feat: add soft ui auth page

2026-02-20 09:31:13 +03:00
parent a4cc4f9de6
commit 8c3e993eb7
15 changed files with 1014 additions and 24 deletions
--- a/backend/app/api/auth2.py
+++ b/backend/app/api/auth2.py
@@ -0,0 +1,240 @@
+"""
+Alternative auth endpoint (tg/max/sms) without touching existing flow.
+
+/api/v1/auth2/login:
+- platform=tg|max|sms
+- Validates init_data for TG/MAX and calls n8n webhook
+- For SMS: verifies code, calls n8n contact webhook, creates session
+- Returns greeting message
+"""
+
+import logging
+from typing import Optional, Literal, Any, Dict
+
+from fastapi import APIRouter, HTTPException
+from fastapi.encoders import jsonable_encoder
+from pydantic import BaseModel
+
+from ..services.sms_service import sms_service
+from ..services.telegram_auth import extract_telegram_user, TelegramAuthError
+from ..services.max_auth import extract_max_user, MaxAuthError
+from ..config import settings
+from . import n8n_proxy
+from . import session as session_api
+
+logger = logging.getLogger(__name__)
+
+router = APIRouter(prefix="/api/v1/auth2", tags=["auth2"])
+
+
+class Auth2LoginRequest(BaseModel):
+    platform: Literal["tg", "max", "sms"]
+    init_data: Optional[str] = None
+    phone: Optional[str] = None
+    code: Optional[str] = None
+    session_token: Optional[str] = None
+    form_id: str = "ticket_form"
+
+
+class Auth2LoginResponse(BaseModel):
+    success: bool
+    greeting: str
+    session_token: Optional[str] = None
+    unified_id: Optional[str] = None
+    contact_id: Optional[str] = None
+    phone: Optional[str] = None
+    has_drafts: Optional[bool] = None
+    need_contact: Optional[bool] = None
+    avatar_url: Optional[str] = None
+
+
+def _generate_session_token() -> str:
+    import uuid
+    return f"sess-{uuid.uuid4()}"
+
+
+@router.post("/login", response_model=Auth2LoginResponse)
+async def login(request: Auth2LoginRequest):
+    platform = request.platform
+    logger.info("[AUTH2] login: platform=%s", platform)
+
+    if platform == "tg":
+        if not request.init_data:
+            raise HTTPException(status_code=400, detail="init_data обязателен для tg")
+        try:
+            tg_user = extract_telegram_user(request.init_data)
+        except TelegramAuthError as e:
+            raise HTTPException(status_code=400, detail=str(e))
+
+        session_token = request.session_token or _generate_session_token()
+        n8n_payload = {
+            "telegram_user_id": tg_user["telegram_user_id"],
+            "username": tg_user.get("username"),
+            "first_name": tg_user.get("first_name"),
+            "last_name": tg_user.get("last_name"),
+            "session_token": session_token,
+            "form_id": request.form_id,
+            "init_data": request.init_data,
+        }
+
+        class _DummyRequest:
+            def __init__(self, payload: Dict[str, Any]):
+                self._payload = payload
+            async def json(self):
+                return self._payload
+
+        n8n_response = await n8n_proxy.proxy_telegram_auth(_DummyRequest(n8n_payload))  # type: ignore[arg-type]
+        n8n_data = jsonable_encoder(n8n_response)
+
+        unified_id = n8n_data.get("unified_id") or (n8n_data.get("result") or {}).get("unified_id")
+        contact_id = n8n_data.get("contact_id") or n8n_data.get("result", {}).get("contact_id")
+        phone = n8n_data.get("phone") or n8n_data.get("result", {}).get("phone")
+        has_drafts = n8n_data.get("has_drafts")
+
+        if not unified_id:
+            raise HTTPException(status_code=500, detail="n8n не вернул unified_id")
+
+        await session_api.create_session(session_api.SessionCreateRequest(
+            session_token=session_token,
+            unified_id=unified_id,
+            phone=phone or "",
+            contact_id=contact_id or "",
+            ttl_hours=24,
+        ))
+
+        first_name = tg_user.get("first_name") or ""
+        greeting = f"Привет, {first_name}!" if first_name else "Привет!"
+
+        return Auth2LoginResponse(
+            success=True,
+            greeting=greeting,
+            session_token=session_token,
+            unified_id=unified_id,
+            contact_id=contact_id,
+            phone=phone,
+            has_drafts=has_drafts,
+            avatar_url=tg_user.get("photo_url") or None,
+        )
+
+    if platform == "max":
+        if not request.init_data:
+            raise HTTPException(status_code=400, detail="init_data обязателен для max")
+        try:
+            max_user = extract_max_user(request.init_data)
+        except MaxAuthError as e:
+            raise HTTPException(status_code=400, detail=str(e))
+
+        session_token = request.session_token or _generate_session_token()
+        n8n_payload = {
+            "max_user_id": max_user["max_user_id"],
+            "username": max_user.get("username"),
+            "first_name": max_user.get("first_name"),
+            "last_name": max_user.get("last_name"),
+            "session_token": session_token,
+            "form_id": request.form_id,
+            "init_data": request.init_data,
+        }
+
+        class _DummyRequest:
+            def __init__(self, payload: Dict[str, Any]):
+                self._payload = payload
+            async def json(self):
+                return self._payload
+
+        n8n_response = await n8n_proxy.proxy_max_auth(_DummyRequest(n8n_payload))  # type: ignore[arg-type]
+        n8n_data = jsonable_encoder(n8n_response)
+
+        need_contact = n8n_data.get("need_contact") or (n8n_data.get("result") or {}).get("need_contact")
+        if need_contact:
+            return Auth2LoginResponse(success=False, greeting="Привет!", need_contact=True)
+
+        unified_id = n8n_data.get("unified_id") or (n8n_data.get("result") or {}).get("unified_id")
+        contact_id = n8n_data.get("contact_id") or n8n_data.get("result", {}).get("contact_id")
+        phone = n8n_data.get("phone") or n8n_data.get("result", {}).get("phone")
+        has_drafts = n8n_data.get("has_drafts")
+
+        if not unified_id:
+            raise HTTPException(status_code=500, detail="n8n не вернул unified_id")
+
+        await session_api.create_session(session_api.SessionCreateRequest(
+            session_token=session_token,
+            unified_id=unified_id,
+            phone=phone or "",
+            contact_id=contact_id or "",
+            ttl_hours=24,
+        ))
+
+        first_name = max_user.get("first_name") or ""
+        greeting = f"Привет, {first_name}!" if first_name else "Привет!"
+
+        return Auth2LoginResponse(
+            success=True,
+            greeting=greeting,
+            session_token=session_token,
+            unified_id=unified_id,
+            contact_id=contact_id,
+            phone=phone,
+            has_drafts=has_drafts,
+            avatar_url=max_user.get("photo_url") or None,
+        )
+
+    if platform == "sms":
+        phone = (request.phone or "").strip()
+        code = (request.code or "").strip()
+        if not phone or not code:
+            raise HTTPException(status_code=400, detail="phone и code обязательны для sms")
+
+        is_valid = await sms_service.verify_code(phone, code)
+        if not is_valid:
+            raise HTTPException(status_code=400, detail="Неверный код или код истек")
+
+        class _DummyRequest:
+            def __init__(self, payload: Dict[str, Any]):
+                self._payload = payload
+            async def json(self):
+                return self._payload
+
+        n8n_payload = {
+            "phone": phone,
+            "session_id": request.session_token or "",
+            "form_id": request.form_id,
+        }
+
+        n8n_response = await n8n_proxy.proxy_create_contact(_DummyRequest(n8n_payload))  # type: ignore[arg-type]
+        n8n_data = jsonable_encoder(n8n_response)
+        if isinstance(n8n_data, list) and n8n_data:
+            n8n_data = n8n_data[0]
+
+        if not n8n_data or not isinstance(n8n_data, dict) or not n8n_data.get("success"):
+            raise HTTPException(status_code=500, detail="Ошибка создания контакта в n8n")
+
+        result = n8n_data.get("result") or n8n_data
+        unified_id = result.get("unified_id")
+        contact_id = result.get("contact_id")
+        phone_res = result.get("phone") or phone
+        has_drafts = result.get("has_drafts")
+        session_token = result.get("session") or request.session_token or _generate_session_token()
+
+        if not unified_id:
+            raise HTTPException(status_code=500, detail="n8n не вернул unified_id")
+
+        await session_api.create_session(session_api.SessionCreateRequest(
+            session_token=session_token,
+            unified_id=unified_id,
+            phone=phone_res or "",
+            contact_id=contact_id or "",
+            ttl_hours=24,
+        ))
+
+        return Auth2LoginResponse(
+            success=True,
+            greeting="Привет!",
+            session_token=session_token,
+            unified_id=unified_id,
+            contact_id=contact_id,
+            phone=phone_res,
+            has_drafts=has_drafts,
+            avatar_url=None,
+        )
+
+    raise HTTPException(status_code=400, detail="Неподдерживаемая платформа")