Merge pull request #1 from crane-cloud/ft-auth

LanternNassi · web-flow · commit 802833e1ddfb · 2024-04-11T13:48:16.000+03:00
Add auth for the monitoring application
diff --git a/app/controllers/project.py b/app/controllers/project.py
@@ -9,12 +9,16 @@
 from flask_restful import Resource, request
 from flask import current_app, render_template
 
+from app.helpers.authenticate import (
+    jwt_required
+)
+
 # Todo: figure out a way to connect to projects and get projects
 
 
 class ProjectMemoryUsageView(Resource):
 
-    # @jwt_required
+    @jwt_required
     def post(self, project_id):
         return dict(status='success', data=dict()), 200
 
diff --git a/app/helpers/authenticate.py b/app/helpers/authenticate.py
@@ -0,0 +1,42 @@
+from flask_jwt_extended import (
+    jwt_required as jwt,
+    verify_jwt_in_request
+)
+from functools import wraps
+import jwt
+from flask import request , jsonify
+import os
+
+
+def jwt_required(fn):
+    @wraps(fn)
+    def wrapper(*args, **kwargs):
+
+        access_token = request.headers.get('Authorization')
+    
+        payload : object = {}
+
+        if access_token is None :
+            return dict(message = 'Access token was not supplied'), 401
+
+        try :
+            token = access_token.split(' ')[1]
+            if (access_token.split(' ')[0] != "Bearer"):
+                return dict(message = "Bad Authorization header. Expected value 'Bearer <JWT>'") , 422
+            
+            payload = jwt.decode(token, os.getenv('JWT_Token'), algorithms= ['HS256'])
+
+                            
+        except jwt.exceptions.DecodeError:
+            return dict(message = "Access token is not valid or key") , 401
+        
+        return fn(*args, **kwargs)
+    return wrapper
+
+
+def admin_required(fn):
+    @wraps(fn)
+    @jwt_required
+    def wrapper(*args, **kwargs):
+        return fn(*args, **kwargs)
+    return wrapper
diff --git a/config/config.py b/config/config.py
@@ -7,6 +7,7 @@ class Base:
     # main
     SECRET_KEY = os.getenv("FLASK_APP_SECRET")
     VERIFICATION_SALT = os.getenv("FLASK_VERIFY_SALT")
+    PASSWORD_SALT = os.getenv("FLASK_APP_SALT")
 
 
 class Development(Base):
diff --git a/requirements.txt b/requirements.txt
@@ -4,9 +4,11 @@ blinker==1.7.0
 certifi==2024.2.2
 charset-normalizer==3.3.2
 click==8.1.7
+colorama==0.4.6
 flasgger==0.9.7.1
 Flask==3.0.3
 Flask-Cors==4.0.0
+Flask-JWT-Extended==4.6.0
 Flask-RESTful==0.3.10
 idna==3.6
 itsdangerous==2.1.2
@@ -17,6 +19,7 @@ MarkupSafe==2.1.5
 mistune==3.0.2
 packaging==24.0
 prometheus-http-client==1.0.0
+PyJWT==2.8.0
 python-dotenv==1.0.1
 pytz==2024.1
 PyYAML==6.0.1
diff --git a/server.py b/server.py
@@ -6,6 +6,9 @@
 from flask_cors import CORS
 from flasgger import Swagger
 
+from flask_jwt_extended import JWTManager
+
+
 from app.routes import api
 
 
@@ -39,6 +42,8 @@ def create_app(config_name):
 
     Swagger(app, template_file='api_docs.yml')
 
+    jwt = JWTManager(app)
+
     # handle default 404 exceptions with a custom response
 
     @app.errorhandler(404)
