Commit | Line | Data |
---|---|---|
ac4c5aef JW |
1 | # GNU MediaGoblin -- federated, autonomous media hosting |
2 | # Copyright (C) 2011, 2012 MediaGoblin contributors. See AUTHORS. | |
3 | # | |
4 | # This program is free software: you can redistribute it and/or modify | |
5 | # it under the terms of the GNU Affero General Public License as published by | |
6 | # the Free Software Foundation, either version 3 of the License, or | |
7 | # (at your option) any later version. | |
8 | # | |
9 | # This program is distributed in the hope that it will be useful, | |
10 | # but WITHOUT ANY WARRANTY; without even the implied warranty of | |
11 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
12 | # GNU Affero General Public License for more details. | |
13 | # | |
14 | # You should have received a copy of the GNU Affero General Public License | |
15 | # along with this program. If not, see <http://www.gnu.org/licenses/>. | |
16 | ||
17 | import logging | |
ac4c5aef | 18 | |
1422cab6 | 19 | from werkzeug.exceptions import Unauthorized |
ac4c5aef JW |
20 | |
21 | from mediagoblin.plugins.api.tools import Auth | |
20583e8a | 22 | from mediagoblin.auth import check_login |
ac4c5aef JW |
23 | |
24 | _log = logging.getLogger(__name__) | |
25 | ||
26 | ||
27 | def setup_http_api_auth(): | |
28 | _log.info('Setting up HTTP API Auth...') | |
29 | ||
30 | ||
31 | class HTTPAuth(Auth): | |
32 | def trigger(self, request): | |
33 | if request.authorization: | |
34 | return True | |
35 | ||
36 | return False | |
37 | ||
38 | def __call__(self, request, *args, **kw): | |
39 | _log.debug('Trying to authorize the user agent via HTTP Auth') | |
40 | if not request.authorization: | |
41 | return False | |
42 | ||
43 | user = request.db.User.query.filter_by( | |
1eac751b | 44 | username=unicode(request.authorization['username'])).first() |
ac4c5aef | 45 | |
20583e8a | 46 | if check_login(user, request.authorization['password']): |
ac4c5aef JW |
47 | request.user = user |
48 | return True | |
49 | else: | |
50 | raise Unauthorized() | |
51 | ||
52 | return False | |
53 | ||
54 | ||
55 | ||
56 | hooks = { | |
57 | 'setup': setup_http_api_auth, | |
58 | 'auth': HTTPAuth()} |