arno/isso
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Create the auth decorator

Browse Source
This commit is contained in:
Nicolas Le Manchet 2014-07-22 17:41:23 +02:00
parent 9d63498def
commit 33741b9d2d
1 changed files with 15 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
isso/views/api.py
View File

@ -50,6 +50,20 @@ def xhr(func):
return dec return dec
def auth(func):
"""A decorator to check the validity of an auth cookie."""
def dec(self, env, req, *args, **kwargs):
if not self.conf.getboolean("auth", "enabled"):
return func(self, env, req, *args, **kwargs)
try:
self.load(req.cookies.get("auth", ""))
except (SignatureExpired, BadSignature):
raise Forbidden
return func(self, env, req, *args, **kwargs)
return dec
class API(object): class API(object):
@ -100,6 +114,7 @@ class API(object):
return obj return obj
@xhr @xhr
@auth
@requires(str, 'uri') @requires(str, 'uri')
def new(self, environ, request, uri): def new(self, environ, request, uri):
data = request.get_json() data = request.get_json()