blob: 505cea5d41d392208f770e8a192b760afebbd9cb (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
|
# GNU MediaGoblin -- federated, autonomous media hosting
# Copyright (C) 2011, 2012 MediaGoblin contributors. See AUTHORS.
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU Affero General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU Affero General Public License for more details.
#
# You should have received a copy of the GNU Affero General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
import logging
import six
from werkzeug.exceptions import Unauthorized
from mediagoblin.auth.tools import check_login_simple
from mediagoblin.plugins.api.tools import Auth
_log = logging.getLogger(__name__)
def setup_http_api_auth():
_log.info('Setting up HTTP API Auth...')
class HTTPAuth(Auth):
def trigger(self, request):
if request.authorization:
return True
return False
def __call__(self, request, *args, **kw):
_log.debug('Trying to authorize the user agent via HTTP Auth')
if not request.authorization:
return False
user = check_login_simple(str(request.authorization['username']),
request.authorization['password'])
if user:
request.user = user
return True
else:
raise Unauthorized()
return False
hooks = {
'setup': setup_http_api_auth,
'auth': HTTPAuth()}
|
