aiohttp-security/aiohttp_security/jwt_identity.py

"""Identity policy for storing info in the jwt token.

"""

from typing import Optional

from aiohttp import web

from .abc import AbstractIdentityPolicy

try:
    import jwt
    HAS_JWT = True
except ImportError:  # pragma: no cover
    HAS_JWT = False


AUTH_HEADER_NAME = 'Authorization'
AUTH_SCHEME = 'Bearer '


class JWTIdentityPolicy(AbstractIdentityPolicy):
    def __init__(self, secret: str, algorithm: str = 'HS256'):
        if not HAS_JWT:
            raise RuntimeError('Please install `PyJWT`')
        self.secret = secret
        self.algorithm = algorithm

    async def identify(self, request: web.Request) -> Optional[str]:
        header_identity = request.headers.get(AUTH_HEADER_NAME)

        if header_identity is None:
            return None

        if not header_identity.startswith(AUTH_SCHEME):
            raise ValueError('Invalid authorization scheme. ' +
                             'Should be `{}<token>`'.format(AUTH_SCHEME))

        token = header_identity.split(' ')[1].strip()

        identity = jwt.decode(token,
                              self.secret,
                              algorithms=[self.algorithm])
        return identity

    async def remember(self, request: web.Request, response: web.StreamResponse,
                       identity: str, **kwargs: None) -> None:
        pass

    async def forget(self, request: web.Request, response: web.StreamResponse) -> None:
        pass
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`"""Identity policy for storing info in the jwt token.`

			`"""`

Add type annotations. 2020-12-18 17:58:38 +00:00			`from typing import Optional`

			`from aiohttp import web`

init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`from .abc import AbstractIdentityPolicy`
JWTIdentityPolicy polishing (#161) * Polishing JWT policy * Simplify tests * Minor cleaning 2018-05-21 19:07:14 +00:00
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`try:`
			`import jwt`
Add type annotations. 2020-12-18 17:58:38 +00:00			`HAS_JWT = True`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`except ImportError: # pragma: no cover`
Add type annotations. 2020-12-18 17:58:38 +00:00			`HAS_JWT = False`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00

			`AUTH_HEADER_NAME = 'Authorization'`
JWTIdentityPolicy polishing (#161) * Polishing JWT policy * Simplify tests * Minor cleaning 2018-05-21 19:07:14 +00:00			`AUTH_SCHEME = 'Bearer '`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00

			`class JWTIdentityPolicy(AbstractIdentityPolicy):`
Add type annotations. 2020-12-18 17:58:38 +00:00			`def __init__(self, secret: str, algorithm: str = 'HS256'):`
			`if not HAS_JWT:`
JWTIdentityPolicy polishing (#161) * Polishing JWT policy * Simplify tests * Minor cleaning 2018-05-21 19:07:14 +00:00			raise RuntimeError('Please install `PyJWT`')
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`self.secret = secret`
JWTIdentityPolicy polishing (#161) * Polishing JWT policy * Simplify tests * Minor cleaning 2018-05-21 19:07:14 +00:00			`self.algorithm = algorithm`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00
Add type annotations. 2020-12-18 17:58:38 +00:00			`async def identify(self, request: web.Request) -> Optional[str]:`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`header_identity = request.headers.get(AUTH_HEADER_NAME)`
JWTIdentityPolicy polishing (#161) * Polishing JWT policy * Simplify tests * Minor cleaning 2018-05-21 19:07:14 +00:00
			`if header_identity is None:`
Add type annotations. 2020-12-18 17:58:38 +00:00			`return None`
JWTIdentityPolicy polishing (#161) * Polishing JWT policy * Simplify tests * Minor cleaning 2018-05-21 19:07:14 +00:00
			`if not header_identity.startswith(AUTH_SCHEME):`
			`raise ValueError('Invalid authorization scheme. ' +`
Add type annotations. 2020-12-18 17:58:38 +00:00			'Should be `{}<token>`'.format(AUTH_SCHEME))
JWTIdentityPolicy polishing (#161) * Polishing JWT policy * Simplify tests * Minor cleaning 2018-05-21 19:07:14 +00:00
			`token = header_identity.split(' ')[1].strip()`

			`identity = jwt.decode(token,`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`self.secret,`
Update to 0.3.0 2018-09-06 10:06:55 +00:00			`algorithms=[self.algorithm])`
JWTIdentityPolicy polishing (#161) * Polishing JWT policy * Simplify tests * Minor cleaning 2018-05-21 19:07:14 +00:00			`return identity`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00
Add type annotations. 2020-12-18 17:58:38 +00:00			`async def remember(self, request: web.Request, response: web.StreamResponse,`
			`identity: str, **kwargs: None) -> None:`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`pass`

Add type annotations. 2020-12-18 17:58:38 +00:00			`async def forget(self, request: web.Request, response: web.StreamResponse) -> None:`
init for jwt identity (#147) 2018-04-25 20:52:36 +00:00			`pass`