Fix lint errors

Author: sinkozs

backend/app/api/deps.py

@@ -2,8 +2,8 @@
 from typing import Annotated
 
 import jwt
-from fastapi import Depends, HTTPException, status, Cookie
-from fastapi.security import OAuth2PasswordBearer, APIKeyCookie
+from fastapi import Depends, HTTPException, status
+from fastapi.security import APIKeyCookie, OAuth2PasswordBearer
 from jwt.exceptions import InvalidTokenError
 from pydantic import ValidationError
 from sqlmodel import Session
@@ -18,6 +18,7 @@
 )
 cookie_scheme = APIKeyCookie(name="http_only_auth_cookie")
 
+
 def get_db() -> Generator[Session, None, None]:
     with Session(engine) as session:
         yield session
@@ -28,8 +29,8 @@ def get_db() -> Generator[Session, None, None]:
 
 
 def get_current_user(
-        session: SessionDep,
-        http_only_auth_cookie: str = Depends(cookie_scheme),
+    session: SessionDep,
+    http_only_auth_cookie: str = Depends(cookie_scheme),
 ) -> User:
     if not http_only_auth_cookie:
         raise HTTPException(
@@ -39,9 +40,7 @@ def get_current_user(
 
     try:
         payload = jwt.decode(
-            http_only_auth_cookie,
-            settings.SECRET_KEY,
-            algorithms=[security.ALGORITHM]
+            http_only_auth_cookie, settings.SECRET_KEY, algorithms=[security.ALGORITHM]
         )
         token_data = TokenPayload(**payload)
     except (InvalidTokenError, ValidationError):
@@ -61,6 +60,7 @@ def get_current_user(
 
 CurrentUser = Annotated[User, Depends(get_current_user)]
 
+
 def get_current_active_superuser(current_user: CurrentUser) -> User:
     if not current_user.is_superuser:
         raise HTTPException(

backend/app/api/routes/items.py

@@ -100,6 +100,7 @@ def delete_item(
     Delete an item.
     """
     item = session.get(Item, id)
+    print(current_user)
     if not item:
         raise HTTPException(status_code=404, detail="Item not found")
     if not current_user.is_superuser and (item.owner_id != current_user.id):

backend/app/api/routes/login.py

@@ -4,12 +4,18 @@
 from fastapi import APIRouter, Depends, HTTPException
 from fastapi.responses import HTMLResponse, JSONResponse
 from fastapi.security import OAuth2PasswordRequestForm
+
 from app import crud
-from app.api.deps import CurrentUser, SessionDep, get_current_active_superuser, get_current_user
+from app.api.deps import (
+    CurrentUser,
+    SessionDep,
+    get_current_active_superuser,
+    get_current_user,
+)
 from app.core import security
 from app.core.config import settings
 from app.core.security import get_password_hash
-from app.models import Message, NewPassword, Token, UserPublic
+from app.models import Message, NewPassword, UserPublic
 from app.utils import (
     generate_password_reset_token,
     generate_reset_password_email,
@@ -22,7 +28,7 @@
 
 @router.post("/login/access-token")
 def login_access_token(
-        session: SessionDep, form_data: Annotated[OAuth2PasswordRequestForm, Depends()]
+    session: SessionDep, form_data: Annotated[OAuth2PasswordRequestForm, Depends()]
 ) -> JSONResponse:
     """
     OAuth2-compatible token login: get an access token for future requests (sent in an HTTP-only cookie)
@@ -35,7 +41,9 @@ def login_access_token(
     elif not user.is_active:
         raise HTTPException(status_code=400, detail="Inactive user")
     access_token_expires = timedelta(minutes=settings.ACCESS_TOKEN_EXPIRE_MINUTES)
-    return security.set_auth_cookie(user.id, access_token_expires)
+    r = security.set_auth_cookie(user.id, access_token_expires)
+    print(r)
+    return r
 
 
 @router.post("/login/test-token", response_model=UserPublic)

backend/app/api/routes/users.py

@@ -9,6 +9,7 @@
     CurrentUser,
     SessionDep,
     get_current_active_superuser,
+    get_current_user,
 )
 from app.core.config import settings
 from app.core.security import get_password_hash, verify_password
@@ -117,15 +118,16 @@ def update_password_me(
     return Message(message="Password updated successfully")
 
 
-@router.get("/me", response_model=UserPublic)
+@router.get("/me", response_model=UserPublic, dependencies=[Depends(get_current_user)])
 def read_user_me(current_user: CurrentUser) -> Any:
     """
     Get current user.
     """
+    print(current_user)
     return current_user
 
 
-@router.delete("/me", response_model=Message)
+@router.delete("/me", response_model=Message, dependencies=[Depends(get_current_user)])
 def delete_user_me(session: SessionDep, current_user: CurrentUser) -> Any:
     """
     Delete own user.

backend/app/core/security.py

@@ -1,10 +1,11 @@
-import os
 from datetime import datetime, timedelta, timezone
 from typing import Any
+
 import jwt
-from passlib.context import CryptContext
-from fastapi.responses import JSONResponse
 from fastapi import Response
+from fastapi.responses import JSONResponse
+from passlib.context import CryptContext
+
 from app.core.config import settings
 
 pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
@@ -21,9 +22,7 @@ def create_access_token(subject: str | Any, expires_delta: timedelta) -> str:
 
 def set_auth_cookie(subject: str | Any, expires_delta: timedelta) -> Response:
     access_token = create_access_token(subject, expires_delta)
-    response = JSONResponse(
-        content={"message": "Login successful"}
-    )
+    response = JSONResponse(content={"message": "Login successful"})
     # Note: The secure flag on cookies ensures they're only sent over encrypted HTTPS connections. For local development (HTTP) set it to False
     response.set_cookie(
         key="http_only_auth_cookie",
@@ -33,6 +32,7 @@ def set_auth_cookie(subject: str | Any, expires_delta: timedelta) -> Response:
         expires=3600,
         samesite="lax",
         secure=True,
+        domain=None,
     )
     return response