1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
|
# -*- coding: utf-8 -*-
from flask_login import LoginManager, current_user
from functools import wraps
from werkzeug.exceptions import Forbidden
from itsdangerous import base64_decode, base64_encode
import json
import flask_login.login_manager
from accounts.app import accounts_app
class _compact_json:
@staticmethod
def loads(payload):
return json.loads(payload)
@staticmethod
def dumps(obj, **kwargs):
kwargs.setdefault("ensure_ascii", False)
kwargs.setdefault("separators", (",", ":"))
return json.dumps(obj, **kwargs)
def create_login_manager() -> flask_login.login_manager.LoginManager:
login_manager = LoginManager()
login_manager.login_message = 'Bitte einloggen'
login_manager.login_view = 'login.login'
@login_manager.user_loader
def load_user(user_id: str):
try:
username, password = parse_userid(user_id)
return accounts_app.user_backend.auth(username, password)
except (accounts_app.user_backend.NoSuchUserError,
accounts_app.user_backend.InvalidPasswordError):
return None
return login_manager
def create_userid(username: str, password: str):
userid = (username, password)
return base64_encode(_compact_json.dumps(userid))
def parse_userid(value: str):
return _compact_json.loads(base64_decode(value))
def logout_required(f):
@wraps(f)
def logout_required_(*args, **kwargs):
if current_user.is_authenticated:
raise Forbidden('Diese Seite ist nur für nicht eingeloggte Benutzer gedacht!')
return f(*args, **kwargs)
return logout_required_
|
