fix

2026-04-14 01:00:37 +02:00
parent 3da81a9495
commit 9dd97b34f2
16 changed files with 339 additions and 137 deletions
--- a/apps/backend_admin/actions.py
+++ b/apps/backend_admin/actions.py
@@ -1,13 +1,34 @@
+from django.contrib.auth import authenticate
+from rest_framework.authtoken.models import Token
+from rest_framework_simplejwt.tokens import RefreshToken
+
+
 class Admin:
    def get_status_action(self):
+        # Tu lógica de status que ya tenías
+        return {"status": "ok", "service": "Admin Infrastructure"}
+
+    
+    def obtener_token_action(self, params):
        """
-        Lógica para comprobar la salud del sistema.
-        Devuelve el estado básico del entorno.
+        Capa Action: Valida credenciales y genera un par de tokens JWT.
        """
-        # En el futuro, podrías usar get_parameterized aquí si quisieras 
-        # consultar estados en la base de datos.
-        return {
-            "status": "ok",
-            "message": "V-Encore API System is active",
-            "environment": "dev" # Esto podría venir de una variable de entorno
-        }
+        username = params.get('username')
+        password = params.get('password')
+
+        # 1. Autenticación
+        user = authenticate(username=username, password=password)
+        
+        if user is not None:
+            # 2. Generación de JWT (Access & Refresh)
+            refresh = RefreshToken.for_user(user)
+            
+            return {
+                'refresh': str(refresh),
+                'access': str(refresh.access_token),
+                'user': user.username,
+                'status': 'success'
+            }
+        
+        return None
+    
--- a/apps/backend_admin/migrations/init.py
+++ b/apps/backend_admin/migrations/init.py
--- a/apps/backend_admin/models.py
+++ b/apps/backend_admin/models.py
@@ -0,0 +1,25 @@
+from django.db import models
+from django.utils import timezone
+
+class Log(models.Model):
+    # Usamos BigAutoField para el BIGINT id de tu tabla
+    id = models.BigAutoField(primary_key=True)
+    user_id = models.IntegerField(default=0)
+    user = models.CharField(max_length=255, default='anonimo')
+    app_id = models.IntegerField(default=0)
+    # GenericIPAddressField para el tipo INET de Postgres
+    remote_address = models.GenericIPAddressField(null=True, blank=True)
+    request = models.JSONField(null=True, blank=True)  # Para JSONB
+    response = models.JSONField(null=True, blank=True) # Para JSONB
+    status_code = models.CharField(max_length=10, default='0')
+    path = models.CharField(max_length=255)
+    method = models.CharField(max_length=10)
+    createdAt = models.DateTimeField(default=timezone.now)
+    updatedAt = models.DateTimeField(auto_now=True)
+
+    class Meta:
+        db_table = 'audit_logs'
+        managed = False  # Al estar la tabla ya creada, Django no intentará modificarla
+
+    def __str__(self):
+        return f"{self.method} {self.path} ({self.status_code})"
--- a/apps/backend_admin/views.py
+++ b/apps/backend_admin/views.py
@@ -1,6 +1,12 @@
 from django.http import JsonResponse
 from .actions import Admin
 import logging
+import json
+from django.views.decorators.csrf import csrf_exempt
+
+from django.utils import timezone
+from .models import Log 
+

 logger = logging.getLogger(__name__)

@@ -25,4 +31,65 @@ def status_view(request):

    # BLOQUE 4: Log de cierre y retorno
    logger.info(f"FIN - Health Check completado. Status: {status_code}")
-    return JsonResponse(response_data, status=status_code)
+    return JsonResponse(response_data, status=status_code)
+
+@csrf_exempt
+@staticmethod
+def api_token(request):
+    """
+    Endpoint: api/token/
+    Patrón: 4 bloques con persistencia en Log DB.
+    """
+    # --- BLOQUE 1: LOG INITIATION ---
+    logger.info("INICIO - Petición de JWT (api/token/)")
+    
+    # Iniciamos el registro en la base de datos (Estándar compañeros)
+    log_entry = Log.objects.create(
+        user='anonimo',
+        path='api/token/',
+        method='POST',
+        createdAt=timezone.now(),
+        status_code='0'
+    )
+
+    try:
+        if request.method == 'POST':
+            # --- BLOQUE 2: DATA CLEANING ---
+            body_data = json.loads(request.body)
+            log_entry.request = body_data # Guardamos lo que entró
+            log_entry.save()
+
+            params = {
+                'username': body_data.get('username'),
+                'password': body_data.get('password')
+            }
+
+            # --- BLOQUE 3: ACTION CALL ---
+            admin_logic = Admin()
+            resultado = admin_logic.obtener_token_action(params)
+
+            # --- BLOQUE 4: LOG CLOSURE & RESPONSE ---
+            if resultado:
+                status = 200
+                log_entry.user = resultado['user']
+                log_entry.response = resultado
+                log_entry.status_code = str(status)
+                log_entry.updatedAt = timezone.now()
+                log_entry.save()
+                
+                logger.info(f"FIN - JWT generado para: {log_entry.user}")
+                return JsonResponse(resultado, status=status)
+            else:
+                status = 401
+                response_error = {"error": "Credenciales inválidas"}
+                log_entry.status_code = str(status)
+                log_entry.response = response_error
+                log_entry.save()
+                return JsonResponse(response_error, status=status)
+
+    except Exception as e:
+        logger.error(f"ERROR CRÍTICO en api_token: {str(e)}")
+        log_entry.status_code = '500'
+        log_entry.response = {'error': str(e)}
+        log_entry.save()
+        return JsonResponse({'error': 'Error interno'}, status=500)