add jwt

id.saladeaula.digital/app/integrations/apigateway_oauth2/authorization_server.py

@@ -1,9 +1,8 @@
 import os
+from dataclasses import asdict
 
 import authlib.oauth2 as oauth2
 import authlib.oauth2.rfc6749.requests as requests
-from authlib.common.security import generate_token
-from authlib.oauth2.rfc6750 import BearerTokenGenerator
 from aws_lambda_powertools import Logger
 from aws_lambda_powertools.event_handler.api_gateway import Response
 from aws_lambda_powertools.event_handler.exceptions import NotFoundError
@@ -20,20 +19,10 @@ from .requests import APIGatewayJsonRequest, APIGatewayOAuth2Request
 
 DYNAMODB_SORT_KEY = os.getenv('DYNAMODB_SORT_KEY')
 OAUTH2_SCOPES_SUPPORTED = os.getenv('OAUTH2_SCOPES_SUPPORTED')
-GRANT_TYPES_EXPIRES_IN = {
-    'refresh_token': 600,
-    'authorization_code': 600,
-}
 
 logger = Logger(__name__)
 
 
-def expires_in(client, grant_type: str) -> int:
-    return GRANT_TYPES_EXPIRES_IN.get(
-        grant_type, BearerTokenGenerator.DEFAULT_EXPIRES_IN
-    )
-
-
 class AuthorizationServer(oauth2.AuthorizationServer):
     def __init__(
         self,
@@ -47,15 +36,6 @@ class AuthorizationServer(oauth2.AuthorizationServer):
                 scopes_supported=set(OAUTH2_SCOPES_SUPPORTED.split()),
             )
 
-        self.register_token_generator(
-            'default',
-            BearerTokenGenerator(
-                access_token_generator=create_token_generator(42),
-                refresh_token_generator=create_token_generator(48),
-                expires_generator=expires_in,
-            ),
-        )
-
     def save_token(
         self,
         token: dict,
@@ -74,7 +54,8 @@ class AuthorizationServer(oauth2.AuthorizationServer):
             if request.client
             else request.payload.client_id
         )
-        user_id = request.user.get('id')
+        user_id = request.user.id
+        user = asdict(request.user)
         access_token = token['access_token']
         refresh_token = token.get('refresh_token')
         token_type = token['token_type']
@@ -102,7 +83,7 @@ class AuthorizationServer(oauth2.AuthorizationServer):
                     'token_type': token_type,
                     'refresh_token': refresh_token,
                     'scope': scope,
-                    'user': request.user,
+                    'user': user,
                     'expires_in': expires_in,
                     'issued_at': issued_at,
                     'ttl': access_token_ttl,
@@ -127,7 +108,7 @@ class AuthorizationServer(oauth2.AuthorizationServer):
                         'token_type': token_type,
                         'access_token': access_token,
                         'scope': scope,
-                        'user': request.user,
+                        'user': user,
                         'expires_in': OAUTH2_REFRESH_TOKEN_EXPIRES_IN,
                         'issued_at': issued_at,
                         'ttl': refresh_token_ttl,
@@ -200,10 +181,3 @@ class AuthorizationServer(oauth2.AuthorizationServer):
 class ClientNotFoundError(NotFoundError):
     def __init__(self, *_):
         super().__init__('Client not found')
-
-
-def create_token_generator(length: int = 42):
-    def token_generator(*args, **kwargs):
-        return generate_token(length)
-
-    return token_generator