def load_role():
role = None
if 'Authorization' in request.headers:
credential = request.headers.get('Authorization')
if ' ' in credential:
mechanism, credential = credential.split(' ', 1)
data = check_token(credential)
if data is not None:
role = Role.by_id(data.get('id'))
else:
role = Role.by_api_key(credential)
elif 'api_key' in request.args:
role = Role.by_api_key(request.args.get('api_key'))
request.authz = Authz(role=role)
def _get_credential_authz(credential):
if credential is None or not len(credential):
return
if " " in credential:
method, credential = credential.split(" ", 1)
if method == "Token":
return Authz.from_token(credential)
role = Role.by_api_key(credential)
if role is not None:
return Authz.from_role(role=role)
def _get_credential_authz(credential):
if credential is None or not len(credential):
return
if ' ' in credential:
mechanism, credential = credential.split(' ', 1)
authz = Authz.from_token(credential, scope=request.path)
if authz is not None:
return authz
role = Role.by_api_key(credential)
if role is not None:
return Authz.from_role(role=role)
def load_role():
request.authz = Authz(role=None)
if session.get('user'):
role = Role.by_id(session.get('user'))
request.authz = Authz(role=role)
else:
api_key = request.args.get('api_key')
if api_key is None:
auth_header = request.headers.get('Authorization') or ''
if auth_header.lower().startswith('apikey'):
api_key = auth_header.split(' ', 1).pop()
role = Role.by_api_key(api_key)
if role is not None:
request.authz = Authz(role=role)
def load_role():
request.auth_roles = set([Role.system(Role.SYSTEM_GUEST)])
request.auth_role = None
request.logged_in = False
auth_header = request.headers.get('Authorization')
if session.get('user'):
request.auth_roles.update(session.get('roles', []))
request.auth_role = Role.by_id(session.get('user'))
request.logged_in = True
elif auth_header is not None:
if not auth_header.lower().startswith('apikey'):
return
api_key = auth_header.split(' ', 1).pop()
role = Role.by_api_key(api_key)
if role is None:
return
request.auth_role = role
request.auth_roles.update([Role.system(Role.SYSTEM_USER), role.id])
request.logged_in = True
def load_role():
request.auth_roles = set([Role.system(Role.SYSTEM_GUEST)])
request.auth_role = None
request.logged_in = False
if session.get('user'):
request.auth_roles.update(session.get('roles', []))
request.auth_role = Role.by_id(session.get('user'))
request.logged_in = True
else:
api_key = request.args.get('api_key')
if api_key is None:
auth_header = request.headers.get('Authorization') or ''
if auth_header.lower().startswith('apikey'):
api_key = auth_header.split(' ', 1).pop()
role = Role.by_api_key(api_key)
if role is None:
return
request.auth_role = role
request.auth_roles.update([Role.system(Role.SYSTEM_USER), role.id])
request.logged_in = True
def _get_credential_role(credential):
data = check_token(credential)
if data is not None:
return Role.by_id(data.get('id'))
else:
return Role.by_api_key(credential)
