U [MhLA@sddlZddlZddlZddlZddlmZmZddlmZmZm Z ddl m Z m Z ddl mZGdddZdd Zed kredS) N)datetime timedelta)DictListOptional) create_enginetext)Pathc@seZdZd'edddZedddZedd d Zedd d Zd(eedddZ ee dddZ eedddZ eeeeefdddZ d)eeeeedddZeedddZd*eeed!d"d#Zd+eed$d%d&Zd S),DynamicTokenManagertoken_manager_config.json) config_filecCs(t||_||_t|jd|_dS)N database_url)r r load_or_create_configconfigrengine)selfr r./dynamic_token_manager.py__init__s  zDynamicTokenManager.__init__)returnc Cs|jr6t|jd}t|W5QRSQRXnNddgdddddgd d d dd d }||td|jtd|SdS)z(Load configuration or create default onerz7postgresql://postgres:asdf1234@localhost:5432/timesheetz&https://api-timesheet.firsteconomy.comimZAWToken_0) expiry_days token_prefix token_lengthF)Zrequire_email_verificationallowed_domainsmax_tokens_per_developer) admin_emailZsend_token_notifications)r api_base_urlmaster_passwordstoken_settingssecurity notificationsu📝 Created default config: u0🔧 Please configure the settings and run againN)r existsopenjsonload save_configprint)rfZdefault_configrrrrs,  z)DynamicTokenManager.load_or_create_config)rc Cs,t|jd}tj||ddW5QRXdS)zSave configuration to filewindentN)r&r r'dump)rrr+rrrr)4szDynamicTokenManager.save_configcCs<dddddddg}t|t|tdd d }|S) zGenerate a new master passwordZTimeZSheetZTrackZWorkZCodeZDevZTeami'Z04d!)secretschoiceZ randbelow)rZwordspasswordrrrgenerate_master_password9s&z,DynamicTokenManager.generate_master_passwordDefault) descriptionrcCs\|}||tddd}|jd|||jtd|td||S)zAdd a new master passwordTr)r4r7 created_atactive usage_countr!u#✅ New master password generated: u📋 Description: )r5rnow isoformatrappendr)r*)rr7r4Zpassword_entryrrradd_master_password@s  z'DynamicTokenManager.add_master_password)r4rcCs^|jdD]N}|d|kr |dr |ddd|d<t|d<||jdSq d S) zValidate master passwordr!r4r9r:rZ last_usedTF)rgetrr;r<r))rr4entryrrrvalidate_master_passwordTs z,DynamicTokenManager.validate_master_password) developer_idrcCs2|jdd}|jdd}|t|}|S)zGenerate API tokenr"rr)rr2Z token_urlsafe)rrCprefixlengthtokenrrrgenerate_api_token_sz&DynamicTokenManager.generate_api_token)rCemailrc Cs>g}|rt|dkr|d|dddds@|d|rLd|krV|d|jd d }|r|dd }||kr|d d |z^|j J}| t dd|i}| }|jd d} || kr|d| dW5QRXWn4t k r*} z|d| W5d} ~ XYnXt|dk|dS)zValidate developer informationz*Developer ID must be at least 3 characters_r-zFDeveloper ID can only contain letters, numbers, underscore, and hyphen@zValid email is requiredr#rr?z#Email domain not allowed. Allowed: z, z[SELECT COUNT(*) FROM developer_api_tokens WHERE developer_id = :dev_id AND is_active = truedev_idrzMaximum z tokens allowed per developerzDatabase validation error: Nr)validerrors)lenr=replaceisalnumrsplitlowerjoinrconnectexecuterZscalar Exception) rrCrHrOrdomainconnresult token_countZ max_tokenserrrvalidate_developer_infofs2      "z+DynamicTokenManager.validate_developer_infoAuto-generated)rCrHmaster_passwordr7rc CsH||sdddS|||}|dsboolrBrGr^rmrrtrwryrrrrr s! (>"r c Cs&ddl}|jdd}|jddddd d d gd |jd dd|jddd|jddd|jddd|jdddd|}t|j}|jdkrttdtdtd|jdd }|r||jd<td|jd d }|r||jd <td! }|r||jd"d#<td$ }|rDd%d&| d'D|jd(d)<| |j| d*}td+td,|n|jdkr|j ptd-} | | }td.|nv|jdkr|jptd/} |jptd0} |jptd1} |j pd2} || | | | } | d3rtd4td5| d6d7td8| d6d9td:| d6d;d<| d=}t|d>}tj| d?|d@dAW5QRXtdB|ntdC| dDnn|jd krV|}|stdEdStdFtdG|D]d}tdH|d7tdI|dJdK|dLtdM|dNtdO|dPpBdQtqn|jd kr|jpptdR} | r|j| dS} n.tdT}|dUkrtdVdStdWdS| d3rtdX| dYntdC| dDn<|jd kr"|}tdZd>}||W5QRXtd[dS)\z"CLI interface for token managementrNzDynamic Token Manager)r7actionZsetupzadd-master-passwordz create-tokenzlist-developersz revoke-tokenszgenerate-installer)choicesz--developer-idz Developer ID)helpz--emailzDeveloper emailz--master-passwordzMaster passwordz --descriptionzToken descriptionz--configr zConfig file path)defaultru🔧 Token Manager Setupz==============================zDatabase URL [r z]: zAPI Base URL [r zAdmin email (optional): r$rz8Allowed email domains (comma-separated, empty for all): cSsg|] }|qSr)strip).0drrr Pszmain..,r#rz Initial setupu ✅ Setup complete!u0📋 Share this master password with your team: zDescription for this password: zNew master password: zDeveloper ID: zEmail: zMaster password: z CLI generatedrbu✅ Token created successfully!z Developer: rirCzToken: rgz Expires: rhZconfig_z.jsonr,rjr-r.u📁 Config saved to: u ❌ Error: rczNo developers foundu👥 Developers:zP--------------------------------------------------------------------------------zID: z Active Tokens: rq/r\z Last Token: roz Last Activity: rpZNeverz1Developer ID to revoke (or press Enter for all): )rCzRevoke ALL tokens? (yes/no): Zyesz#Bulk revocation not implemented yetZ Cancelledu✅ rvzinstall_timesheet_tracker.shu<✅ Installer script generated: install_timesheet_tracker.sh)argparseArgumentParser add_argument parse_argsr rrr*inputrrSr)r>r7rCrHr`rmr&r'r0rtrwrTrywrite)rparserargsZmanagerZdb_urlrfrZdomainsr4r7rCrHr`r[r r+rrZdevZconfirmZscriptrrrmain's                      r__main__)osr'r2ZhashlibrrtypingrrrZ sqlalchemyrrpathlibr r rrzrrrrs z