sachet/sachet-server
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

sachet/server/models.py: merge read_token() into the User class

Browse Source
This commit is contained in:
dogeystamp 2023-03-31 20:06:00 -04:00
parent 27f6703318
commit a53fba5f4b
Signed by: dogeystamp
GPG Key ID: 7225FE3592EFFA38
2 changed files with 25 additions and 26 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

48
sachet/server/models.py
View File

@ -87,6 +87,29 @@ class User(db.Model):
return jwt.encode(payload, app.config.get("SECRET_KEY"), algorithm="HS256") return jwt.encode(payload, app.config.get("SECRET_KEY"), algorithm="HS256")
def read_token(token):
"""Read a JWT and validate it.
Returns a tuple: dictionary of the JWT's data, and the corresponding user
if available.
"""
data = jwt.decode(
token,
app.config["SECRET_KEY"],
algorithms=["HS256"],
)
if BlacklistToken.check_blacklist(token):
raise jwt.ExpiredSignatureError("Token revoked.")
user = User.query.filter_by(username=data.get("sub")).first()
if not user:
raise jwt.InvalidTokenError("No user corresponds to this token.")
return data, user
class PermissionField(fields.Field): class PermissionField(fields.Field):
"""Field that serializes a Permissions bitmask to an array of strings.""" """Field that serializes a Permissions bitmask to an array of strings."""
@ -155,29 +178,6 @@ class BlacklistToken(db.Model):
return True return True
def read_token(token):
"""Read a JWT and validate it.
Returns a tuple: dictionary of the JWT's data, and the corresponding user
if available.
"""
data = jwt.decode(
token,
app.config["SECRET_KEY"],
algorithms=["HS256"],
)
if BlacklistToken.check_blacklist(token):
raise jwt.ExpiredSignatureError("Token revoked.")
user = User.query.filter_by(username=data.get("sub")).first()
if not user:
raise jwt.InvalidTokenError("No user corresponds to this token.")
return data, user
def auth_required(f): def auth_required(f):
"""Decorator to require authentication. """Decorator to require authentication.
@ -200,7 +200,7 @@ def auth_required(f):
return jsonify({"status": "fail", "message": "Missing auth token"}), 401 return jsonify({"status": "fail", "message": "Missing auth token"}), 401
try: try:
data, user = read_token(token) data, user = User.read_token(token)
except jwt.ExpiredSignatureError: except jwt.ExpiredSignatureError:
# if it's expired we don't want it lingering in the db # if it's expired we don't want it lingering in the db
BlacklistToken.check_blacklist(token) BlacklistToken.check_blacklist(token)

3
sachet/server/users/views.py
View File

@ -3,7 +3,6 @@ from flask import Blueprint, request, jsonify
from flask.views import MethodView from flask.views import MethodView
from sachet.server.models import ( from sachet.server.models import (
auth_required, auth_required,
read_token,
patch, patch,
Permissions, Permissions,
User, User,
@ -66,7 +65,7 @@ class LogoutAPI(MethodView):
return jsonify({"status": "fail", "message": "Token already revoked."}), 400 return jsonify({"status": "fail", "message": "Token already revoked."}), 400
try: try:
data, token_user = read_token(token) data, token_user = User.read_token(token)
except jwt.ExpiredSignatureError: except jwt.ExpiredSignatureError:
return jsonify({"status": "fail", "message": "Token already expired."}), 400 return jsonify({"status": "fail", "message": "Token already expired."}), 400
except jwt.InvalidTokenError: except jwt.InvalidTokenError: