|
|
|
|
import datetime as dt
|
|
|
|
|
|
|
|
|
|
from apistar import Component, Settings, http, Route, Include
|
|
|
|
|
from apistar.backends.sqlalchemy_backend import Session
|
|
|
|
|
from apistar_jwt.authentication import get_jwt
|
|
|
|
|
from apistar_jwt.token import JWT
|
|
|
|
|
|
|
|
|
|
from cookie_api.models import User
|
|
|
|
|
|
|
|
|
|
auth_components = [
|
|
|
|
|
Component(JWT, init=get_jwt)
|
|
|
|
|
]
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def login(settings: Settings, json_data: http.RequestData, session: Session):
|
|
|
|
|
user_id = json_data.get('email')
|
|
|
|
|
password = json_data.get('password')
|
|
|
|
|
|
|
|
|
|
user = session.query(User).filter_by(email=user_id).one()
|
|
|
|
|
if not user.check_password(password):
|
|
|
|
|
error = {'error': 'Password auth failed'},
|
|
|
|
|
return http.Response(error, status=401, headers={'WWW-Authenticate': 'Bearer'})
|
|
|
|
|
|
|
|
|
|
secret = settings['JWT'].get('SECRET')
|
|
|
|
|
|
|
|
|
|
payload = {
|
|
|
|
|
'exp': dt.datetime.utcnow() + dt.timedelta(days=0, minutes=60),
|
|
|
|
|
'iat': dt.datetime.utcnow(),
|
|
|
|
|
'sub': user.id
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
token = JWT.encode(payload, secret=secret)
|
|
|
|
|
|
|
|
|
|
data = {
|
|
|
|
|
'status': 'success',
|
|
|
|
|
'message': 'Successfully logged in.',
|
|
|
|
|
'auth_token': token
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return data
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# TODO Add user logout
|
|
|
|
|
def logout():
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# TODO Add user registration
|
|
|
|
|
def register():
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# TODO Add user profile endpoint
|
|
|
|
|
def user_profile():
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# TODO Add email confirmation
|
|
|
|
|
def confirm():
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
# TODO Add email password reset
|
|
|
|
|
def reset():
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
routes = [
|
|
|
|
|
Route('/login', 'POST', login)
|
|
|
|
|
]
|
|
|
|
|
|
|
|
|
|
auth_routes = [Include('/auth', routes)]
|
