import logging from aiohttp import ClientSession from strawberry.extensions import Extension from orm.author import Author from services.db import local_session from settings import AUTH_URL logger = logging.getLogger("\t[services.auth]\t") logger.setLevel(logging.DEBUG) async def check_auth(req) -> str | None: token = req.headers.get("Authorization") user_id = "" if token: query_name = "validate_jwt_token" operation = "ValidateToken" headers = { "Content-Type": "application/json", } variables = { "params": { "token_type": "access_token", "token": token, } } gql = { "query": f"query {operation}($params: ValidateJWTTokenInput!) {{ {query_name}(params: $params) {{ is_valid claims }} }}", "variables": variables, "operationName": operation, } try: # Asynchronous HTTP request to the authentication server async with ClientSession() as session: async with session.post( AUTH_URL, json=gql, headers=headers ) as response: logger.debug( f"HTTP Response {response.status} {await response.text()}" ) if response.status == 200: data = await response.json() errors = data.get("errors") if errors: logger.error(f"errors: {errors}") else: user_id = ( data.get("data", {}) .get(query_name, {}) .get("claims", {}) .get("sub") ) if user_id: logger.info(f"got user_id: {user_id}") return user_id except Exception as e: import traceback traceback.print_exc() # Handling and logging exceptions during authentication check logger.error(f"Error {e}") return None class LoginRequiredMiddleware(Extension): async def on_request_start(self): context = self.execution_context.context req = context.get("request") user_id = await check_auth(req) if user_id: context["user_id"] = user_id.strip() with local_session() as session: author = session.query(Author).filter(Author.user == user_id).first() if author: context["author_id"] = author.id context["user_id"] = user_id or None self.execution_context.context = context