|
|
"""Authentication API blueprint and endpoint definitions."""from flask import Blueprint, g, abort, request
from corvus.api.decorators import return_jsonfrom corvus.api.model import APIMessage, APIResponsefrom corvus.middleware import authentication_middlewarefrom corvus.service import ( user_token_service, authentication_service, user_service, transformation_service)from corvus.middleware.authentication_middleware import Authfrom corvus.service.role_service import Rolefrom corvus.model import UserToken
AUTH_BLUEPRINT = Blueprint( name='auth', import_name=__name__, url_prefix='/auth')
@AUTH_BLUEPRINT.route('/login', methods=['POST'])@return_json@authentication_middleware.require(required_auth=Auth.BASIC, required_role=Role.USER)def login() -> APIResponse: """
Get a token for continued authentication.
:return: A login token for continued authentication """
user_token = user_token_service.create(g.user) return APIResponse(user_token, 200)
@AUTH_BLUEPRINT.route('/bump', methods=['POST'])@return_json@authentication_middleware.require(required_auth=Auth.BASIC, required_role=Role.USER)def login_bump() -> APIResponse: """
Update the user last seen timestamp.
:return: A time stamp for the bumped login """
user_service.update_last_login_time(g.user) return APIResponse(g.user, 200, ['lastLoginTime'])
@AUTH_BLUEPRINT.route('/logout', methods=['POST'])@return_json@authentication_middleware.require(required_auth=Auth.BASIC, required_role=Role.USER)def logout() -> APIResponse: """
Logout and delete a token.
:return: """
authentication_service.logout(g.user_token) return APIResponse(APIMessage(True, None), 200)
@AUTH_BLUEPRINT.route('/token', methods=['GET'])@return_json@authentication_middleware.require(required_auth=Auth.BASIC, required_role=Role.USER)def get_tokens() -> APIResponse: user_tokens = user_token_service.find_by_user(g.user) return APIResponse(user_tokens, 200)
@AUTH_BLUEPRINT.route('/token', methods=['POST'])@return_json@authentication_middleware.require(required_auth=Auth.BASIC, required_role=Role.USER)def create_token(): requested_token: UserToken = transformation_service.deserialize_model( UserToken, request.json, options=['note', 'enabled', 'expirationTime']) user_token = user_token_service.create(g.user, requested_token.note, requested_token.enabled, requested_token.expiration_time) return APIResponse(user_token, 200)
@AUTH_BLUEPRINT.route('/token/<token>', methods=['GET'])@return_json@authentication_middleware.require(required_auth=Auth.BASIC, required_role=Role.USER)def get_token(token: str): user_token = user_token_service.find_by_user_and_token(g.user, token) if user_token is None: return abort(404) return APIResponse(user_token, 200)
@AUTH_BLUEPRINT.route('/token/<token>', methods=['DELETE'])@return_json@authentication_middleware.require(required_auth=Auth.BASIC, required_role=Role.USER)def delete_token(token: str): user_token = user_token_service.find_by_user_and_token(g.user, token) if user_token is None: return abort(404) user_token_service.delete(user_token) return APIResponse(None, 200)
|
