core/services/auth.py

from functools import wraps
import aiohttp
from aiohttp.web import HTTPUnauthorized
from settings import AUTH_URL


async def check_auth(req):
    token = req.headers.get("Authorization")
    if token:
        print(f"[services.auth] checking auth token: {token}")

        gql = {
            "query": "query { validate_jwt_token( params: ValidateJWTTokenInput!) { is_valid claims } }",
            "variables": {"params": {"token_type": "access_token", "token": token}},
        }

        async with aiohttp.ClientSession(timeout=aiohttp.ClientTimeout(total=30.0)) as session:
            async with session.post(AUTH_URL, json=gql) as response:
                response_text = await response.text()
                print(f"[services.auth] response text: {response_text}")

                if response.status != 200:
                    return False, None
                r = await response.json()
                print(f"[services.auth] response: {r}")
                try:
                    data = r.get("data")
                    is_authenticated = False
                    user_id = None
                    if data:
                        result = data.get("validate_jwt_token", {})
                        is_authenticated = result.get("is_valid")
                        if is_authenticated:
                            user_id = result.get("claims", {}).get("sub")
                    return is_authenticated, user_id
                except Exception as e:
                    print(f"{e}: {r}")
    return False, None


def login_required(f):
    @wraps(f)
    async def decorated_function(*args, **kwargs):
        info = args[1]
        context = info.context
        print(context)
        req = context.get("request")
        is_authenticated, user_id = await check_auth(req)
        if not is_authenticated:
            raise Exception("You are not logged in")
        else:
            # Add user_id to the context
            context["user_id"] = user_id

        # If the user is authenticated, execute the resolver
        return await f(*args, **kwargs)

    return decorated_function


def auth_request(f):
    @wraps(f)
    async def decorated_function(*args, **kwargs):
        req = args[0]
        is_authenticated, user_id = await check_auth(req)
        if not is_authenticated:
            raise HTTPUnauthorized(text="Please, login first")
        else:
            req["user_id"] = user_id
        return await f(*args, **kwargs)

    return decorated_function
merged-isolated-core 2023-10-23 14:47:11 +00:00			`from functools import wraps`
aiohttp-try 2023-11-29 07:23:41 +00:00			`import aiohttp`
			`from aiohttp.web import HTTPUnauthorized`
merged-isolated-core 2023-10-23 14:47:11 +00:00			`from settings import AUTH_URL`


			`async def check_auth(req):`
			`token = req.headers.get("Authorization")`
authorizer-connector-fix-7 2023-12-12 05:00:46 +00:00			`if token:`
			`print(f"[services.auth] checking auth token: {token}")`
authorizer-connector-fix-2 2023-12-11 19:12:18 +00:00
authorizer-connector-fix-7 2023-12-12 05:00:46 +00:00			`gql = {`
gql-fix 2023-12-13 17:42:00 +00:00			`"query": "query { validate_jwt_token( params: ValidateJWTTokenInput!) { is_valid claims } }",`
validate-jwt 2023-12-13 13:20:06 +00:00			`"variables": {"params": {"token_type": "access_token", "token": token}},`
authorizer-connector-fix-7 2023-12-12 05:00:46 +00:00			`}`
merged-isolated-core 2023-10-23 14:47:11 +00:00
authorizer-connector-fix-7 2023-12-12 05:00:46 +00:00			`async with aiohttp.ClientSession(timeout=aiohttp.ClientTimeout(total=30.0)) as session:`
validate-jwt 2023-12-13 13:20:06 +00:00			`async with session.post(AUTH_URL, json=gql) as response:`
debug-response 2023-12-13 17:49:26 +00:00			`response_text = await response.text()`
			`print(f"[services.auth] response text: {response_text}")`

authorizer-connector-fix-7 2023-12-12 05:00:46 +00:00			`if response.status != 200:`
			`return False, None`
			`r = await response.json()`
			`print(f"[services.auth] response: {r}")`
			`try:`
			`data = r.get("data")`
			`is_authenticated = False`
			`user_id = None`
			`if data:`
validate-jwt 2023-12-13 13:20:06 +00:00			`result = data.get("validate_jwt_token", {})`
			`is_authenticated = result.get("is_valid")`
			`if is_authenticated:`
			`user_id = result.get("claims", {}).get("sub")`
authorizer-connector-fix-7 2023-12-12 05:00:46 +00:00			`return is_authenticated, user_id`
			`except Exception as e:`
			`print(f"{e}: {r}")`
			`return False, None`
merged-isolated-core 2023-10-23 14:47:11 +00:00

			`def login_required(f):`
			`@wraps(f)`
			`async def decorated_function(args, *kwargs):`
			`info = args[1]`
			`context = info.context`
authorizer-full-vars-fix-2 2023-12-12 08:25:34 +00:00			`print(context)`
merged-isolated-core 2023-10-23 14:47:11 +00:00			`req = context.get("request")`
			`is_authenticated, user_id = await check_auth(req)`
			`if not is_authenticated:`
			`raise Exception("You are not logged in")`
			`else:`
aiohttp-try 2023-11-29 07:23:41 +00:00			`# Add user_id to the context`
0.2.15 2023-11-23 23:00:28 +00:00			`context["user_id"] = user_id`
merged-isolated-core 2023-10-23 14:47:11 +00:00
aiohttp-try 2023-11-29 07:23:41 +00:00			`# If the user is authenticated, execute the resolver`
merged-isolated-core 2023-10-23 14:47:11 +00:00			`return await f(args, *kwargs)`

			`return decorated_function`


			`def auth_request(f):`
			`@wraps(f)`
			`async def decorated_function(args, *kwargs):`
			`req = args[0]`
			`is_authenticated, user_id = await check_auth(req)`
			`if not is_authenticated:`
aiohttp-try 2023-11-29 07:23:41 +00:00			`raise HTTPUnauthorized(text="Please, login first")`
merged-isolated-core 2023-10-23 14:47:11 +00:00			`else:`
0.2.15 2023-11-23 23:00:28 +00:00			`req["user_id"] = user_id`
merged-isolated-core 2023-10-23 14:47:11 +00:00			`return await f(args, *kwargs)`

			`return decorated_function`