def _verify():
auth_headers = request.headers.get('Authorization', '').split()
invalid_msg = {
'message': 'Token không hợp lệ.',
'authenticated': False
}
expired_msg = {
'message': 'Token hết hạn sử dụng.',
'authenticated': False
}
if len(auth_headers) != 2:
return jsonify(invalid_msg), 401
try:
token = auth_headers[1]
data = jwt.decode(token, app.config['SECRET_KEY'])
search_accounts_req = SearchAccountsReq(
{'account_id': data['account_id']})
account = AccountSvc.SearchAccounts(search_accounts_req)[0]
search_employees_req = SearchEmployeesReq(
{'account_id': account['account_id']})
employee = EmployeeRep.SearchEmployees(
search_employees_req)[0] if len(
EmployeeRep.SearchEmployees(
search_employees_req)) > 0 else None
search_customers_req = SearchCustomersReq(
{'account_id': account['account_id']})
customer = CustomerRep.SearchCustomers(
search_customers_req)[0] if len(
CustomerRep.SearchCustomers(
search_customers_req)) > 0 else None
auth_info = {
'account': account,
'employee': employee,
'customer': customer
}
return f(auth_info)
except jwt.ExpiredSignatureError:
return jsonify(
expired_msg), 401 # 401 is Unauthorized HTTP status code
except (jwt.InvalidTokenError) as e:
return jsonify(invalid_msg), 401
def SearchAccounts():
req = SearchAccountsReq(request.json)
info_accounts = AccountSvc.SearchAccounts(req)
res = SearchAccountsRsp(info_accounts).serialize()
return jsonify(res)