app-MAIL-temp/app/api/base.py

39 lines
1 KiB
Python
Raw Normal View History

2019-12-04 00:48:30 +01:00
from functools import wraps
import arrow
from flask import Blueprint, request, jsonify, g
from flask_login import current_user
2020-04-25 11:30:09 +02:00
from app.db import Session
2019-12-04 00:48:30 +01:00
from app.models import ApiKey
api_bp = Blueprint(name="api", import_name=__name__, url_prefix="/api")
2019-12-04 00:48:30 +01:00
def require_api_auth(f):
2019-12-04 00:48:30 +01:00
@wraps(f)
def decorated(*args, **kwargs):
api_code = request.headers.get("Authentication")
api_key = ApiKey.get_by(code=api_code)
if not api_key:
# if user is authenticated, the request is authorized
if current_user.is_authenticated:
g.user = current_user
else:
return jsonify(error="Wrong api key"), 401
else:
# Update api key stats
api_key.last_used = arrow.now()
api_key.times += 1
Session.commit()
2019-12-04 00:48:30 +01:00
g.user = api_key.user
2019-12-04 00:48:30 +01:00
if g.user.disabled:
return jsonify(error="Disabled account"), 403
2019-12-04 00:48:30 +01:00
return f(*args, **kwargs)
return decorated