fix: decode Dependency fixes for secret value

pyjwt requires a list of algorithms it ought to use to decode the token, the JWT
secret key needs to be read as one, not a strong REFS #52

Author: devraj

src/labs/routers/utils.py

@@ -7,7 +7,7 @@
 """
 
 from sqlalchemy.ext.asyncio import AsyncSession
-from fastapi import Depends, HTTPException
+from fastapi import Depends, HTTPException, status
 from fastapi.security import OAuth2PasswordBearer
 import jwt
 
@@ -34,8 +34,8 @@ async def get_current_user(
   try:
     payload = jwt.decode(
       token,
-      config.JWT_SECRET_KEY,
-      algorithm=config.JWT_ALGORITHM
+      config.JWT_SECRET_KEY.get_secret_value(),
+      algorithms=[config.JWT_ALGORITHM]
     )
 
     username: str = payload.get("sub")
@@ -46,7 +46,7 @@ async def get_current_user(
     token_data = TokenData(username=username)
 
   except:
-      raise credentials_exception
+    raise credentials_exception
 
   user = await User.get_by_email(session, token_data.username)
 
@@ -59,11 +59,17 @@ async def get_current_user(
 async def get_current_active_user(
   current_user: User = Depends(get_current_user)
 ):
-  """
+  """ Demonstrates wrapping the base Dependency to a more specific one
+
+  You would use the same pattern to make sure that the user is
+  an administrator or other specific roles.
+
+  Note: see the use of OAuth2 scopes for this purpose. 
+
   """
   if current_user.verified:
-      raise HTTPException(
-        status_code=status.HTTP_400_BAD_REQUEST,
-        detail="Inactive user"
-      )
+    raise HTTPException(
+      status_code=status.HTTP_400_BAD_REQUEST,
+      detail="Inactive user"
+    )
   return current_user