Holo795/Anime-Tracker-API
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: update password handling and constraints

Browse Source
This commit is contained in:
ɧσℓσ
2025-12-02 19:42:59 +01:00
parent f75fc23cb1
commit 3f8dc7e6c5
6 changed files with 18 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
.gitignore vendored
View File

@@ -54,3 +54,4 @@ Thumbs.db
# Docker # Docker
.dockerignore .dockerignore

15
auth.py
View File

@@ -28,12 +28,23 @@ security = HTTPBearer()
def verify_password(plain_password: str, hashed_password: str) -> bool: def verify_password(plain_password: str, hashed_password: str) -> bool:
"""Vérifier un mot de passe""" """Vérifier un mot de passe (bcrypt limite à 72 bytes)"""
# Tronquer le mot de passe à 72 bytes pour éviter l'erreur bcrypt
password_bytes = plain_password.encode('utf-8')
if len(password_bytes) > 72:
password_bytes = password_bytes[:72]
plain_password = password_bytes.decode('utf-8', errors='ignore')
return pwd_context.verify(plain_password, hashed_password) return pwd_context.verify(plain_password, hashed_password)
def get_password_hash(password: str) -> str: def get_password_hash(password: str) -> str:
"""Hacher un mot de passe""" """Hacher un mot de passe (bcrypt limite à 72 bytes)"""
# Tronquer le mot de passe à 72 bytes pour éviter l'erreur bcrypt
# Encoder en UTF-8 pour obtenir les bytes
password_bytes = password.encode('utf-8')
if len(password_bytes) > 72:
password_bytes = password_bytes[:72]
password = password_bytes.decode('utf-8', errors='ignore')
return pwd_context.hash(password) return pwd_context.hash(password)

1
main.py
View File

@@ -262,3 +262,4 @@ async def health_check():
"""Vérification de l'état de l'API""" """Vérification de l'état de l'API"""
return {"status": "ok", "message": "API Anime Tracker is running"} return {"status": "ok", "message": "API Anime Tracker is running"}

1
models.py
View File

@@ -40,3 +40,4 @@ class Anime(Base):
user = relationship("User", back_populates="animes") user = relationship("User", back_populates="animes")

1
requirements.txt
View File

@@ -7,6 +7,7 @@ pydantic[email]
pydantic-settings==2.1.0 pydantic-settings==2.1.0
python-jose[cryptography]==3.3.0 python-jose[cryptography]==3.3.0
passlib[bcrypt]==1.7.4 passlib[bcrypt]==1.7.4
bcrypt==4.0.1
python-multipart==0.0.6 python-multipart==0.0.6
python-dotenv==1.0.0 python-dotenv==1.0.0

2
schemas.py
View File

@@ -11,7 +11,7 @@ from datetime import datetime
class UserCreate(BaseModel): class UserCreate(BaseModel):
username: str = Field(..., min_length=3, max_length=50) username: str = Field(..., min_length=3, max_length=50)
email: EmailStr email: EmailStr
password: str = Field(..., min_length=6) password: str = Field(..., min_length=6, max_length=72)
class UserLogin(BaseModel): class UserLogin(BaseModel):