A multipurpose python flask API server and administration SPA
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 
 
 
 
 

58 lines
1.3 KiB

"""Service to handle authentication."""
from datetime import datetime
from typing import Optional
from nacl import pwhash
from nacl.exceptions import InvalidkeyError
from corvus.model import User, UserToken
from corvus.service import user_token_service
def is_valid_password(user: User, password: str) -> bool:
"""
User password must pass pwhash verify.
:param user:
:param password:
:return:
"""
assert user
try:
return pwhash.verify(
user.password_hash.encode('utf8'), password.encode('utf8'))
except InvalidkeyError:
pass
return False
def is_valid_token(user_token: Optional[UserToken]) -> bool:
"""
Validate a token.
Token must be enabled and if it has an expiration, it must be greater
than now.
:param user_token:
:return:
"""
if user_token is None:
return False
if not user_token.enabled:
return False
if (user_token.expiration_time is not None
and user_token.expiration_time < datetime.utcnow()):
return False
return True
def logout(user_token: Optional[UserToken] = None) -> None:
"""
Remove a user_token associated with a client session.
:param user_token:
:return:
"""
if user_token is not None:
user_token_service.delete(user_token)