{irdZddlmZmZmZddlmZmZmZddlZddl m Z ddl m Z GddZ e Zy) z) JWT Token utilities for authentication. )datetime timedeltatimezone)OptionalDictAnyN)EmailStr)settingsceZdZdZed deeefdee defdZ ed deeefdee defdZ ededeeeeffd Z edede fd Zededeefd Zededeefd Zy) JWTManagerzJWT token management utility.Ndata expires_deltareturnc|j}|r'tjtj|z}n>tjtjt t jz}|j|tjtjdtj|t jt j}|S)z Create JWT access token. Args: data: Data to encode in the token expires_delta: Custom expiration time Returns: Encoded JWT token )minutes)expiat algorithm) copyrnowrutcrr jwt_expires_minutesupdatejwtencodejwt_secret_key jwt_algorithmr r to_encodeexpire encoded_jwts P/var/www/html/hwPaymentPortal-be-dev/hw-payment-portal-api/src/core/utils/jwt.pycreate_access_tokenzJWTManager.create_access_tokensIIK \\(,,/-?F\\(,,/)HD`D`2aaF X\\0JKLjjH,C,CxOeOef c|j}|r'tjtj|z}n>tjtjt t jz}|j|tjtjddtj|t jt j}|S)a  Create JWT refresh token. Args: data: Data to encode in the token expires_delta: Custom expiration time (default from JWT_REFRESH_EXPIRES) Returns: Encoded JWT refresh token )daysrefresh)rrtyper) rrrrrrr jwt_refresh_expires_daysrrrrrrs r#create_refresh_tokenzJWTManager.create_refresh_token(sIIK \\(,,/-?F\\(,,/)AbAb2ccF X\\0JT]^_jjH,C,CxOeOef r%tokenc tj|tjtjg}|S#tj $rYytj $rYywxYw)z Verify and decode JWT token. Args: token: JWT token to verify Returns: Decoded token data or None if invalid  algorithmsN)rdecoder rrExpiredSignatureError PyJWTErrorr,payloads r# verify_tokenzJWTManager.verify_token@sT jj(?(?XMcMcLdeGN(( ~~  s69A#A#"A#cZ tj|tjtjg}|j d}|yt j|tjt jtjkS#tj$rYywxYw)z Check if token is expired. Args: token: JWT token to check Returns: True if expired, False otherwise r.rT)tz) rr0r rrgetr fromtimestamprrrr2)r,r4rs r#is_token_expiredzJWTManager.is_token_expiredSs} jj(?(?XMcMcLdeG++e$C{))#(,,?(,,x||B\\ \~~  sAB ABB*)B*cTtj|}|r|jdSy)z Extract user ID from token. Args: token: JWT token Returns: User ID or None if invalid user_idNr r5r8r3s r#get_user_id_from_tokenz!JWTManager.get_user_id_from_tokengs)))%0 ;;y) )r%cTtj|}|r|jdSy)z Extract user email from token. Args: token: JWT token Returns: User email or None if invalid emailNr=r3s r#get_user_email_from_tokenz$JWTManager.get_user_email_from_tokenws)))%0 ;;w' 'r%)N)__name__ __module__ __qualname____doc__ staticmethodrstrrrrr$r+r5boolr:intr>rAr%r#r r s'$sCx.)AT`c.4S>(9BUad.CHT#s(^$<$& c hsm    #  r%r )rErrrtypingrrrrpydanticr src.core.configr r jwt_managerrJr%r#rOs732&& $xxxl r%