def load_role(): role = None if 'Authorization' in request.headers: credential = request.headers.get('Authorization') if ' ' in credential: mechanism, credential = credential.split(' ', 1) data = check_token(credential) if data is not None: role = Role.by_id(data.get('id')) else: role = Role.by_api_key(credential) elif 'api_key' in request.args: role = Role.by_api_key(request.args.get('api_key')) request.authz = Authz(role=role)
def _get_credential_authz(credential): if credential is None or not len(credential): return if " " in credential: method, credential = credential.split(" ", 1) if method == "Token": return Authz.from_token(credential) role = Role.by_api_key(credential) if role is not None: return Authz.from_role(role=role)
def _get_credential_authz(credential): if credential is None or not len(credential): return if ' ' in credential: mechanism, credential = credential.split(' ', 1) authz = Authz.from_token(credential, scope=request.path) if authz is not None: return authz role = Role.by_api_key(credential) if role is not None: return Authz.from_role(role=role)
def load_role(): request.authz = Authz(role=None) if session.get('user'): role = Role.by_id(session.get('user')) request.authz = Authz(role=role) else: api_key = request.args.get('api_key') if api_key is None: auth_header = request.headers.get('Authorization') or '' if auth_header.lower().startswith('apikey'): api_key = auth_header.split(' ', 1).pop() role = Role.by_api_key(api_key) if role is not None: request.authz = Authz(role=role)
def load_role(): request.auth_roles = set([Role.system(Role.SYSTEM_GUEST)]) request.auth_role = None request.logged_in = False auth_header = request.headers.get('Authorization') if session.get('user'): request.auth_roles.update(session.get('roles', [])) request.auth_role = Role.by_id(session.get('user')) request.logged_in = True elif auth_header is not None: if not auth_header.lower().startswith('apikey'): return api_key = auth_header.split(' ', 1).pop() role = Role.by_api_key(api_key) if role is None: return request.auth_role = role request.auth_roles.update([Role.system(Role.SYSTEM_USER), role.id]) request.logged_in = True
def load_role(): request.auth_roles = set([Role.system(Role.SYSTEM_GUEST)]) request.auth_role = None request.logged_in = False if session.get('user'): request.auth_roles.update(session.get('roles', [])) request.auth_role = Role.by_id(session.get('user')) request.logged_in = True else: api_key = request.args.get('api_key') if api_key is None: auth_header = request.headers.get('Authorization') or '' if auth_header.lower().startswith('apikey'): api_key = auth_header.split(' ', 1).pop() role = Role.by_api_key(api_key) if role is None: return request.auth_role = role request.auth_roles.update([Role.system(Role.SYSTEM_USER), role.id]) request.logged_in = True
def _get_credential_role(credential): data = check_token(credential) if data is not None: return Role.by_id(data.get('id')) else: return Role.by_api_key(credential)