Lunch-O/luncho/helpers.py

#!/usr/bin/env python
# -*- encoding: utf-8 -*-

"""Helper functions."""

import logging

from functools import wraps

from flask import request

from luncho.server import User

from luncho.exceptions import RequestMustBeJSONException
from luncho.exceptions import InvalidTokenException
from luncho.exceptions import MissingFieldsException
from luncho.exceptions import UserNotFoundException
from luncho.exceptions import AuthorizationRequiredException

LOG = logging.getLogger('luncho.helpers')


class ForceJSON(object):
    """Decorator to check if the request is in JSON format."""
    def __init__(self, required=None):
        self.required = required or []

    def __call__(self, func):
        @wraps(func)
        def check_json(*args, **kwargs):
            json = request.get_json(force=True, silent=True)
            if not json:
                raise RequestMustBeJSONException()

            # now we have the JSON, let's check if all the fields are here.
            missing = []
            for field in self.required or []:
                if not field in json:
                    missing.append(field)

            if missing:
                raise MissingFieldsException(missing)

            request.as_json = json     # replace with a forced json
            return func(*args, **kwargs)
        return check_json


def auth(func):
    """Decorator to make the request authenticated via token. If the token
    is missing or it is invalid, the decorator will raise the proper
    exceptions (and return the proper error codes). If the token is valid,
    a "user" property will be added to the request object with the current
    user."""
    @wraps(func)
    def check_auth(*args, **kwargs):
        if not request.authorization:
            LOG.debug('There is no basic auth in the headers')
            raise AuthorizationRequiredException

        token = request.authorization.username
        user = User.query.filter_by(token=token).first()
        if not user:
            LOG.debug('No user with token {token}'.format(token=token))
            raise UserNotFoundException()

        if not user.valid_token(token):
            raise InvalidTokenException()

        request.user = user

        return func(*args, **kwargs)
    return check_auth
starting with tests, but we cant start the database this way because "outside of application context" 11 years ago			`#!/usr/bin/env python`
			`# -- encoding: utf-8 --`

			`"""Helper functions."""`

token is not part of the URL anymore 11 years ago			`import logging`

starting with tests, but we cant start the database this way because "outside of application context" 11 years ago			`from functools import wraps`

			`from flask import request`

creating groups 11 years ago			`from luncho.server import User`

converting JSONErrors to exceptions 11 years ago			`from luncho.exceptions import RequestMustBeJSONException`
			`from luncho.exceptions import InvalidTokenException`
			`from luncho.exceptions import MissingFieldsException`
			`from luncho.exceptions import UserNotFoundException`
preparing to use the token in a basic auth fashion 11 years ago			`from luncho.exceptions import AuthorizationRequiredException`
converting JSONErrors to exceptions 11 years ago
token is not part of the URL anymore 11 years ago			`LOG = logging.getLogger('luncho.helpers')`

fixed the tests 11 years ago
starting with tests, but we cant start the database this way because "outside of application context" 11 years ago			`class ForceJSON(object):`
preparing to use the token in a basic auth fashion 11 years ago			`"""Decorator to check if the request is in JSON format."""`
starting with tests, but we cant start the database this way because "outside of application context" 11 years ago			`def __init__(self, required=None):`
			`self.required = required or []`

			`def __call__(self, func):`
			`@wraps(func)`
			`def check_json(args, *kwargs):`
			`json = request.get_json(force=True, silent=True)`
			`if not json:`
converting JSONErrors to exceptions 11 years ago			`raise RequestMustBeJSONException()`
starting with tests, but we cant start the database this way because "outside of application context" 11 years ago
			`# now we have the JSON, let's check if all the fields are here.`
			`missing = []`
fixed the tests 11 years ago			`for field in self.required or []:`
starting with tests, but we cant start the database this way because "outside of application context" 11 years ago			`if not field in json:`
			`missing.append(field)`

			`if missing:`
converting JSONErrors to exceptions 11 years ago			`raise MissingFieldsException(missing)`
starting with tests, but we cant start the database this way because "outside of application context" 11 years ago
added the forced json into the request and removed unused function 11 years ago			`request.as_json = json # replace with a forced json`
starting with tests, but we cant start the database this way because "outside of application context" 11 years ago			`return func(args, *kwargs)`
			`return check_json`
added token generation 11 years ago

token is not part of the URL anymore 11 years ago			`def auth(func):`
mostly updating documentation 11 years ago			`"""Decorator to make the request authenticated via token. If the token`
			`is missing or it is invalid, the decorator will raise the proper`
			`exceptions (and return the proper error codes). If the token is valid,`
			`a "user" property will be added to the request object with the current`
			`user."""`
token is not part of the URL anymore 11 years ago			`@wraps(func)`
			`def check_auth(args, *kwargs):`
			`if not request.authorization:`
			`LOG.debug('There is no basic auth in the headers')`
			`raise AuthorizationRequiredException`
preparing to use the token in a basic auth fashion 11 years ago
token is not part of the URL anymore 11 years ago			`token = request.authorization.username`
			`user = User.query.filter_by(token=token).first()`
			`if not user:`
			`LOG.debug('No user with token {token}'.format(token=token))`
			`raise UserNotFoundException()`
preparing to use the token in a basic auth fashion 11 years ago
token is not part of the URL anymore 11 years ago			`if not user.valid_token(token):`
			`raise InvalidTokenException()`
preparing to use the token in a basic auth fashion 11 years ago
token is not part of the URL anymore 11 years ago			`request.user = user`
preparing to use the token in a basic auth fashion 11 years ago
token is not part of the URL anymore 11 years ago			`return func(args, *kwargs)`
			`return check_auth`