git_brcal/src/server/BreCal/impl/login.py

import logging
import pydapper
import bcrypt
from flask import jsonify

from ..schemas import model
from .. import local_db
from ..services import jwt_handler



def GetUser(options):

    pooledConnection = None
    
    try:
        if "password" in options and "username" in options:
            
            pooledConnection = local_db.getPoolConnection()
            commands = pydapper.using(pooledConnection)
            # query = SQLQuery.get_user()
            # data = commands.query(query, model=model.User, param={"username" : options["username"]})
            data = commands.query("SELECT id, participant_id, first_name, last_name, user_name, user_email, user_phone, password_hash, " +
                                  "api_key, notify_email, notify_whatsapp, notify_signal, notify_popup, notify_event, created, modified FROM user " +
                                  "WHERE user_name = ?username? OR user_email = ?username?",
                                  model=model.User, param={"username" : options["username"]})

            if len(data) == 1:
                if bcrypt.checkpw(options["password"].encode("utf-8"), bytes(data[0].password_hash, "utf-8")):
                    result = {
                        "id": data[0].id,
                        "participant_id": data[0].participant_id,
                        "first_name": data[0].first_name,
                        "last_name": data[0].last_name,
                        "user_name": data[0].user_name,
                        "user_phone": data[0].user_phone,
                        "user_email": data[0].user_email,
                        "notify_email": model._coerce_bool(data[0].notify_email),
                        "notify_whatsapp": model._coerce_bool(data[0].notify_whatsapp),
                        "notify_signal": model._coerce_bool(data[0].notify_signal),
                        "notify_popup": model._coerce_bool(data[0].notify_popup),
                        "notify_on": model.notification_types_to_names(model.bitflag_to_list(data[0].notify_event))
                    }
                    token = jwt_handler.generate_jwt(payload=result, lifetime=120) # generate token valid 60 mins
                    result["token"] = token # add token to user data
                    return jsonify(result), 200

            if len(data) > 1:
                result = {}
                result["error_field"] = "credential lookup mismatch"
                return jsonify(result), 500

            result = {}
            result["error_field"] = "invalid credentials"
            return jsonify(result), 403

    except Exception as ex:
        logging.error(ex)
        print(ex)
        result = {}
        result["error_field"] = "call failed"
        result["error_description"] = str(ex)
        return jsonify(result), 500

    finally:
        if pooledConnection is not None:
            pooledConnection.close()