def check_api_key(request):
keystr = request.META.get('HTTP_X_KEGBOT_API_KEY')
if not keystr:
keystr = request.REQUEST.get('api_key')
if not keystr:
raise kbapi.NoAuthTokenError('The parameter "api_key" is required')
try:
key = apikey.ApiKey.FromString(keystr)
except ValueError, e:
raise kbapi.BadApiKeyError('Error parsing API key: %s' % e)
def check_api_key(request):
"""Check a request for an API key."""
keystr = request.META.get("HTTP_X_KEGBOT_API_KEY")
if not keystr:
keystr = request.POST.get("api_key", request.GET.get("api_key", None))
if not keystr:
raise kbapi.NoAuthTokenError('The parameter "api_key" is required')
try:
api_key = models.ApiKey.objects.get(key=keystr)
except models.ApiKey.DoesNotExist:
raise kbapi.BadApiKeyError("API key does not exist")
if not api_key.is_active():
raise kbapi.BadApiKeyError("Key and/or user is inactive")
# TODO: remove me.
if api_key.user and (not api_key.user.is_staff and not api_key.user.is_superuser):
raise kbapi.PermissionDeniedError("User is not staff/superuser")