Added cognito authentication - Fix 5

app/main.py

@@ -1,6 +1,6 @@
-from fastapi import FastAPI, Depends, HTTPException
-from fastapi.responses import JSONResponse, RedirectResponse
-from app.cabletv.utils.auth import exchange_code_for_token, get_current_user, DOMAIN, CLIENT_ID
+from fastapi import FastAPI, Depends, HTTPException, Request
+from fastapi.responses import RedirectResponse, JSONResponse
+from app.cabletv.utils.auth import get_current_user, exchange_code_for_token
 
 app = FastAPI()
 
@@ -9,26 +9,25 @@ async def root():
     return {"message": "IPTV Updater API"}
 
 @app.get("/protected")
-async def protected_route(user = Depends(get_current_user)):
+async def protected_route(request: Request, user = Depends(get_current_user)):
     if isinstance(user, RedirectResponse):
         return user
     return {"message": "Protected content", "user": user['Username']}
 
 @app.get("/auth/callback")
-async def auth_callback(code: str):
+async def auth_callback(request: Request, code: str):
     try:
-        tokens = exchange_code_for_token(code)
+        redirect_uri = str(request.base_url)
+        tokens = exchange_code_for_token(code, redirect_uri)
         
-        # Use id_token instead of access_token
         response = JSONResponse(content={
             "message": "Authentication successful",
-            "id_token": tokens["id_token"]  # Changed from access_token
+            "id_token": tokens["id_token"]
         })
         
-        # Store id_token in cookie
         response.set_cookie(
             key="token",
-            value=tokens["id_token"],  # Changed from access_token
+            value=tokens["id_token"],
             httponly=True,
             secure=True,
             samesite="lax"