Add some sort of oauth.

2014-03-12 12:37:06 -04:00 · 2014-03-12 12:37:06 -04:00 · 25ceb90fc6
commit 25ceb90fc6
parent 220649e579
13 changed files with 290 additions and 46 deletions
--- a/auth/auth.py
+++ b/auth/auth.py
@ -9,12 +9,12 @@ from data import model
 from app import app
 from permissions import QuayDeferredPermissionUser

-from util.names import parse_namespace_repository
 from util.http import abort


 logger = logging.getLogger(__name__)

+
 def process_basic_auth(auth):
  normalized = [part.strip() for part in auth.split(' ') if part]
  if normalized[0].lower() != 'basic' or len(normalized) != 2:
@ -87,7 +87,8 @@ def process_token(auth):
                (detail.split('=') for detail in token_details)}
  if 'signature' not in token_vals:
    logger.warning('Token does not contain signature: %s' % auth)
-    abort(401, message="Token does not contain a valid signature: %(auth)", issue='invalid-auth-token', auth=auth)
+    abort(401, message="Token does not contain a valid signature: %(auth)",
+          issue='invalid-auth-token', auth=auth)

  try:
    token_data = model.load_token_data(token_vals['signature'])
@ -95,7 +96,8 @@ def process_token(auth):
  except model.InvalidTokenException:
    logger.warning('Token could not be validated: %s' %
                   token_vals['signature'])
-    abort(401, message="Token could not be validated: %(auth)", issue='invalid-auth-token', auth=auth)
+    abort(401, message="Token could not be validated: %(auth)", issue='invalid-auth-token',
+          auth=auth)

  logger.debug('Successfully validated token: %s' % token_data.code)
  ctx = _request_ctx_stack.top