You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I want to allow users only to access some APIs, if the e-mail of the user is verified. So far I have come up with that code
import os
from pydantic import Field
from fastapi import FastAPI, Depends
from fastapi_cloudauth.auth0 import Auth0CurrentUser, Auth0Claims
app = FastAPI()
class CustomAuth0Claims(Auth0Claims):
user_id: str = Field(alias="sub")
nickname: str = Field(alias="nickname")
is_verified: bool = Field(alias="email_verified")
get_current_user = Auth0CurrentUser(
domain=os.environ["AUTH0_DOMAIN"],
client_id=os.environ["AUTH0_CLIENTID"]
)
get_current_user.user_info = CustomAuth0Claims
@app.get("/user/")
def secure_user(current_user: Auth0Claims = Depends(get_current_user)):
# ID token is valid and getting user info from ID token
return f"Hello, {current_user}"
My question is now, how can I create something like get_current_user, say get_current_verified_user, which I can use for an API to enforce that only e-mail verified users are allowed to use it.
The text was updated successfully, but these errors were encountered:
I want to allow users only to access some APIs, if the e-mail of the user is verified. So far I have come up with that code
My question is now, how can I create something like
get_current_user, sayget_current_verified_user, which I can use for an API to enforce that only e-mail verified users are allowed to use it.The text was updated successfully, but these errors were encountered: