xiamuceer
51 lines
1.8 KiB
Python
51 lines
1.8 KiB
Python
"""
|
|
认证中间件 - 从 Cookie 中提取用户信息并注入到 request.state
|
|
"""
|
|
from fastapi import Request, HTTPException
|
|
from starlette.middleware.base import BaseHTTPMiddleware
|
|
from app.user_manager import user_manager
|
|
from app.logger import get_logger
|
|
|
|
logger = get_logger(__name__)
|
|
|
|
|
|
class AuthMiddleware(BaseHTTPMiddleware):
|
|
"""认证中间件"""
|
|
|
|
async def dispatch(self, request: Request, call_next):
|
|
"""
|
|
处理请求,从 Cookie 中提取用户 ID 并注入到 request.state
|
|
"""
|
|
# 从 Cookie 中获取用户 ID
|
|
user_id = request.cookies.get("user_id")
|
|
|
|
# 注入到 request.state
|
|
if user_id:
|
|
user = await user_manager.get_user(user_id)
|
|
if user:
|
|
# 检查用户是否被禁用 (trust_level = -1)
|
|
if user.trust_level == -1:
|
|
logger.warning(f"禁用用户尝试访问: {user_id} ({user.username})")
|
|
# 清除用户状态,视为未登录
|
|
request.state.user_id = None
|
|
request.state.user = None
|
|
request.state.is_admin = False
|
|
else:
|
|
# 用户正常,注入状态
|
|
request.state.user_id = user_id
|
|
request.state.user = user
|
|
request.state.is_admin = user.is_admin
|
|
else:
|
|
# 用户不存在,清除状态
|
|
request.state.user_id = None
|
|
request.state.user = None
|
|
request.state.is_admin = False
|
|
else:
|
|
# 未登录
|
|
request.state.user_id = None
|
|
request.state.user = None
|
|
request.state.is_admin = False
|
|
|
|
# 继续处理请求
|
|
response = await call_next(request)
|
|
return response |