Fix: made swagger ui's authrize button work.

ktaka-ccmp · ktaka-ccmp · commit ea77502b379b · 2024-03-03T21:52:46.000+09:00
Swagger config setting: app = FastAPI(swagger_ui_parameters={"persistAuthorization": True}) Ref: swagger-api/swagger-ui#8683 (comment)
diff --git a/admin/auth.py b/admin/auth.py
@@ -20,7 +20,7 @@
 router = APIRouter()
 templates = Jinja2Templates(directory='templates')
 
-cookie_scheme = APIKeyCookie(name="session_id", description="Session Cookie Auth")
+cookie_scheme = APIKeyCookie(name="session_id", description="Admin session_id is created by create_session.sh")
 
 def get_session_by_session_id(session_id: str, cs: Session):
     try:
diff --git a/data/create_data.sh b/data/create_data.sh
@@ -28,8 +28,19 @@ done
 echo "Customer:"
 echo "select * from customer" | sqlite3 $DB | tail
 
-echo "Sessions:"
-echo "select * from sessions" | sqlite3 data/cache.db
-
 echo "Users:"
 echo "select * from user" | sqlite3 $DB
+
+pwgen(){
+    basenc --base64url < /dev/urandom | head -c 64 ; echo
+}
+
+email="admin01@example.com"
+ssid=$(pwgen)
+
+DB=data/cache.db
+
+echo "insert or replace into sessions (id, session_id,user_id,email) values (1, '$ssid', 1, '$email')" | sqlite3 $DB
+echo "Sessions:"
+echo "select * from sessions" | sqlite3 $DB
+
diff --git a/data/db.py b/data/db.py
@@ -42,7 +42,7 @@ class User(DataStoreBase):
 class Sessions(CacheStoreBase):
     __tablename__ = 'sessions'
     id = Column('id', Integer, primary_key = True, autoincrement = True)
-    session_id = Column('session_id', String(64))
+    session_id = Column('session_id', String(254))
     user_id = Column('user_id', Integer)
     email = Column('email', String(254))
 
@@ -67,6 +67,14 @@ class UserBase(BaseModel):
     class Config:
         from_attributes = True
 
+class SessionBase(BaseModel):
+    id: int
+    session_id: str
+    user_id: int
+    email: EmailStr
+    class Config:
+        from_attributes = True
+
 DataStoreBase.metadata.create_all(bind=DataStore)
 CacheStoreBase.metadata.create_all(bind=CacheStore)
 
diff --git a/data/renew_admin_session.sh b/data/renew_admin_session.sh
@@ -0,0 +1,33 @@
+#!/bin/bash
+
+pwgen(){
+    basenc --base64url < /dev/urandom | head -c 64 ; echo
+}
+
+email="admin01@example.com"
+ssid=$(pwgen)
+
+DB=data/cache.db
+
+delete(){
+echo "delete from sessions where email = 'admin01@example.com'" | sqlite3 $DB
+}
+
+delete_all(){
+echo "delete from sessions" | sqlite3 $DB
+}
+
+insert_or_replace(){
+echo "insert or replace into sessions (id, session_id,user_id,email)
+	values (1, '$ssid', 1, '$email')" | sqlite3 $DB
+}
+
+check(){
+echo "Sessions:"
+echo "select * from sessions" | sqlite3 $DB
+echo "session_id:" $ssid
+}
+
+insert_or_replace
+check
+
diff --git a/main.py b/main.py
@@ -5,7 +5,7 @@
 from htmx import htmx, htmx_secret, spa
 from images import image
 
-app = FastAPI()
+app = FastAPI(swagger_ui_parameters={"persistAuthorization": True})
 
 app.include_router(
     spa.router,
