def wrapper(*args, **kwargs): context = kwargs.get("context") or get_database_session() session_id = request.headers.get('Authorization') user = User.get_user_by_session(context, session_id) if not user: raise Unauthorized("You are not allowed to access this.", status=401) if not user.session_create_time or user.session_create_time - datetime.now( ) > timedelta(minutes=30): raise Unauthorized("You are not allowed to access this.", status=401) kwargs["user"] = user res = func(*args, **kwargs) user.session_create_time = datetime.now() context.commit() return res
def wrapper(*args, **kwargs): context = kwargs['context'] session_id = request.headers.get('Authorization') user = User.get_user_by_session(context, session_id) if not session_id: raise HTTPException("You are not allowed to access this.", status=401) if not user or datetime.datetime.now( ) - user.session_create_time > datetime.timedelta(minutes=30): raise HTTPException("You are not allowed to access this.", status=401) kwargs['user'] = user user.session_create_time = datetime.datetime.now() context.commit() return func(*args, **kwargs)