pillar/attract/application/__init__.py

from eve import Eve

import random
import string

from eve.auth import TokenAuth
from eve.auth import BasicAuth
from eve.io.mongo import Validator
from bson import ObjectId


class TokensAuth(TokenAuth):
    def check_auth(self, token, allowed_roles, resource, method):
        tokens = app.data.driver.db['tokens']
        lookup = {'token': token}
        token = tokens.find_one(lookup)
        if not token:
            return False
        users = app.data.driver.db['users']
        lookup = {'firstname': token['username']}
        if allowed_roles:
            lookup['role'] = {'$in': allowed_roles}
        user = users.find_one(lookup)
        if not user:
            return False
        return token

class BasicsAuth(BasicAuth):
    def check_auth(self, username, password, allowed_roles, resource, method):
        return username == 'admin' and password == 'secret'


class MyTokenAuth(BasicsAuth):
    """Switch between Basic and Token auth"""
    def __init__(self):
        self.token_auth = TokensAuth()
        self.authorized_protected = BasicsAuth.authorized

    def authorized(self, allowed_roles, resource, method):
        if resource=='tokens':
            return self.authorized_protected(self, allowed_roles, resource, method)
        else:
            return self.token_auth.authorized(allowed_roles, resource, method)

    def authorized_protected(self):
        pass


class ValidateCustomFields(Validator):
    def _validate_valid_properties(self, valid_properties, field, value):
        node_types = app.data.driver.db['node_types']
        lookup = {}
        lookup['_id'] = ObjectId(self.document['node_type'])
        node_type = node_types.find_one(lookup)

        v = Validator(node_type['dyn_schema'])
        val = v.validate(value)
        if val:
            return True
        else:
            print (val.errors)
            self._error(
                field, "Error validating properties")


def add_token(documents):
    # Don't use this in production:
    # You should at least make sure that the token is unique.
    # print ("Adding Token")
    for document in documents:
        document["token"] = (''.join(random.choice(string.ascii_uppercase)
                                     for x in range(10)))


app = Eve(validator=ValidateCustomFields, auth=MyTokenAuth)
app.on_insert_tokens += add_token
Initial test with Eve 2015-03-10 11:38:57 +01:00			`from eve import Eve`

Initial Cleanup 2015-03-11 16:03:19 +01:00			`import random`
			`import string`
Initial test with Eve 2015-03-10 11:38:57 +01:00
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`from eve.auth import TokenAuth`
			`from eve.auth import BasicAuth`
Initial test with Eve 2015-03-10 11:38:57 +01:00			`from eve.io.mongo import Validator`
Finishing Tests, Cleaning up Static folder 2015-03-12 15:05:10 +01:00			`from bson import ObjectId`
Initial test with Eve 2015-03-10 11:38:57 +01:00
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00
			`class TokensAuth(TokenAuth):`
			`def check_auth(self, token, allowed_roles, resource, method):`
			`tokens = app.data.driver.db['tokens']`
			`lookup = {'token': token}`
			`token = tokens.find_one(lookup)`
			`if not token:`
			`return False`
			`users = app.data.driver.db['users']`
			`lookup = {'firstname': token['username']}`
			`if allowed_roles:`
			`lookup['role'] = {'$in': allowed_roles}`
			`user = users.find_one(lookup)`
			`if not user:`
			`return False`
			`return token`

			`class BasicsAuth(BasicAuth):`
			`def check_auth(self, username, password, allowed_roles, resource, method):`
			`return username == 'admin' and password == 'secret'`


			`class MyTokenAuth(BasicsAuth):`
DB initialization, Nodes and NodeTypes Schemas 2015-03-27 15:42:28 +01:00			`"""Switch between Basic and Token auth"""`
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`def __init__(self):`
			`self.token_auth = TokensAuth()`
			`self.authorized_protected = BasicsAuth.authorized`

			`def authorized(self, allowed_roles, resource, method):`
			`if resource=='tokens':`
			`return self.authorized_protected(self, allowed_roles, resource, method)`
			`else:`
			`return self.token_auth.authorized(allowed_roles, resource, method)`

			`def authorized_protected(self):`
			`pass`


Initial test with Eve 2015-03-10 11:38:57 +01:00			`class ValidateCustomFields(Validator):`
Initial Cleanup 2015-03-11 16:03:19 +01:00			`def _validate_valid_properties(self, valid_properties, field, value):`
Finishing Tests, Cleaning up Static folder 2015-03-12 15:05:10 +01:00			`node_types = app.data.driver.db['node_types']`
Initial Cleanup 2015-03-11 16:03:19 +01:00			`lookup = {}`
Finishing Tests, Cleaning up Static folder 2015-03-12 15:05:10 +01:00			`lookup['_id'] = ObjectId(self.document['node_type'])`
Initial Cleanup 2015-03-11 16:03:19 +01:00			`node_type = node_types.find_one(lookup)`

			`v = Validator(node_type['dyn_schema'])`
			`val = v.validate(value)`
			`if val:`
			`return True`
			`else:`
DB initialization, Nodes and NodeTypes Schemas 2015-03-27 15:42:28 +01:00			`print (val.errors)`
			`self._error(`
			`field, "Error validating properties")`
Initial Cleanup 2015-03-11 16:03:19 +01:00

			`def add_token(documents):`
			`# Don't use this in production:`
			`# You should at least make sure that the token is unique.`
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`# print ("Adding Token")`
Initial Cleanup 2015-03-11 16:03:19 +01:00			`for document in documents:`
			`document["token"] = (''.join(random.choice(string.ascii_uppercase)`
			`for x in range(10)))`


Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`app = Eve(validator=ValidateCustomFields, auth=MyTokenAuth)`
			`app.on_insert_tokens += add_token`