From e67a1fab5ef65160a2f10b79f98122d6653a905e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=D0=98=D0=B3=D0=BE=D1=80=D1=8C=20=D0=91=D0=B0=D0=BD=D0=B4?=
 =?UTF-8?q?=D1=83=D1=80=D0=B8=D1=81=D1=82?= <morpex1698@mail.ru>
Date: Sun, 31 May 2026 16:55:48 +1000
Subject: [PATCH] =?UTF-8?q?=D0=B8=D1=81=D0=BF=D1=80=D0=B0=D0=B2=D0=BB?=
 =?UTF-8?q?=D0=B5=D0=BD=D0=BE=20=D1=85=D0=B5=D1=88=D0=B8=D1=80=D0=BE=D0=B2?=
 =?UTF-8?q?=D0=B0=D0=BD=D0=B8=D0=B5=20=D0=BF=D0=B0=D1=80=D0=BE=D0=BB=D0=B5?=
 =?UTF-8?q?=D0=B9?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 main.py | 42 +++++++++++++++++++-----------------------
 1 file changed, 19 insertions(+), 23 deletions(-)

diff --git a/main.py b/main.py
index f925fc1..0e280ce 100644
--- a/main.py
+++ b/main.py
@@ -1,10 +1,8 @@
-
 from fastapi import FastAPI, HTTPException, Depends, Request
 from fastapi.responses import JSONResponse
 from fastapi.middleware.cors import CORSMiddleware
 from pydantic import BaseModel
 import sqlite3
-from passlib.context import CryptContext
 import uvicorn
 from werkzeug.security import generate_password_hash, check_password_hash
 import jwt
@@ -16,38 +14,39 @@ app = FastAPI(title="Work BD Auth API",
 
 app.add_middleware(
     CORSMiddleware,
-    allow_origins=["http://localhost:5173", "https://allowlgroup.ru"],  # или список конкретных доменов
+    allow_origins=[
+        "http://localhost:5173",
+        "https://allowlgroup.ru",
+    ],
     allow_credentials=True,
     allow_methods=["*"],
     allow_headers=["*"],
 )
+
 DB_PATH = 'users.db'
 
-# Инициализация базы данных
 def init_db():
     conn = sqlite3.connect(DB_PATH)
     cursor = conn.cursor()
     cursor.execute('''CREATE TABLE IF NOT EXISTS users (
-                        id INTEGER PRIMARY KEY AUTOINCREMENT,
-                        username TEXT UNIQUE NOT NULL,
-                        password TEXT NOT NULL)''')
+        id INTEGER PRIMARY KEY AUTOINCREMENT,
+        username TEXT UNIQUE NOT NULL,
+        password TEXT NOT NULL)''')
     conn.commit()
     conn.close()
+
 init_db()
 
-# Pydantic модель для входящих данных
 class UserIn(BaseModel):
     username: str
     password: str
 
-
 @app.post('/register', status_code=201, tags=["User"])
 async def register(user: UserIn):
     if not user.username or not user.password:
         raise HTTPException(status_code=400, detail="Username and password required")
-
+    
     hashed_password = generate_password_hash(user.password)
-
     try:
         conn = sqlite3.connect(DB_PATH)
         cursor = conn.cursor()
@@ -56,22 +55,21 @@ async def register(user: UserIn):
         conn.close()
     except sqlite3.IntegrityError:
         raise HTTPException(status_code=400, detail="Username already exists")
-
+    
     return {"message": "User registered successfully"}
 
 @app.post('/login', tags=["User"])
 async def login(user: UserIn):
     if not user.username or not user.password:
         raise HTTPException(status_code=400, detail="Username and password required")
-
+    
     conn = sqlite3.connect(DB_PATH)
     cursor = conn.cursor()
     cursor.execute('SELECT password FROM users WHERE username = ?', (user.username,))
     row = cursor.fetchone()
     conn.close()
-
+    
     if row and check_password_hash(row[0], user.password):
-        # Генерация JWT токена
         token = jwt.encode({
             "username": user.username,
             "exp": datetime.datetime.utcnow() + datetime.timedelta(days=30)
@@ -81,8 +79,8 @@ async def login(user: UserIn):
         response.set_cookie(
             key="auth_token",
             value=token,
-            max_age=30*24*60*60,  # 30 дней
-            httponly=True,  # Безопасность
+            max_age=30*24*60*60,
+            httponly=True,
             samesite="lax",
             path="/"
         )
@@ -96,7 +94,7 @@ async def login(user: UserIn):
         return response
     else:
         raise HTTPException(status_code=401, detail="Invalid credentials")
-    
+
 @app.get('/users', tags=["User"])
 async def get_users():
     conn = sqlite3.connect(DB_PATH)
@@ -104,10 +102,8 @@ async def get_users():
     cursor.execute('SELECT * FROM users')
     rows = cursor.fetchall()
     conn.close()
-
     return rows
 
-
 @app.get('/verify', tags=["User"])
 async def verify_token_endpoint(request: Request):
     token = request.cookies.get('auth_token')
@@ -126,6 +122,6 @@ async def verify_token_endpoint(request: Request):
         raise HTTPException(status_code=401, detail="Token expired")
     except jwt.InvalidTokenError:
         raise HTTPException(status_code=401, detail="Invalid token")
-# # Запуск сервера для теста
-# if __name__ == "__main__":
-#     uvicorn.run("main:app", port=8004, reload=True)
\ No newline at end of file
+
+if __name__ == "__main__":
+    uvicorn.run("main:app", host="0.0.0.0", port=8004, reload=True)
\ No newline at end of file