Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Added CORS support and opened for origin=*
- Loading branch information
Showing
4 changed files
with
70 additions
and
16 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,64 @@ | ||
from __future__ import absolute_import | ||
|
||
from functools import wraps | ||
from datetime import timedelta | ||
from flask import make_response, request, current_app, g | ||
from functools import update_wrapper | ||
|
||
from . import auth | ||
|
||
|
||
def requires_auth(f): | ||
@wraps(f) | ||
def decorated(*args, **kwargs): | ||
user = request.authorization | ||
if not user or not auth.check_auth(user.username, user.password): | ||
return auth.authenticate() | ||
|
||
g.ct = auth.get_ct_object(user.username, user.password) | ||
|
||
return f(*args, **kwargs) | ||
return decorated | ||
|
||
|
||
# Source: http://flask.pocoo.org/snippets/56/ | ||
def crossdomain(origin=None, methods=None, headers=None, | ||
max_age=21600, attach_to_all=True, | ||
automatic_options=True): | ||
if methods is not None: | ||
methods = ', '.join(sorted(x.upper() for x in methods)) | ||
if headers is not None and not isinstance(headers, basestring): | ||
headers = ', '.join(x.upper() for x in headers) | ||
if not isinstance(origin, basestring): | ||
origin = ', '.join(origin) | ||
if isinstance(max_age, timedelta): | ||
max_age = max_age.total_seconds() | ||
|
||
def get_methods(): | ||
if methods is not None: | ||
return methods | ||
|
||
options_resp = current_app.make_default_options_response() | ||
return options_resp.headers['allow'] | ||
|
||
def decorator(f): | ||
def wrapped_function(*args, **kwargs): | ||
if automatic_options and request.method == 'OPTIONS': | ||
resp = current_app.make_default_options_response() | ||
else: | ||
resp = make_response(f(*args, **kwargs)) | ||
if not attach_to_all and request.method != 'OPTIONS': | ||
return resp | ||
|
||
h = resp.headers | ||
|
||
h['Access-Control-Allow-Origin'] = origin | ||
h['Access-Control-Allow-Methods'] = get_methods() | ||
h['Access-Control-Max-Age'] = str(max_age) | ||
if headers is not None: | ||
h['Access-Control-Allow-Headers'] = headers | ||
return resp | ||
|
||
f.provide_automatic_options = False | ||
return update_wrapper(wrapped_function, f) | ||
return decorator |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters