from secrets import token_hex from fastapi import APIRouter, Depends, status from fastapi.responses import JSONResponse from ..config import (CONFIG_FILE, CRYPT_CONTEXT, DB, BaseConfig, get_config, get_default_config, is_configured) from ..db import Certificate, DistinguishedName, User, UserCapability router = APIRouter(prefix="/install") @router.get("/config/default", response_model=BaseConfig) async def get_default_config(config: BaseConfig = Depends(get_default_config)): return config @router.get( "/config", response_model=BaseConfig, responses={ status.HTTP_404_NOT_FOUND: { "description": "Not configured", "content": None, }, }, ) async def get_config( is_configured: bool = Depends(is_configured), config: BaseConfig = Depends(get_config), ): if not is_configured: return JSONResponse(status_code=status.HTTP_404_NOT_FOUND) return config @router.put( "/config", responses={ status.HTTP_200_OK: { "content": None, }, status.HTTP_403_FORBIDDEN: { "description": "Must be admin", "content": None, }, }, ) async def set_config( config: BaseConfig, is_configured: bool = Depends(is_configured), ): if is_configured: return JSONResponse(status_code=status.HTTP_403_FORBIDDEN) if config.jwt.secret is None: config.jwt.secret = token_hex(32) config.save(CONFIG_FILE) async def is_installed(): return DB.table_exists(User) @router.get("/check_installed", responses={ status.HTTP_200_OK: { "model": bool, }, }) async def check_installed(is_installed: bool = Depends(is_installed)): return is_installed @router.get( "/create_db", responses={ status.HTTP_200_OK: { "content": None, }, status.HTTP_400_BAD_REQUEST: { "description": "Could not create Database", "content": None, }, }, ) async def create_db(is_installed: bool = Depends(is_installed)): if is_installed: return JSONResponse( status_code=status.HTTP_400_BAD_REQUEST, ) DB.create_tables([Certificate, DistinguishedName, User, UserCapability]) admin = User.create(name="admin", password=CRYPT_CONTEXT.hash("secret")) UserCapability.create(user=admin, capability="admin") User.create(name="johndoe", password=CRYPT_CONTEXT.hash("secret")) DB.close()