Home Explore Help
Sign In
SMusatov
/
GlitchTip
mirror of https://gitlab.com/glitchtip/glitchtip-backend.git
1
0
Fork 0
Files
Branch: uptime-ninja
Branches Tags
GlitchTip
/
glitchtip
/
api
/
authentication.py

authentication.py 2.2 KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. from dataclasses import dataclass
    2. 

  2. from typing import Any, Literal, Optional
    3. 

  3. 

  4. from asgiref.sync import sync_to_async
    5. 

  5. from django.conf import settings
    6. 

  6. from django.contrib.auth import SESSION_KEY
    7. 

  7. from django.contrib.auth.models import AnonymousUser
    8. 

  8. from django.http import HttpRequest
    9. 

  9. from ninja.security import HttpBearer
    10. 

  10. from ninja.security import SessionAuth as BaseSessionAuth
    11. 

  11. 

  12. from apps.api_tokens.models import APIToken
    13. 

  13. 

  14. 

  15. @dataclass
    16. 

  16. class Auth:
    17. 

  17.     user_id: int
    18. 

  18.     auth_type: Literal["session", "token"]
    19. 

  19.     data: Any = None
    20. 

  20. 

  21. 

  22. class AuthHttpRequest(HttpRequest):
    23. 

  23.     """Django HttpRequest that is known to be authenticated by a user"""
    24. 

  24. 

  25.     auth: Auth
    26. 

  26. 

  27. 

  28. class SessionAuth(BaseSessionAuth):
    29. 

  29.     """
    30. 

  30.     Check if user is logged in by checking session
    31. 

  31.     This avoids an unnecessary database call.
    32. 

  32.     request.auth will result in the user id
    33. 

  33.     """
    34. 

  34. 

  35.     async def authenticate(
    36. 

  36.         self, request: HttpRequest, key: Optional[str]
    37. 

  37.     ) -> Optional[Auth]:
    38. 

  38.         if settings.SESSION_ENGINE == "django.contrib.sessions.backends.cache":
    39. 

  39.             user_id = request.session.get(SESSION_KEY)
    40. 

  40.         # Django DB backed sessions don't support async yet
    41. 

  41.         else:
    42. 

  42.             user_id = await sync_to_async(request.session.get)(SESSION_KEY)
    43. 

  43.         return Auth(int(user_id), "session") if user_id else None
    44. 

  44. 

  45. 

  46. class TokenAuth(HttpBearer):
    47. 

  47.     """
    48. 

  48.     API Token based authentication always connects to a specific user.
    49. 

  49.     Store the token object under data for checking scopes permissions.
    50. 

  50.     """
    51. 

  51. 

  52.     def __call__(self, request: HttpRequest) -> Optional[Any]:
    53. 

  53.         # Workaround https://github.com/vitalik/django-ninja/issues/989
    54. 

  54.         if request.resolver_match and request.resolver_match.url_name in [
    55. 

  55.             "setup_wizard_hash"
    56. 

  56.         ]:
    57. 

  57.             request.auth = None  # type: ignore
    58. 

  58.             return self.get_anon()
    59. 

  59. 

  60.         return super().__call__(request)
    61. 

  61. 

  62.     async def get_anon(self):
    63. 

  63.         return AnonymousUser()
    64. 

  64. 

  65.     async def authenticate(self, request: HttpRequest, key: str) -> Optional[Auth]:
    66. 

  66.         try:
    67. 

  67.             token = await APIToken.objects.aget(token=key, user__is_active=True)
    68. 

  68.         except APIToken.DoesNotExist:
    69. 

  69.             return None
    70. 

  70. 

  71.         return Auth(token.user_id, "token", data=token)
    72.