def test_login(self):
app = TestApp(M.app)
user_id = 'testuser'
apikey = self._add_api_key()
token = ApiToken.add(apikey.client_id, user_id)
app.get('/',
headers=dict(Authorization="Bearer %s" % token.token),
status=200)
def test_login(self):
app = TestApp(M.app)
user_id = 'testuser'
apikey = self._add_api_key()
token = ApiToken.add(apikey.client_id, user_id)
app.get('/',
headers=dict(Authorization="Bearer %s" % token.token),
status=200)
def __token_grant_by_password(apikey):
username = __check_request_required_var('username')
password = __check_request_required_var('password')
user = User.get_by_name(username)
if not DEVELOP_MODE and user and not user.validate_password(password):
raise InvalidRequest(err.username_password_mismatch)
token = ApiToken.add(apikey.client_id, username)
return json.dumps(token.token_dict())
def __token_grant_by_password(apikey):
username = __check_request_required_var('username')
password = __check_request_required_var('password')
user = User.get_by_name(username)
if not DEVELOP_MODE and user and not user.validate_password(password):
raise InvalidRequest(err.username_password_mismatch)
token = ApiToken.add(apikey.client_id, username)
return json.dumps(token.token_dict())
def __token_grant_by_authorization_code(apikey):
redirect_uri = __check_request_required_var('redirect_uri')
authorization_code = __check_request_required_var('code')
if apikey.status != ApiKey.STATUS_DEV:
if apikey.redirect_uri != redirect_uri:
raise InvalidRequest(err.redirect_uri_mismatch, ext=redirect_uri)
user_id = OAuthCode.check(apikey.client_id, authorization_code)
if not user_id:
raise InvalidRequest(
err.invalid_authorization_code, ext=authorization_code)
request.response.set_content_type('application/json; charset=utf8')
token = ApiToken.add(apikey.client_id, user_id)
return json.dumps(token.token_dict())
def __token_grant_by_authorization_code(apikey):
redirect_uri = __check_request_required_var('redirect_uri')
authorization_code = __check_request_required_var('code')
if apikey.status != ApiKey.STATUS_DEV:
if apikey.redirect_uri != redirect_uri:
raise InvalidRequest(err.redirect_uri_mismatch, ext=redirect_uri)
user_id = OAuthCode.check(apikey.client_id, authorization_code)
if not user_id:
raise InvalidRequest(err.invalid_authorization_code,
ext=authorization_code)
request.response.set_content_type('application/json; charset=utf8')
token = ApiToken.add(apikey.client_id, user_id)
return json.dumps(token.token_dict())
def _add_api_token(self):
apikey = self._add_api_key()
user_id = "testuser"
return ApiToken.add(apikey.client_id, user_id, datetime.now())
def _add_api_token(self):
apikey = self._add_api_key()
user_id = 'testuser'
return ApiToken.add(apikey.client_id, user_id, datetime.now())
def _add_api_token(self, user_id):
apikey = self._add_api_key()
return ApiToken.add(apikey.client_id, user_id)
def _add_api_token(self, user_id):
apikey = self._add_api_key()
return ApiToken.add(apikey.client_id, user_id)
