dashboard/backend/helpers/auth_guard.py

26 lines
650 B
Python
Raw Normal View History

from functools import wraps
from areas.roles.role_service import RoleService
2022-06-21 14:41:54 +02:00
from flask_jwt_extended import get_jwt, verify_jwt_in_request
from helpers import Unauthorized
2022-06-21 14:41:54 +02:00
def admin_required():
def wrapper(fn):
@wraps(fn)
def decorator(*args, **kwargs):
verify_jwt_in_request()
claims = get_jwt()
2022-06-10 11:34:33 +02:00
user_id = claims["user_id"]
is_admin = RoleService.is_user_admin(user_id)
if is_admin:
return fn(*args, **kwargs)
else:
raise Unauthorized("You need to have admin permissions.")
return decorator
2022-06-21 14:41:54 +02:00
return wrapper