Exemplo n.º 1
0
    async def wrapper(request, *args, **kwargs):
        user = await User.find_one(dict(name=kwargs["user"]))
        if not user:
            raise exceptions.Unauthorized("Incorrect username.")

        kwargs["user"] = user
        return await handler(request, *args, **kwargs)
Exemplo n.º 2
0
 async def wrapper(request, *args, **kwargs):
     if not await self._is_api_key(request):
         if hasattr(self.error, '__call__'):
             return await self.error(request)
         else:
             raise exceptions.Unauthorized(self.error)
     return await handler(request, *args, **kwargs)
Exemplo n.º 3
0
    async def wrapper(request, *args, **kwargs):
        user = await User.find_one(
            dict(name=kwargs["user"], token=request.token))
        if not user:
            raise exceptions.Unauthorized("Auth required.")

        kwargs["user"] = user
        return await handler(request, *args, **kwargs)
Exemplo n.º 4
0
        async def decorated_function(request, *args, **kwargs):
            auth_cookie = request.cookies.get("ws_session")
            if auth_cookie is not None:
                try:
                    auth_cookie = base64.b64decode(auth_cookie)
                    username = request.app.signer.unsign(auth_cookie)
                except SignatureExpired:
                    del request.cookies["ws_session"]
                    raise exceptions.Unauthorized(
                        "Authorization cookie expired")
                except BadSignature:
                    del request.cookies["ws_session"]
                    raise exceptions.Unauthorized("Bad authorization cookie")
            else:
                redis = request.app.app_redis

                try:
                    auth_header = request.headers["Authorization"]
                except KeyError:
                    raise exceptions.Unauthorized(
                        "Authorization header required")

                try:
                    method, credentials = auth_header.split(" ", 1)
                    if method != "Basic":
                        raise exceptions.Unauthorized(
                            "Authorization method not supported")

                    data = base64.b64decode(credentials).decode("utf-8")
                    username, password = data.split(":", 1)
                except (ValueError, binascii.Error):
                    raise exceptions.Unauthorized(
                        "Invalid authorization header")

                pw_data = await redis.hgetall("auth:user:"******"Invalid username / password")

                    salt = pw_data[b"salt"]
                    pw_hash = pw_data[b"hash"]
                except KeyError:
                    raise exceptions.Unauthorized(
                        "Invalid username / password")

                test_pw_hash = hashlib.pbkdf2_hmac("sha256",
                                                   password.encode("utf-8"),
                                                   salt, 100000)
                if not secrets.compare_digest(pw_hash, test_pw_hash):
                    raise exceptions.Unauthorized(
                        "Invalid username / password")

            request["username"] = username
            return await f(request, *args, **kwargs)
Exemplo n.º 5
0
        async def wrapper(request, *args, **kwargs):
            auth = request.headers.get("Authorization", None)

            if not auth or auth != f'Basic {token}':
                raise exceptions.Unauthorized("Auth required.",
                                              scheme="Basic",
                                              realm="Restricted Area")

            return await handler(request, *args, **kwargs)
Exemplo n.º 6
0
        async def wrapper(request, *args, **kwargs):
            if not await self._is_authenticated(request):
                raise exceptions.Unauthorized("Auth required.")

            return await handler(request, *args, **kwargs)