mirror of
https://github.com/aljazceru/nutshell.git
synced 2025-12-29 14:34:29 +01:00
a0ef44dba0
* auth server * cleaning up * auth ledger class * class variables -> instance variables * annotations * add models and api route * custom amount and api prefix * add auth db * blind auth token working * jwt working * clean up * JWT works * using openid connect server * use oauth server with password flow * new realm * add keycloak docker * hopefully not garbage * auth works * auth kinda working * fix cli * auth works for send and receive * pass auth_db to Wallet * auth in info * refactor * fix supported * cache mint info * fix settings and endpoints * add description to .env.example * track changes for openid connect client * store mint in db * store credentials * clean up v1_api.py * load mint info into auth wallet * fix first login * authenticate if refresh token fails * clear auth also middleware * use regex * add cli command * pw works * persist keyset amounts * add errors.py * do not start auth server if disabled in config * upadte poetry * disvoery url * fix test * support device code flow * adopt latest spec changes * fix code flow * mint max bat dynamic * mypy ignore * fix test * do not serialize amount in authproof * all auth flows working * fix tests * submodule * refactor * test * dont sleep * test * add wallet auth tests * test differently * test only keycloak for now * fix creds * daemon * fix test * install everything * install jinja * delete wallet for every test * auth: use global rate limiter * test auth rate limit * keycloak hostname * move keycloak test data * reactivate all tests * add readme * load proofs * remove unused code * remove unused code * implement change suggestions by ok300 * add error codes * test errors
107 lines
3.3 KiB
Python
107 lines
3.3 KiB
Python
from fastapi import APIRouter, Request
|
|
from loguru import logger
|
|
|
|
from ...core.errors import KeysetNotFoundError
|
|
from ...core.models import (
|
|
KeysetsResponse,
|
|
KeysetsResponseKeyset,
|
|
KeysResponse,
|
|
KeysResponseKeyset,
|
|
PostAuthBlindMintRequest,
|
|
PostAuthBlindMintResponse,
|
|
)
|
|
from ...mint.startup import auth_ledger
|
|
|
|
auth_router: APIRouter = APIRouter()
|
|
|
|
|
|
@auth_router.get(
|
|
"/v1/auth/blind/keys",
|
|
name="Mint public keys",
|
|
summary="Get the public keys of the newest mint keyset",
|
|
response_description=(
|
|
"All supported token values their associated public keys for all active keysets"
|
|
),
|
|
response_model=KeysResponse,
|
|
)
|
|
async def keys():
|
|
"""This endpoint returns a dictionary of all supported token values of the mint and their associated public key."""
|
|
logger.trace("> GET /v1/auth/blind/keys")
|
|
keyset = auth_ledger.keyset
|
|
keyset_for_response = []
|
|
for keyset in auth_ledger.keysets.values():
|
|
if keyset.active:
|
|
keyset_for_response.append(
|
|
KeysResponseKeyset(
|
|
id=keyset.id,
|
|
unit=keyset.unit.name,
|
|
keys={k: v for k, v in keyset.public_keys_hex.items()},
|
|
)
|
|
)
|
|
return KeysResponse(keysets=keyset_for_response)
|
|
|
|
|
|
@auth_router.get(
|
|
"/v1/auth/blind/keys/{keyset_id}",
|
|
name="Keyset public keys",
|
|
summary="Public keys of a specific keyset",
|
|
response_description=(
|
|
"All supported token values of the mint and their associated"
|
|
" public key for a specific keyset."
|
|
),
|
|
response_model=KeysResponse,
|
|
)
|
|
async def keyset_keys(keyset_id: str) -> KeysResponse:
|
|
"""
|
|
Get the public keys of the mint from a specific keyset id.
|
|
"""
|
|
logger.trace(f"> GET /v1/auth/blind/keys/{keyset_id}")
|
|
|
|
keyset = auth_ledger.keysets.get(keyset_id)
|
|
if keyset is None:
|
|
raise KeysetNotFoundError(keyset_id)
|
|
|
|
keyset_for_response = KeysResponseKeyset(
|
|
id=keyset.id,
|
|
unit=keyset.unit.name,
|
|
keys={k: v for k, v in keyset.public_keys_hex.items()},
|
|
)
|
|
return KeysResponse(keysets=[keyset_for_response])
|
|
|
|
|
|
@auth_router.get(
|
|
"/v1/auth/blind/keysets",
|
|
name="Active keysets",
|
|
summary="Get all active keyset id of the mind",
|
|
response_model=KeysetsResponse,
|
|
response_description="A list of all active keyset ids of the mint.",
|
|
)
|
|
async def keysets() -> KeysetsResponse:
|
|
"""This endpoint returns a list of keysets that the mint currently supports and will accept tokens from."""
|
|
logger.trace("> GET /v1/auth/blind/keysets")
|
|
keysets = []
|
|
for id, keyset in auth_ledger.keysets.items():
|
|
keysets.append(
|
|
KeysetsResponseKeyset(
|
|
id=keyset.id,
|
|
unit=keyset.unit.name,
|
|
active=keyset.active,
|
|
)
|
|
)
|
|
return KeysetsResponse(keysets=keysets)
|
|
|
|
|
|
@auth_router.post(
|
|
"/v1/auth/blind/mint",
|
|
name="Mint blind auth tokens",
|
|
summary="Mint blind auth tokens for a user.",
|
|
response_model=PostAuthBlindMintResponse,
|
|
)
|
|
async def auth_blind_mint(
|
|
request_data: PostAuthBlindMintRequest, request: Request
|
|
) -> PostAuthBlindMintResponse:
|
|
signatures = await auth_ledger.mint_blind_auth(
|
|
outputs=request_data.outputs, user=request.state.user
|
|
)
|
|
return PostAuthBlindMintResponse(signatures=signatures)
|