# Pre-requisites

Initialize notebook environment:

In [1]:
import os
import sys

sys.path.append('..')
os.environ['FLASK_ENV'] = 'Development'
os.environ['MYPASS_DB_CONNECTION_URI'] = 'sqlite+pysqlite:///:memory:'

Import all neccessary libraries.

In [2]:
import requests

## Start up flask app

You can run your flask app either here, or host on any other computer.

Here it will run as a daemonic thread in the background. You will most likely have to restart or stop the kernel to stop it.

In [20]:
from threading import Thread

from mypass import create_app


def main():
    app = create_app()

    host = app.config['HOST']
    port = app.config['PORT']
    if app.debug:
        app.run(host=host, port=port, debug=False)


if __name__ == '__main__':
    t = Thread(target=main, daemon=True)
    t.start()

 * Serving Flask app 'mypass.app'
 * Debug mode: off


 * Running on all addresses (0.0.0.0)
 * Running on http://127.0.0.1:5757
 * Running on http://192.168.50.79:5757
Press CTRL+C to quit


# API usage

Set proxy for upcoming requests.

In [3]:
proxies = {'http': 'http://localhost:5757', 'https': 'http://localhost:5757'}

In [4]:
url = 'http://localhost/api/auth/registration'
resp = requests.post(url=url, proxies=proxies, json={'username': 'master', 'password': 'super-secret'})

if resp.status_code == 201:
    print('Successful registration!')
    resp_obj = resp.json()
    print(resp_obj)
else:
    print('Failed registration!')
    print(resp.json())

Failed registration!
{'msg': "IntegrityError :: (sqlite3.IntegrityError) UNIQUE constraint failed: user.username\n[SQL: INSERT INTO user (username, firstname, lastname, email, salt, password, token) VALUES (?, ?, ?, ?, ?, ?, ?) RETURNING id, create_time]\n[parameters: ('master', None, None, None, 'PuSNevEJJflOw4jtniGHPgn4FJdyWz0cjBAhb3Iivmo', 'N361dxU_fbb8WLF--s_JAD39K4kI6FRRo8u47JkhcCuPh1jI1o-Eklb00EhytNj6tPhUlBdCoxVuwxrjwme1JA==', 'gAAAAABk79AVIjvkfZrhlxrCQ0Td8ycuKX3K97DzV7mdVgAmXmgL-h7CipqYbzituVcZqOI9XHTX_1ZVYr_mM5Ju8tmr85NHEEkCXGYkfix3i1MNCMvA1tdIlEZCfv2u3eth0a6ssXL4KNKbwojWnH_pGOWtSHuEGgJhhenfB_VuMvyJ9GpLAv2t4oLi3NAesAJctyQR0KP9')]\n(Background on this error at: https://sqlalche.me/e/20/gkpj)"}


Registration will log you in at the same time, as well as save a new user in the database side.

Next, we save all the jwt we just got from the registration request.

In [5]:
access_token = resp_obj['access_token']
refresh_token = resp_obj['refresh_token']

NameError: name 'resp_obj' is not defined

We can create an authorization class that does the work for us:

In [6]:
from requests.auth import AuthBase


class BearerAuth(AuthBase):
    def __init__(self, token: str):
        self.token = token

    def __call__(self, r):
        r.headers['authorization'] = f'Bearer {self.token}'
        return r

In [7]:
auth = BearerAuth(token=access_token)

NameError: name 'access_token' is not defined

or simply create a header object which we can pass along as well, with any given request.

In [8]:
headers = {'authorization': f'Bearer {access_token}'}

NameError: name 'access_token' is not defined

Let's try to login, with the registered user!
You can also experiment with different, or unauthorized logins.

In [34]:
url = 'http://localhost/api/auth/login'
resp = requests.post(url=url, proxies=proxies, json={'username': 'master', 'password': 'super-secret'})

if resp.status_code == 201:
    print('Successful login!')
    resp_obj = resp.json()
    access_token = resp_obj['access_token']
    refresh_token = resp_obj['refresh_token']
    auth = BearerAuth(token=access_token)
    headers = {'authorization': f'Bearer {access_token}'}
    print(resp_obj)
else:
    print('Failed login!')
    print(resp.json())

Successful login!
{'access_token': 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJmcmVzaCI6dHJ1ZSwiaWF0IjoxNjkzNDQwMTAyLCJqdGkiOiI3M2Y0Mjc4MC0yMjNkLTQ3MzktOWNiOS1hMjYyMWNhYjI2ZjkiLCJ0eXBlIjoiYWNjZXNzIiwic3ViIjp7InVpZCI6MSwidXNlcm5hbWUiOiJtYXN0ZXIiLCJwYXNzd29yZCI6InN1cGVyLXNlY3JldCIsInRva2VuIjoiYmxhYWhuVXVyclJFZW5rdEV4YkY3USJ9LCJuYmYiOjE2OTM0NDAxMDIsImV4cCI6MTY5MzQ0MDcwMn0.YB4wMWk5wSOmDYxUJhXmRFhlGErXVc6nCak-ZNemfEs', 'refresh_token': 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTY5MzQ0MDEwMiwianRpIjoiNDYzYjA4NjctZmMxNy00ZWNiLTgzNTYtZmU0ZGJiMDM5ZjgyIiwidHlwZSI6InJlZnJlc2giLCJzdWIiOnsidWlkIjoxLCJ1c2VybmFtZSI6Im1hc3RlciIsInBhc3N3b3JkIjoic3VwZXItc2VjcmV0IiwidG9rZW4iOiJibGFhaG5VdXJyUkVlbmt0RXhiRjdRIn0sIm5iZiI6MTY5MzQ0MDEwMiwiZXhwIjoxNjk2MDMyMTAyfQ.6RKTDA4rjgd5JsU1cWzvc-tLdN16_Yzu9dzVH_RWkto'}


## Requesting non-fresh access tokens

We will attempt to request a new ***non-fresh** access token* using our previous *refresh token*.

In [135]:
url = 'http://localhost/api/auth/refresh'
resp = requests.post(url=url, proxies=proxies, auth=BearerAuth(token=refresh_token))

if resp.status_code == 201:
    print('Successfully acquired non-fresh access token!')
    resp_obj = resp.json()
    access_token = resp_obj['access_token']
    auth = BearerAuth(token=access_token)
    headers = {'authorization': f'Bearer {access_token}'}
    print(resp_obj)
else:
    print('Failed to get new access token!')
    print(resp.json())

Successfully acquired non-fresh access token!
{'access_token': 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJmcmVzaCI6ZmFsc2UsImlhdCI6MTY5MzQxNDk5NiwianRpIjoiMTIxOTEyMDQtZDc3Yy00YThmLTk4M2EtN2I2NWM4ODljNDkxIiwidHlwZSI6ImFjY2VzcyIsInN1YiI6eyJ1aWQiOjEsInVzZXJuYW1lIjoibXlwYXNzLXVzZXIiLCJwYXNzd29yZCI6Im1wLXBhc3NXb3JEIiwidG9rZW4iOiI0d2IzbV9HdE5NRTRhZEotQnc5cVNNRXVhZ1I0aTJFTDJhdXBMQlVzLUY0T2NGUVpxR1hSbmpJZUZIbWg5YUxrR2wtZ0F1TDVfR01rSFZseXNVcE04dyJ9LCJuYmYiOjE2OTM0MTQ5OTYsImV4cCI6MTY5MzQxNTU5Nn0.oJ8z4uIPoCd8FDuJTqVlwRcJXHxjvHps3GO9YZI6etU'}


## Creating vault entry

Lets create a vault entry! First, we set the url, then we will be making the actual request.

In [10]:
url = 'http://localhost/api/db/vault/add'
resp = requests.post(
    url=url,
    proxies=proxies,
    json={
        'fields': {
            'username': 'aragorn',
            'password': 'l$1swoĐf75s#d9',
            'website': 'https://favsite.com',
            'title': 'fav',
            'notes': 'Hush!'
        }
    },
    auth=BearerAuth(token=access_token))

if resp.status_code == 200:
    print('Successful entry creation!')
    resp_obj = resp.json()
    print(resp_obj)
else:
    print('Failed entry creation!')
    print(resp.json())

Successful entry creation!
{'id': 4}


Let's add some more test data!

In [133]:
url = 'http://localhost/api/db/vault/add'
test_data = [
    {'username': 'loghachi', 'password': 'ŁswndsaWI45', 'website': 'https://worldwide.com', 'title': 'world', 'folder': 'social'},
    {'username': 'hachiman', 'password': 'pa85ks546đĐä5w8S#', 'website': 'https://fakebook.com', 'title': 'fakeb', 'folder': 'social'},
    {'username': 'manner', 'password': 'aiiu3fĐđä3#', 'website': 'https://gitterhub.com', 'title': 'huby', 'folder': 'tokens'}
]

for td in test_data:
    resp = requests.post(
        url=url,
        proxies=proxies,
        json={'fields': td},
        auth=BearerAuth(token=access_token))
    
    if resp.status_code == 200:
        print(f'Added entry: {resp.json()}')
    else:
        print(resp.json())

Added entry: {'id': 2}
Added entry: {'id': 3}
Added entry: {'id': 4}


## Reading from db

Lets query our read endpoints!

The following endpoint will read records from our database.

In [36]:
url = 'http://localhost/api/db/vault/select'
resp = requests.post(
    url=url,
    proxies=proxies,
    json={},
    auth=BearerAuth(token=access_token))

if resp.status_code == 200:
    print('Entries read:')
    resp_obj = resp.json()
    if isinstance(resp_obj, list):
        print('\n'.join(str(o) for o in resp_obj))
    else:
        print(resp_obj)
else:
    print('Failed reading entries!')
    print(resp.json())

Entries read:
{'id': 1, 'username': 'John', 'password': 'Has$MeifYouCAN555', 'title': 'pwstore', 'website': 'https://mypwstore.com', 'folder': 'vaults', 'notes': 'Some notes here ...', 'tags': [], 'parentid': None}
{'id': 2, 'username': 'Doe', 'password': '516dsawdJSWłđ', 'title': 'fakebook', 'website': 'https://fakebook.com', 'folder': 'social', 'notes': ':)', 'tags': [], 'parentid': None}
{'id': 3, 'username': 'Missimp', 'password': '54d6waŁđäĐw5', 'title': 'slype', 'website': 'https://slype.com', 'folder': 'social', 'notes': ':)', 'tags': [], 'parentid': None}
{'id': 4, 'username': 'Doe', 'password': '516dsawdJSWłđ', 'title': 'fakebook', 'website': 'https://fakebook.com', 'folder': 'social', 'notes': ':(', 'tags': [], 'parentid': 2}
{'id': 5, 'username': 'Missimp', 'password': '54d6waŁđäĐw5', 'title': 'slype', 'website': 'https://slype.com', 'folder': 'social', 'notes': ':(', 'tags': [], 'parentid': 3}


Next up, the update endpoint:

In [35]:
url = 'http://localhost/api/db/vault/update'
resp = requests.post(
    url=url,
    proxies=proxies,
    json={
        'crit': {
            'folder': 'social'
        },
        'fields': {
            'notes': ':('
        }
    },
    auth=BearerAuth(token=access_token))

if resp.status_code == 200:
    print('Entries updated:')
    resp_obj = resp.json()
    print(resp_obj)
else:
    print('Failed to update entries!')
    print(resp.json())

Entries updated:
{'affected_rows': 4}
