def webapp(): try: if not is_authorized(): return to("auth") else: config = {'userId': session['id'], 'email': session['email'],} return render_template("webapp.html", email=session['email'], config=json.dumps(config)) except Exception, exception: logger.critical(exception) logger.debug(traceback.format_exc()) return error_page(exception)
def safe(user_id): try: if request.method == "GET": if not is_authorized() or session["id"] != user_id: abort(401) # Unauthorized encrypted = s3store.get(session["id"]) response = encrypted elif request.method == "PUT": data = request.json if data["encrypted"]: s3store.set(session["id"], data["encrypted"]) response = {} except Exception, exception: logger.critical(exception) logger.debug(traceback.format_exc()) response = error(str(exception)) abort(500)
def auth(): try: if not is_identified(): return to("id") # We are here because the user has been identified but NOT authorized. user = get_user() if not user: user = create_user() # If our user is already authorized to use the service, skip the # authorization and let's go. if is_authorized(): logger.debug("User %s is authorized." % user.id) return next_on() else: logger.debug("User %s is NOT authorized." % user.id) # Render the payment page. return payment(user) except Exception, exception: logger.critical("Exception: %s" % exception) logger.debug(traceback.format_exc()) return error_page(exception)