Spaces:

Gregniuki
/

Loginauth

Running

App Files Files Community

Gregniuki commited on Mar 25

Commit

22d2b66

•

1 Parent(s): b67759d

Update appp.py

Browse files

Files changed (1) hide show

appp.py +24 -15

appp.py CHANGED Viewed

@@ -118,21 +118,30 @@ async def register_google(request: Request):
 @app.get("/auth/callback")
 async def auth_callback(request: Request, db: Session = Depends(get_db)):
-    token = await oauth.google.authorize_access_token(request)
-    user_info = await oauth.google.parse_id_token(request, token)
-    existing_user = db.query(User).filter(User.email == user_info['email']).first()
-    if existing_user:
-        request.session["user_info"] = {"username": existing_user.username, "email": existing_user.email}
-        return RedirectResponse(url="/login")
-    else:
-        new_user = User(email=user_info['email'], username=user_info.get('name'), is_verified=True)
-        db.add(new_user)
-        db.commit()
-        db.refresh(new_user)
-        request.session["user_info"] = {"username": new_user.username, "email": new_user.email}
-    return RedirectResponse(url="/registration_successful")
 @app.get("/registration_successful", response_class=HTMLResponse)
 async def registration_successful(request: Request):

 @app.get("/auth/callback")
 async def auth_callback(request: Request, db: Session = Depends(get_db)):
+    try:
+        token = await oauth.google.authorize_access_token(request)
+        user_info = await oauth.google.parse_id_token(request, token)
+        existing_user = db.query(User).filter(User.email == user_info['email']).first()
+        if existing_user:
+            access_token = create_access_token(data={"sub": existing_user.email}, expires_delta=timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES))
+            response = RedirectResponse(url="/protected")
+            response.set_cookie(key="access_token", value=f"Bearer {access_token}", httponly=True, secure=True, samesite='Lax')
+            return response
+        else:
+            new_user = User(email=user_info['email'], username=user_info.get('name'), is_verified=True)
+            db.add(new_user)
+            db.commit()
+            db.refresh(new_user)
+            access_token = create_access_token(data={"sub": new_user.email}, expires_delta=timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES))
+            response = RedirectResponse(url="/protected")
+            response.set_cookie(key="access_token", value=f"Bearer {access_token}", httponly=True, secure=True, samesite='Lax')
+            return response
+    except Exception as e:
+        # Handle any exceptions that may occur during the OAuth process
+        print(f"OAuth exception: {e}")
+        raise HTTPException(status_code=status.HTTP_500_INTERNAL_SERVER_ERROR, detail="An error occurred during OAuth authentication")
 @app.get("/registration_successful", response_class=HTMLResponse)
 async def registration_successful(request: Request):