pillar/attract/application/__init__.py

import os

from eve import Eve

# import random
# import string

from eve.auth import TokenAuth
from eve.auth import BasicAuth
from eve.io.mongo import Validator
from eve.methods.post import post_internal
from bson import ObjectId

from datetime import datetime
from datetime import timedelta

class SystemUtility():
    def __new__(cls, *args, **kwargs):
        raise TypeError("Base class may not be instantiated")

    @staticmethod
    def blender_id_endpoint():
        """Gets the endpoint for the authentication API. If the env variable
        is defined, it's possible to override the (default) production address.
        """
        return os.environ.get(
            'BLENDER_ID_ENDPOINT', "https://www.blender.org/id")


def validate(token):
    import requests
    payload = dict(
        token=token)
    try:
        r = requests.post("{0}/u/validate_token".format(
            SystemUtility.blender_id_endpoint()), data=payload)
    except requests.exceptions.ConnectionError as e:
        raise e

    if r.status_code == 200:
        message = r.json()['message']
        valid = r.json()['valid']
        user = r.json()['user']
    else:
        message = ""
        valid = False
    return dict(valid=valid, message=message, user=user)


class TokensAuth(TokenAuth):
    def check_auth(self, token, allowed_roles, resource, method):
        if not token:
            return False
        tokens = app.data.driver.db['tokens']
        users = app.data.driver.db['users']
        lookup = {'token': token, 'expire_time': {"$gt": datetime.now()}}
        dbtoken = tokens.find_one(lookup)
        if not dbtoken:
            validation = validate(token)
            if validation['valid']:
                email = validation['user']['email']
                dbuser = users.find_one({'email': email})
                tmpname = email.split('@')[0]
                if not dbuser:
                    user_data = {
                        'firstname': tmpname,
                        'lastname': tmpname,
                        'email': email,
                        'role': ['admin'],
                    }
                    r = post_internal('users', user_data)
                    user_id = r[0]["_id"]
                else:
                    user_id = dbuser['_id']

                token_data = {
                    'user': user_id,
                    'token': token,
                    'expire_time': datetime.now()+timedelta(hours=1)
                }
                post_internal('tokens', token_data)
        else:
            return True
        return validation['valid']
        """
        users = app.data.driver.db['users']
        lookup = {'firstname': token['username']}
        if allowed_roles:
            lookup['role'] = {'$in': allowed_roles}
        user = users.find_one(lookup)
        if not user:
            return False
        return token
        """


class BasicsAuth(BasicAuth):
    def check_auth(self, username, password, allowed_roles, resource, method):
        # return username == 'admin' and password == 'secret'
        return True


class MyTokenAuth(BasicsAuth):
    """Switch between Basic and Token auth"""
    def __init__(self):
        self.token_auth = TokensAuth()
        self.authorized_protected = BasicsAuth.authorized

    def authorized(self, allowed_roles, resource, method):
        # if resource == 'tokens':
        if False:
            return self.authorized_protected(
                self, allowed_roles, resource, method)
        else:
            return self.token_auth.authorized(allowed_roles, resource, method)

    def authorized_protected(self):
        pass


class ValidateCustomFields(Validator):
    def _validate_valid_properties(self, valid_properties, field, value):
        node_types = app.data.driver.db['node_types']
        lookup = {}
        lookup['_id'] = ObjectId(self.document['node_type'])
        node_type = node_types.find_one(lookup)

        v = Validator(node_type['dyn_schema'])
        val = v.validate(value)
        if val:
            return True
        else:
            print (val.errors)
            self._error(
                field, "Error validating properties")


"""def add_token(documents):
    for document in documents:
        document["token"] = (''.join(random.choice(string.ascii_uppercase)
                                     for x in range(10)))"""


app = Eve(validator=ValidateCustomFields, auth=MyTokenAuth)
# app.on_insert_tokens += add_token
Check if the token is valid 2015-04-07 12:42:50 -03:00			`import os`

Initial test with Eve 2015-03-10 11:38:57 +01:00			`from eve import Eve`

Check if the token is valid 2015-04-07 12:42:50 -03:00			`# import random`
			`# import string`
Initial test with Eve 2015-03-10 11:38:57 +01:00
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`from eve.auth import TokenAuth`
			`from eve.auth import BasicAuth`
Initial test with Eve 2015-03-10 11:38:57 +01:00			`from eve.io.mongo import Validator`
Reenabling tokens resource, using internal_post 2015-04-09 16:36:32 -03:00			`from eve.methods.post import post_internal`
Finishing Tests, Cleaning up Static folder 2015-03-12 15:05:10 +01:00			`from bson import ObjectId`
Initial test with Eve 2015-03-10 11:38:57 +01:00
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`from datetime import datetime`
			`from datetime import timedelta`
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00
Check if the token is valid 2015-04-07 12:42:50 -03:00			`class SystemUtility():`
			`def __new__(cls, args, *kwargs):`
			`raise TypeError("Base class may not be instantiated")`

			`@staticmethod`
			`def blender_id_endpoint():`
			`"""Gets the endpoint for the authentication API. If the env variable`
			`is defined, it's possible to override the (default) production address.`
			`"""`
			`return os.environ.get(`
			`'BLENDER_ID_ENDPOINT', "https://www.blender.org/id")`


			`def validate(token):`
			`import requests`
			`payload = dict(`
			`token=token)`
			`try:`
			`r = requests.post("{0}/u/validate_token".format(`
			`SystemUtility.blender_id_endpoint()), data=payload)`
			`except requests.exceptions.ConnectionError as e:`
			`raise e`

			`if r.status_code == 200:`
			`message = r.json()['message']`
			`valid = r.json()['valid']`
The new user is added on authentication 2015-04-09 19:06:10 -03:00			`user = r.json()['user']`
Check if the token is valid 2015-04-07 12:42:50 -03:00			`else:`
			`message = ""`
			`valid = False`
The new user is added on authentication 2015-04-09 19:06:10 -03:00			`return dict(valid=valid, message=message, user=user)`
Check if the token is valid 2015-04-07 12:42:50 -03:00

Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`class TokensAuth(TokenAuth):`
			`def check_auth(self, token, allowed_roles, resource, method):`
Check if Token is None 2015-04-08 13:14:35 -03:00			`if not token:`
			`return False`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`tokens = app.data.driver.db['tokens']`
The new user is added on authentication 2015-04-09 19:06:10 -03:00			`users = app.data.driver.db['users']`
Reenabling tokens resource, using internal_post 2015-04-09 16:36:32 -03:00			`lookup = {'token': token, 'expire_time': {"$gt": datetime.now()}}`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`dbtoken = tokens.find_one(lookup)`
			`if not dbtoken:`
			`validation = validate(token)`
			`if validation['valid']:`
The new user is added on authentication 2015-04-09 19:06:10 -03:00			`email = validation['user']['email']`
			`dbuser = users.find_one({'email': email})`
			`tmpname = email.split('@')[0]`
			`if not dbuser:`
			`user_data = {`
			`'firstname': tmpname,`
			`'lastname': tmpname,`
			`'email': email,`
			`'role': ['admin'],`
			`}`
			`r = post_internal('users', user_data)`
			`user_id = r[0]["_id"]`
			`else:`
			`user_id = dbuser['_id']`

			`token_data = {`
			`'user': user_id,`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`'token': token,`
Reenabling tokens resource, using internal_post 2015-04-09 16:36:32 -03:00			`'expire_time': datetime.now()+timedelta(hours=1)`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`}`
The new user is added on authentication 2015-04-09 19:06:10 -03:00			`post_internal('tokens', token_data)`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`else:`
Check if Token is None 2015-04-08 13:14:35 -03:00			`return True`
Check if the token is valid 2015-04-07 12:42:50 -03:00			`return validation['valid']`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`"""`
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`users = app.data.driver.db['users']`
			`lookup = {'firstname': token['username']}`
			`if allowed_roles:`
			`lookup['role'] = {'$in': allowed_roles}`
			`user = users.find_one(lookup)`
			`if not user:`
			`return False`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`return token`
			`"""`

Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00
			`class BasicsAuth(BasicAuth):`
			`def check_auth(self, username, password, allowed_roles, resource, method):`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`# return username == 'admin' and password == 'secret'`
			`return True`
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00

			`class MyTokenAuth(BasicsAuth):`
DB initialization, Nodes and NodeTypes Schemas 2015-03-27 15:42:28 +01:00			`"""Switch between Basic and Token auth"""`
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`def __init__(self):`
			`self.token_auth = TokensAuth()`
			`self.authorized_protected = BasicsAuth.authorized`

			`def authorized(self, allowed_roles, resource, method):`
Reenabling tokens resource, using internal_post 2015-04-09 16:36:32 -03:00			`# if resource == 'tokens':`
			`if False:`
Storing tokens (without username) 2015-04-08 11:48:38 -03:00			`return self.authorized_protected(`
			`self, allowed_roles, resource, method)`
Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`else:`
			`return self.token_auth.authorized(allowed_roles, resource, method)`

			`def authorized_protected(self):`
			`pass`


Initial test with Eve 2015-03-10 11:38:57 +01:00			`class ValidateCustomFields(Validator):`
Initial Cleanup 2015-03-11 16:03:19 +01:00			`def _validate_valid_properties(self, valid_properties, field, value):`
Finishing Tests, Cleaning up Static folder 2015-03-12 15:05:10 +01:00			`node_types = app.data.driver.db['node_types']`
Initial Cleanup 2015-03-11 16:03:19 +01:00			`lookup = {}`
Finishing Tests, Cleaning up Static folder 2015-03-12 15:05:10 +01:00			`lookup['_id'] = ObjectId(self.document['node_type'])`
Initial Cleanup 2015-03-11 16:03:19 +01:00			`node_type = node_types.find_one(lookup)`

			`v = Validator(node_type['dyn_schema'])`
			`val = v.validate(value)`
			`if val:`
			`return True`
			`else:`
DB initialization, Nodes and NodeTypes Schemas 2015-03-27 15:42:28 +01:00			`print (val.errors)`
			`self._error(`
			`field, "Error validating properties")`
Initial Cleanup 2015-03-11 16:03:19 +01:00

Check if the token is valid 2015-04-07 12:42:50 -03:00			`"""def add_token(documents):`
Initial Cleanup 2015-03-11 16:03:19 +01:00			`for document in documents:`
			`document["token"] = (''.join(random.choice(string.ascii_uppercase)`
Check if the token is valid 2015-04-07 12:42:50 -03:00			`for x in range(10)))"""`
Initial Cleanup 2015-03-11 16:03:19 +01:00

Adding Token generation for users on /tokens 2015-03-14 15:08:36 +01:00			`app = Eve(validator=ValidateCustomFields, auth=MyTokenAuth)`
Check if the token is valid 2015-04-07 12:42:50 -03:00			`# app.on_insert_tokens += add_token`