Главная Обзор Помощь
Вход
yunoadmin
/
bambuddy
зеркало из https://github.com/maziggy/bambuddy
1
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: 135b8fd93b
Ветки Метки
bambuddy
/
backend
/
app
/
models
/
api_key.py

api_key.py 2.2 KB
История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546 
  1. from datetime import datetime
    2. 

  2. 

  3. from sqlalchemy import JSON, Boolean, DateTime, ForeignKey, Integer, String, func
    4. 

  4. from sqlalchemy.orm import Mapped, mapped_column
    5. 

  5. 

  6. from backend.app.core.database import Base
    7. 

  7. 

  8. 

  9. class APIKey(Base):
    10. 

  10.     """API key for external webhook access."""
    11. 

  11. 

  12.     __tablename__ = "api_keys"
    13. 

  13. 

  14.     id: Mapped[int] = mapped_column(primary_key=True)
    15. 

  15.     name: Mapped[str] = mapped_column(String(100))  # User-friendly name
    16. 

  16.     key_hash: Mapped[str] = mapped_column(String(255))  # bcrypt hash of the key
    17. 

  17.     key_prefix: Mapped[str] = mapped_column(String(20))  # First 8 chars + "..." for display
    18. 

  18. 

  19.     # Owner — required for new keys, NULL only on legacy rows that predate per-user
    20. 

  20.     # ownership. Cloud routes reject calls from keys without an owner so callers are
    21. 

  21.     # forced to recreate them. CASCADE so deleting a user removes their keys.
    22. 

  22.     user_id: Mapped[int | None] = mapped_column(
    23. 

  23.         Integer,
    24. 

  24.         ForeignKey("users.id", ondelete="CASCADE"),
    25. 

  25.         nullable=True,
    26. 

  26.         index=True,
    27. 

  27.     )
    28. 

  28. 

  29.     # Permissions
    30. 

  30.     can_queue: Mapped[bool] = mapped_column(Boolean, default=True)  # Add to queue
    31. 

  31.     can_control_printer: Mapped[bool] = mapped_column(Boolean, default=False)  # Start/stop/cancel
    32. 

  32.     can_read_status: Mapped[bool] = mapped_column(Boolean, default=True)  # Query status
    33. 

  33.     can_access_cloud: Mapped[bool] = mapped_column(Boolean, default=False)  # Read /cloud/* on the owner's behalf
    34. 

  34.     # Narrowly-scoped settings write: only POST /settings/electricity-price.
    35. 

  35.     # Lets HA/Tibber-style automations push dynamic tariff updates without
    36. 

  36.     # granting full SETTINGS_UPDATE (which is denied for API keys because it
    37. 

  37.     # could rewrite SMTP/LDAP/MQTT credentials).
    38. 

  38.     can_update_energy_cost: Mapped[bool] = mapped_column(Boolean, default=False)
    39. 

  39. 

  40.     # Optional scope limits
    41. 

  41.     printer_ids: Mapped[list | None] = mapped_column(JSON, nullable=True)  # null = all printers
    42. 

  42. 

  43.     enabled: Mapped[bool] = mapped_column(Boolean, default=True)
    44. 

  44.     last_used: Mapped[datetime | None] = mapped_column(DateTime, nullable=True)
    45. 

  45.     created_at: Mapped[datetime] = mapped_column(DateTime, server_default=func.now())
    46. 

  46.     expires_at: Mapped[datetime | None] = mapped_column(DateTime, nullable=True)  # Optional expiry
    47.