-
Notifications
You must be signed in to change notification settings - Fork 0
/
security.py
51 lines (40 loc) · 1.38 KB
/
security.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
import jwt
from src.generics.service import ErtisGenericService
from src.utils.errors import ErtisError
class ErtisSecurityManager(ErtisGenericService):
def validate_token(self, token, secret, verify):
try:
decoded = jwt.decode(token, key=secret, algorithms='HS256', verify=verify)
except jwt.ExpiredSignatureError as e:
raise ErtisError(
status_code=401,
err_msg="Provided token has expired",
err_code="errors.tokenExpiredError",
context={
'message': str(e)
}
)
except Exception as e:
raise ErtisError(
status_code=401,
err_msg="Provided token is invalid",
err_code="errors.tokenIsInvalid",
context={
'e': str(e)
}
)
where = {
'_id': decoded['prn']
}
user = self.find_one_by_id(where, 'users')
return user
def load_user(self, token, secret, verify):
user = self.validate_token(token, secret, verify)
permission = self.find_one_by(
where={
'slug': user['permission_group']
},
collection='permission_groups'
)
user['permissions'] = permission['permissions']
return user