|
|
supabase_admin.table("users")
|
|
.select("id, name, role, created_at")
|
|
.eq("id", user_id)
|
|
.maybe_single()
|
|
.execute()
|
|
)
|
|
public_data = public_row.data or {}
|
|
except Exception as e:
|
|
raise HTTPException(status_code=500, detail=f"Error al leer perfil: {e}")
|
|
|
|
email = current_user.get("email")
|
|
phone = None
|
|
try:
|
|
resp = supabase_admin.auth.admin.get_user_by_id(user_id)
|
|
auth_user = getattr(resp, "user", None) or resp
|
|
email = getattr(auth_user, "email", email)
|
|
phone = getattr(auth_user, "phone", None)
|
|
except Exception:
|
|
pass
|
|
|
|
return UserMe(
|
|
id=user_id,
|
|
email=email,
|
|
phone=phone,
|
|
name=public_data.get("name"),
|
|
role=public_data.get("role") or current_user["role"],
|
|
created_at=(public_data.get("created_at") and str(public_data["created_at"]))
|
|
or None,
|
|
)
|
|
|
|
|
|
@router.patch("/me", status_code=204)
|
|
def update_me(
|
|
body: UserUpdateMe,
|
|
current_user: dict = Depends(get_current_user),
|
|
):
|
|
"""Actualiza nombre / email / teléfono del usuario autenticado."""
|
|
user_id = current_user["user_id"]
|
|
|
|
if body.name is not None:
|
|
try:
|
|
supabase_admin.table("users").update({"name": body.name}).eq(
|
|
"id", user_id
|
|
).execute()
|
|
except Exception as e:
|
|
raise HTTPException(status_code=500, detail=f"Error al actualizar nombre: {e}")
|
|
|
|
auth_payload: dict = {}
|
|
if body.email is not None:
|
|
auth_payload["email"] = str(body.email)
|
|
if body.phone is not None:
|
|
auth_payload["phone"] = body.phone
|
|
|
|
if auth_payload:
|
|
try:
|
|
supabase_admin.auth.admin.update_user_by_id(user_id, auth_payload)
|
|
except Exception as e:
|
|
raise HTTPException(
|
|
status_code=500, detail=f"Error al actualizar credenciales: {e}"
|
|
)
|
|
mirror: dict = {}
|
|
if "email" in auth_payload:
|
|
mirror["email"] = auth_payload["email"]
|
|
if "phone" in auth_payload:
|
|
mirror["phone"] = auth_payload["phone"]
|
|
if mirror:
|
|
try:
|
|
supabase_admin.table("users").update(mirror).eq("id", user_id).execute()
|
|
except Exception:
|
|
pass
|
|
|
|
return
|
|
|
|
|
|
@router.post("/me/change-password", status_code=204)
|
|
def change_password(
|
|
body: ChangePasswordIn,
|
|
current_user: dict = Depends(get_current_user),
|
|
):
|
|
"""Cambia la contraseña verificando primero la actual con signInWithPassword."""
|
|
if body.current_password == body.new_password:
|
|
raise HTTPException(
|
|
status_code=400, detail="La nueva contraseña debe ser distinta de la actual"
|
|
)
|
|
|
|
email = current_user.get("email")
|
|
if not email:
|
|
raise HTTPException(status_code=400, detail="Usuario sin email asociado")
|
|
|
|
try:
|
|
supabase.auth.sign_in_with_password(
|
|
{"email": email, "password": body.current_password}
|
|
)
|
|
except Exception:
|
|
raise HTTPException(
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
detail="Contraseña actual incorrecta",
|
|
)
|
|
|
|
try:
|
|
supabase_admin.auth.admin.update_user_by_id(
|
|
current_user["user_id"], {"password": body.new_password}
|
|
)
|
|
except Exception as e:
|
|
raise HTTPException(
|
|
status_code=500, detail=f"Error al actualizar contraseña: {e}"
|
|
)
|
|
|
|
return
|
|
|