Commit | Line | Data |
---|---|---|
ac4c5aef JW |
1 | # GNU MediaGoblin -- federated, autonomous media hosting |
2 | # Copyright (C) 2011, 2012 MediaGoblin contributors. See AUTHORS. | |
3 | # | |
4 | # This program is free software: you can redistribute it and/or modify | |
5 | # it under the terms of the GNU Affero General Public License as published by | |
6 | # the Free Software Foundation, either version 3 of the License, or | |
7 | # (at your option) any later version. | |
8 | # | |
9 | # This program is distributed in the hope that it will be useful, | |
10 | # but WITHOUT ANY WARRANTY; without even the implied warranty of | |
11 | # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
12 | # GNU Affero General Public License for more details. | |
13 | # | |
14 | # You should have received a copy of the GNU Affero General Public License | |
15 | # along with this program. If not, see <http://www.gnu.org/licenses/>. | |
16 | ||
17 | import logging | |
18 | import base64 | |
19 | ||
20 | from werkzeug.exceptions import BadRequest, Unauthorized | |
21 | ||
22 | from mediagoblin.plugins.api.tools import Auth | |
23 | ||
24 | _log = logging.getLogger(__name__) | |
25 | ||
26 | ||
27 | def setup_http_api_auth(): | |
28 | _log.info('Setting up HTTP API Auth...') | |
29 | ||
30 | ||
31 | class HTTPAuth(Auth): | |
32 | def trigger(self, request): | |
33 | if request.authorization: | |
34 | return True | |
35 | ||
36 | return False | |
37 | ||
38 | def __call__(self, request, *args, **kw): | |
39 | _log.debug('Trying to authorize the user agent via HTTP Auth') | |
40 | if not request.authorization: | |
41 | return False | |
42 | ||
43 | user = request.db.User.query.filter_by( | |
44 | username=request.authorization['username']).first() | |
45 | ||
46 | if user.check_login(request.authorization['password']): | |
47 | request.user = user | |
48 | return True | |
49 | else: | |
50 | raise Unauthorized() | |
51 | ||
52 | return False | |
53 | ||
54 | ||
55 | ||
56 | hooks = { | |
57 | 'setup': setup_http_api_auth, | |
58 | 'auth': HTTPAuth()} |