ED/FDEV-CAPI-Handler
1
0
Fork 0
mirror of https://github.com/norohind/FDEV-CAPI-Handler.git synced 2025-06-06 10:23:24 +03:00
Code Issues Projects Releases Wiki Activity

WIP: full refactor

Browse Source
This commit is contained in:
norohind 2021-12-05 23:21:07 +03:00
parent bbeec2e3fe
commit 226382f28a
Signed by: norohind
GPG Key ID: 01C3BECC26FB59E1
6 changed files with 90 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
capi/__init__.py
View File

@ -5,6 +5,7 @@ from . import exceptions
import base64 import base64
import os import os
import time import time
from typing import Union
import config import config
from EDMCLogging import get_main_logger from EDMCLogging import get_main_logger
@ -92,9 +93,13 @@ class CAPIAuthorizer:
return msg return msg
def get_token_by_state(self, state: str) -> dict: def get_token_by_state(self, state: str) -> Union[dict, None]:
self.refresh_by_state(state) self.refresh_by_state(state)
row = self.model.get_token_for_user(state) row = self.model.get_token_for_user(state)
if row is None:
return None
row['expires_over'] = int(row['expires_on']) - int(time.time()) row['expires_over'] = int(row['expires_on']) - int(time.time())
return row return row
@ -113,7 +118,7 @@ class CAPIAuthorizer:
if row is None: if row is None:
# No such state in DB # No such state in DB
msg['status'] = 'error' msg['status'] = 'error'
msg['message'] = 'No such state in DB' msg['description'] = 'No such state in DB'
raise exceptions.RefreshFail(msg['description'], msg['status'], state) raise exceptions.RefreshFail(msg['description'], msg['status'], state)
msg['state'] = state msg['state'] = state
@ -163,5 +168,8 @@ class CAPIAuthorizer:
def list_all_users(self) -> list[dict]: def list_all_users(self) -> list[dict]:
return self.model.list_all_records() return self.model.list_all_records()
def cleanup_orphans(self) -> None:
self.model.cleanup_orphans_records()
capi_authorizer = CAPIAuthorizer(model.Model()) capi_authorizer = CAPIAuthorizer(model.Model())

2
capi/exceptions.py
View File

@ -3,4 +3,4 @@ class RefreshFail(Exception):
self.message = message self.message = message
self.status = status self.status = status
self.state = state self.state = state
super().__init__(self.message + ' for ' + self.state) super().__init__(str(self.message) + ' for ' + str(self.state))

4
capi/model.py
View File

@ -115,3 +115,7 @@ class Model:
def list_all_records(self) -> list: def list_all_records(self) -> list:
return self.db.execute(sqlite_requests.select_nickname_state_all).fetchall() return self.db.execute(sqlite_requests.select_nickname_state_all).fetchall()
def cleanup_orphans_records(self) -> None:
with self.db:
self.db.execute(sqlite_requests.del_orphans)

2
capi/sqlite_requests.py
View File

@ -46,3 +46,5 @@ get_token_for_user = """select
from authorizations where state = :state;""" from authorizations where state = :state;"""
select_nickname_state_all = """select nickname, state from authorizations where nickname is not null;""" select_nickname_state_all = """select nickname, state from authorizations where nickname is not null;"""
del_orphans = """delete from authorizations where nickname is null;"""

4
config.py
View File

@ -1,3 +1,5 @@
import os
import requests import requests
from os import getenv from os import getenv
@ -6,6 +8,8 @@ assert CLIENT_ID, "No client_id in env"
log_level = 'DEBUG' log_level = 'DEBUG'
access_key = os.getenv('access_key')
REDIRECT_URL = requests.utils.quote("http://127.0.0.1:9000/fdev-redirect") REDIRECT_URL = requests.utils.quote("http://127.0.0.1:9000/fdev-redirect")
AUTH_URL = 'https://auth.frontierstore.net/auth' AUTH_URL = 'https://auth.frontierstore.net/auth'
TOKEN_URL = 'https://auth.frontierstore.net/token' TOKEN_URL = 'https://auth.frontierstore.net/token'

72
web.py
View File

@ -4,6 +4,16 @@ import json
from capi import capi_authorizer from capi import capi_authorizer
import config import config
from EDMCLogging import get_main_logger
logger = get_main_logger()
logger.propagate = False
def check_secret(req: falcon.request.Request, resp: falcon.response.Response, resource, params) -> None:
cookies_secret = req.get_cookie_values('key')
if cookies_secret[0] != config.access_key:
raise falcon.HTTPForbidden
class AuthInit: class AuthInit:
@ -16,14 +26,70 @@ class FDEVCallback:
def on_get(self, req: falcon.request.Request, resp: falcon.response.Response) -> None: def on_get(self, req: falcon.request.Request, resp: falcon.response.Response) -> None:
code = req.get_param('code') code = req.get_param('code')
state = req.get_param('state') state = req.get_param('state')
msg = capi_authorizer.fdev_callback(code, state) try:
msg = capi_authorizer.fdev_callback(code, state)
resp.content_type = falcon.MEDIA_JSON
resp.text = json.dumps(msg)
except KeyError as e:
logger.warning(f'Exception on FDEVCallback, code: {code!r}, state: {state!r}', exc_info=e)
raise falcon.HTTPNotFound(description=str(e))
except Exception as e:
logger.warning(f'Exception on FDEVCallback, code: {code!r}, state: {state!r}', exc_info=e)
raise falcon.HTTPBadRequest(description=str(e))
class TokenByState:
def on_get(self, req: falcon.request.Request, resp: falcon.response.Response, state: str) -> None:
resp.content_type = falcon.MEDIA_JSON resp.content_type = falcon.MEDIA_JSON
resp.text = json.dumps(msg) tokens = capi_authorizer.get_token_by_state(state)
if tokens is None:
raise falcon.HTTPNotFound(description='No such state found')
resp.text = json.dumps(tokens)
def on_delete(self, req: falcon.request.Request, resp: falcon.response.Response, state: str):
tokens = capi_authorizer.get_token_by_state(state)
if tokens is None:
raise falcon.HTTPNotFound(description='No such state found')
capi_authorizer.delete_by_state(state)
class TokenByNickname:
@falcon.before(check_secret)
def on_get(self, req: falcon.request.Request, resp: falcon.response.Response, nickname: str):
resp.content_type = falcon.MEDIA_JSON
state = capi_authorizer.model.get_state_by_nickname(nickname)
if state is None:
raise falcon.HTTPNotFound(description='No such nickname found')
tokens = capi_authorizer.get_token_by_state(state)
resp.text = json.dumps(tokens)
@falcon.before(check_secret)
def on_delete(self, req: falcon.request.Request, resp: falcon.response.Response, nickname: str):
state = capi_authorizer.model.get_state_by_nickname(nickname)
if state is None:
raise falcon.HTTPNotFound(description='No such nickname found')
capi_authorizer.delete_by_state(state)
class CleanOrphanRecords:
def on_post(self, req: falcon.request.Request, resp: falcon.response.Response):
capi_authorizer.cleanup_orphans()
application = falcon.App() application = falcon.App()
application.add_route('/authorize', AuthInit()) application.add_route('/authorize', AuthInit())
application.add_route('/fdev-redirect', FDEVCallback()) application.add_route('/fdev-redirect', FDEVCallback())
application.add_route('/users/{state}', TokenByState()) # for legacy reasons
application.add_route('/users/by-state/{state}', TokenByState())
application.add_route('/users/by-nickname/{nickname}', TokenByNickname())
application.add_route('/tools/clean-orphan-records', CleanOrphanRecords())
if __name__ == '__main__': if __name__ == '__main__':
waitress.serve(application, host='127.0.0.1', port=9000) waitress.serve(application, host='127.0.0.1', port=9000)