def list_access_tokens(request): """ List tokens for an available user (exact same post as requesting) """ # Validate the request, get user and applink try: user, link, expires = validate_request(request.REQUEST) except Exception, e: return http.HttpResponseForbidden(repr(e))
def request_access_token(request): """ Create tokens on a well formed request """ # Validate the request, get user and applink try: user, link, expires = validate_request(request.REQUEST) except Exception as e: return http.HttpResponseForbidden(e) else: # Get existing or generate a token for the user try: token = Token.objects.filter(timeout=expires, user=user, link=link).order_by("modified")[0] token.modified = timezone.now() except IndexError: token = Token(secret=base64.urlsafe_b64encode(os.urandom(8)), timeout=expires, user=user, link=link) if "url" in request.REQUEST: token.url = request.REQUEST["url"] token.save() return http.HttpResponse(token.secret, content_type="text/plain")