Diuse/zhenxun_bot
1
0
Fork 0
mirror of https://github.com/zhenxun-org/zhenxun_bot.git synced 2025-12-15 14:22:55 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

🐛WebUI密钥修改为随机密钥

Browse Source
This commit is contained in:
AkashiCoin 2024-08-23 11:10:17 +08:00
parent 06b1af46ea
commit ebecffec90
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
zhenxun/plugins/web_ui/utils.py
View File

@ -1,6 +1,7 @@
import os import os
from datetime import datetime, timedelta from datetime import datetime, timedelta
from pathlib import Path from pathlib import Path
import secrets
import psutil import psutil
import ujson as json import ujson as json
@ -14,7 +15,6 @@ from zhenxun.configs.path_config import DATA_PATH
from .base_model import SystemFolderSize, SystemStatus, User from .base_model import SystemFolderSize, SystemStatus, User
SECRET_KEY = "09d25e094faa6ca2556c818166b7a9563b93f7099f6f0f4caa6cf63b88e8d3e7"
ALGORITHM = "HS256" ALGORITHM = "HS256"
ACCESS_TOKEN_EXPIRE_MINUTES = 30 ACCESS_TOKEN_EXPIRE_MINUTES = 30
@ -28,6 +28,8 @@ if token_file.exists():
token_data = json.load(open(token_file, "r", encoding="utf8")) token_data = json.load(open(token_file, "r", encoding="utf8"))
except json.JSONDecodeError: except json.JSONDecodeError:
pass pass
if not token_data.get("secret"):
token_data["secret"] = secrets.token_hex(64)
def get_user(uname: str) -> User | None: def get_user(uname: str) -> User | None:
@ -55,7 +57,7 @@ def create_token(user: User, expires_delta: timedelta | None = None):
expire = datetime.utcnow() + (expires_delta or timedelta(minutes=15)) expire = datetime.utcnow() + (expires_delta or timedelta(minutes=15))
return jwt.encode( return jwt.encode(
claims={"sub": user.username, "exp": expire}, claims={"sub": user.username, "exp": expire},
key=SECRET_KEY, key=token_data["secret"],
algorithm=ALGORITHM, algorithm=ALGORITHM,
) )
@ -71,7 +73,7 @@ def authentication():
# if token not in token_data["token"]: # if token not in token_data["token"]:
def inner(token: str = Depends(oauth2_scheme)): def inner(token: str = Depends(oauth2_scheme)):
try: try:
payload = jwt.decode(token, SECRET_KEY, algorithms=[ALGORITHM]) payload = jwt.decode(token, token_data["secret"], algorithms=[ALGORITHM])
username, expire = payload.get("sub"), payload.get("exp") username, expire = payload.get("sub"), payload.get("exp")
user = get_user(username) # type: ignore user = get_user(username) # type: ignore
if user is None: if user is None: