def add_credential(credential):
"""
POST /user/credentials
The same logic as /users/{userId}/credentials, but gets the userId from the auth context rather than path.
This is for use by regular (non-admin) users to update their own credentials.
:param credential:
:return: credential json object
"""
try:
if credential['type'] != UserAccessCredentialTypes.password.value:
return make_response_error('Invalid credential type',
in_httpcode=400), 400
else:
cred_type = UserAccessCredentialTypes(credential['type'])
with session_scope() as session:
mgr = identities.manager_factory.for_session(session)
user = ApiRequestContextProxy.identity().username
result = mgr.add_user_credential(username=user,
credential_type=cred_type,
value=credential['value'])
return credential_db_to_msg(result), 200
except Exception as ex:
logger.exception('API Error')
return make_response_error(errmsg=str(ex), in_httpcode=500), 500
def get_credentials():
"""
GET /user/credentials
Fetches the credentials list for the authenticated user
:return:
"""
try:
with session_scope() as session:
mgr = identities.manager_factory.for_session(session)
usr = mgr.get_user(ApiRequestContextProxy.identity().username)
creds = [
credential_db_to_msg(
usr.get('credentials')[UserAccessCredentialTypes.password])
]
if creds is None:
return [], 200
else:
return creds, 200
except Exception as ex:
logger.exception('API Error')
return make_response_error(errmsg=str(ex), in_httpcode=500), 500