diff options
| author | Aditi <aditi.iitr@gmail.com> | 2013-06-21 23:09:22 +0530 |
|---|---|---|
| committer | Aditi <aditi.iitr@gmail.com> | 2013-06-21 23:09:22 +0530 |
| commit | 2719d546a57c2332e36cc056ac80ec5d79672c1a (patch) | |
| tree | 1f62ab8f761026d4faa5442032df133fc90d47f2 /mediagoblin/plugins/httpapiauth | |
| parent | 1a6f065419290b3f4234ce4a89bb2c46b13e8a12 (diff) | |
| parent | 92b22e7deac547835f69168f97012b52e87b6de4 (diff) | |
| download | mediagoblin-2719d546a57c2332e36cc056ac80ec5d79672c1a.tar.lz mediagoblin-2719d546a57c2332e36cc056ac80ec5d79672c1a.tar.xz mediagoblin-2719d546a57c2332e36cc056ac80ec5d79672c1a.zip | |
Merge remote-tracking branch 'cweb/master'
Diffstat (limited to 'mediagoblin/plugins/httpapiauth')
| -rw-r--r-- | mediagoblin/plugins/httpapiauth/__init__.py | 58 |
1 files changed, 58 insertions, 0 deletions
diff --git a/mediagoblin/plugins/httpapiauth/__init__.py b/mediagoblin/plugins/httpapiauth/__init__.py new file mode 100644 index 00000000..2b2d593c --- /dev/null +++ b/mediagoblin/plugins/httpapiauth/__init__.py @@ -0,0 +1,58 @@ +# GNU MediaGoblin -- federated, autonomous media hosting +# Copyright (C) 2011, 2012 MediaGoblin contributors. See AUTHORS. +# +# This program is free software: you can redistribute it and/or modify +# it under the terms of the GNU Affero General Public License as published by +# the Free Software Foundation, either version 3 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU Affero General Public License for more details. +# +# You should have received a copy of the GNU Affero General Public License +# along with this program. If not, see <http://www.gnu.org/licenses/>. + +import logging + +from werkzeug.exceptions import Unauthorized + +from mediagoblin.auth.tools import check_login_simple +from mediagoblin.plugins.api.tools import Auth + +_log = logging.getLogger(__name__) + + +def setup_http_api_auth(): + _log.info('Setting up HTTP API Auth...') + + +class HTTPAuth(Auth): + def trigger(self, request): + if request.authorization: + return True + + return False + + def __call__(self, request, *args, **kw): + _log.debug('Trying to authorize the user agent via HTTP Auth') + if not request.authorization: + return False + + user = check_login_simple(unicode(request.authorization['username']), + request.authorization['password']) + + if user: + request.user = user + return True + else: + raise Unauthorized() + + return False + + + +hooks = { + 'setup': setup_http_api_auth, + 'auth': HTTPAuth()} |