Add jwt login whitelist (#204)

downdawn · downdawn66 · web-flow · commit 83b6a1032793 · 2023-08-28T15:33:18.000+08:00
Co-authored-by: downdawn &lt;downdawn22@gmail.com&gt;
diff --git a/backend/app/core/conf.py b/backend/app/core/conf.py
@@ -99,6 +99,9 @@ def validator_api_url(cls, values):
     TOKEN_URL_SWAGGER: str = f'{API_V1_STR}/auth/swagger_login'
     TOKEN_REDIS_PREFIX: str = 'fba_token'
     TOKEN_REFRESH_REDIS_PREFIX: str = 'fba_refresh_token'
+    TOKEN_WHITELIST: list[str] = [  # 白名单
+        f'{API_V1_STR}/auth/login',
+    ]
 
     # Captcha
     CAPTCHA_LOGIN_REDIS_PREFIX: str = 'fba_login_captcha'
diff --git a/backend/app/middleware/jwt_auth_middleware.py b/backend/app/middleware/jwt_auth_middleware.py
@@ -10,6 +10,7 @@
 from backend.app.common import jwt
 from backend.app.common.exception.errors import TokenError
 from backend.app.common.log import log
+from backend.app.core.conf import settings
 from backend.app.database.db_mysql import async_db_session
 
 
@@ -35,6 +36,9 @@ async def authenticate(self, request: Request):
         if not auth:
             return
 
+        if request.url.path in settings.TOKEN_WHITELIST:
+            return
+
         scheme, token = auth.split()
         if scheme.lower() != 'bearer':
             return
