66 lines
1.9 KiB
Python
66 lines
1.9 KiB
Python
from multiprocessing import current_process
|
|
from flask import jsonify, request
|
|
from flask_jwt_extended import create_access_token
|
|
from flask_cors import cross_origin
|
|
from datetime import timedelta
|
|
|
|
from areas import api_v1
|
|
from areas.apps import App, AppRole
|
|
from config import *
|
|
from helpers import HydraOauth, BadRequest
|
|
|
|
|
|
@api_v1.route("/login", methods=["POST"])
|
|
@cross_origin()
|
|
def login():
|
|
authorization_url = HydraOauth.authorize()
|
|
return jsonify({"authorizationUrl": authorization_url})
|
|
|
|
|
|
@api_v1.route("/hydra/callback")
|
|
@cross_origin()
|
|
def hydra_callback():
|
|
state = request.args.get("state")
|
|
code = request.args.get("code")
|
|
if state == None:
|
|
raise BadRequest("Missing state query param")
|
|
|
|
if code == None:
|
|
raise BadRequest("Missing code query param")
|
|
|
|
token = HydraOauth.get_token(state, code)
|
|
user_info = HydraOauth.get_user_info()
|
|
access_token = create_access_token(
|
|
identity=token, expires_delta=timedelta(days=365))
|
|
|
|
isAdmin = "admin" in user_info["groups"]
|
|
app_roles = [
|
|
{
|
|
"name": "dashboard",
|
|
"role_id": 1 if isAdmin else 2
|
|
},
|
|
]
|
|
print(app_roles)
|
|
# apps = App.query.all()
|
|
# for app in apps:
|
|
# tmp_app_role = AppRole.query.filter_by(
|
|
# user_id=user_info["sub"], app_id=app.id
|
|
# ).first()
|
|
# app_roles.append(
|
|
# {
|
|
# "name": app.slug,
|
|
# "role_id": tmp_app_role.role_id if tmp_app_role else None,
|
|
# }
|
|
# )
|
|
return jsonify(
|
|
{
|
|
"accessToken": access_token,
|
|
"userInfo": {
|
|
"id": user_info["email"],
|
|
"email": user_info["email"],
|
|
"name": user_info["name"],
|
|
"preferredUsername": user_info["preferred_username"],
|
|
"app_roles": app_roles
|
|
}
|
|
}
|
|
)
|