Home Explore Help
Sign In
valentina.korovkina
/
sharix-open-webapp-base
forked from ShariX_Open/sharix-open-webapp-base
1
0
Fork 0
Files
Branch: task-from-team
Branches Tags
sharix-open-web...
/
venv
/
lib
/
python3.9
/
site-packages
/
coreapi
/
auth.py

auth.py 2.2 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. from coreapi.utils import domain_matches
    2. 

  2. from requests.auth import AuthBase, HTTPBasicAuth
    3. 

  3. 

  4. 

  5. class BasicAuthentication(HTTPBasicAuth):
    6. 

  6.     allow_cookies = False
    7. 

  7. 

  8.     def __init__(self, username, password, domain=None):
    9. 

  9.         self.domain = domain
    10. 

  10.         super(BasicAuthentication, self).__init__(username, password)
    11. 

  11. 

  12.     def __call__(self, request):
    13. 

  13.         if not domain_matches(request, self.domain):
    14. 

  14.             return request
    15. 

  15. 

  16.         return super(BasicAuthentication, self).__call__(request)
    17. 

  17. 

  18. 

  19. class TokenAuthentication(AuthBase):
    20. 

  20.     allow_cookies = False
    21. 

  21.     scheme = 'Bearer'
    22. 

  22. 

  23.     def __init__(self, token, scheme=None, domain=None):
    24. 

  24.         """
    25. 

  25.         * Use an unauthenticated client, and make a request to obtain a token.
    26. 

  26.         * Create an authenticated client using eg. `TokenAuthentication(token="<token>")`
    27. 

  27.         """
    28. 

  28.         self.token = token
    29. 

  29.         self.domain = domain
    30. 

  30.         if scheme is not None:
    31. 

  31.             self.scheme = scheme
    32. 

  32. 

  33.     def __call__(self, request):
    34. 

  34.         if not domain_matches(request, self.domain):
    35. 

  35.             return request
    36. 

  36. 

  37.         request.headers['Authorization'] = '%s %s' % (self.scheme, self.token)
    38. 

  38.         return request
    39. 

  39. 

  40. 

  41. class SessionAuthentication(AuthBase):
    42. 

  42.     """
    43. 

  43.     Enables session based login.
    44. 

  44. 

  45.     * Make an initial request to obtain a CSRF token.
    46. 

  46.     * Make a login request.
    47. 

  47.     """
    48. 

  48.     allow_cookies = True
    49. 

  49.     safe_methods = ('GET', 'HEAD', 'OPTIONS', 'TRACE')
    50. 

  50. 

  51.     def __init__(self, csrf_cookie_name=None, csrf_header_name=None, domain=None):
    52. 

  52.         self.csrf_cookie_name = csrf_cookie_name
    53. 

  53.         self.csrf_header_name = csrf_header_name
    54. 

  54.         self.csrf_token = None
    55. 

  55.         self.domain = domain
    56. 

  56. 

  57.     def store_csrf_token(self, response, **kwargs):
    58. 

  58.         if self.csrf_cookie_name in response.cookies:
    59. 

  59.             self.csrf_token = response.cookies[self.csrf_cookie_name]
    60. 

  60. 

  61.     def __call__(self, request):
    62. 

  62.         if not domain_matches(request, self.domain):
    63. 

  63.             return request
    64. 

  64. 

  65.         if self.csrf_token and self.csrf_header_name is not None and (request.method not in self.safe_methods):
    66. 

  66.             request.headers[self.csrf_header_name] = self.csrf_token
    67. 

  67.         if self.csrf_cookie_name is not None:
    68. 

  68.             request.register_hook('response', self.store_csrf_token)
    69. 

  69.         return request
    70.