Add some sort of oauth.

2014-03-12 12:37:06 -04:00 · 2014-03-12 12:37:06 -04:00 · 25ceb90fc6
commit 25ceb90fc6
parent 220649e579
13 changed files with 290 additions and 46 deletions
--- a/endpoints/api/discovery.py
+++ b/endpoints/api/discovery.py
@ -5,6 +5,7 @@ from flask.ext.restful import Resource, reqparse

 from endpoints.api import resource, method_metadata, nickname, truthy_bool
 from app import app
+from auth import scopes


 logger = logging.getLogger(__name__)
@ -46,42 +47,50 @@ def swagger_route_data():
            'required': True,
          })

-        req_schema_name = method_metadata(method, 'request_schema')
-        if req_schema_name:
-          parameters.append({
-            'paramType': 'body',
-            'name': 'body',
-            'description': 'Request body contents.',
-            'dataType': req_schema_name,
-            'required': True,
-          })
-
-          schema = view_class.schemas[req_schema_name]
-          models[req_schema_name] = schema
-
-        if '__api_query_params' in dir(method):
-          for param_spec in method.__api_query_params:
-            new_param = {
-              'paramType': 'query',
-              'name': param_spec['name'],
-              'description': param_spec['help'],
-              'dataType': TYPE_CONVERTER[param_spec['type']],
-              'required': param_spec['required'],
-            }
-
-            if len(param_spec['choices']) > 0:
-              new_param['enum'] = list(param_spec['choices'])
-
-            parameters.append(new_param)
-
        if method is not None:
-          operations.append({
+          req_schema_name = method_metadata(method, 'request_schema')
+          if req_schema_name:
+            parameters.append({
+              'paramType': 'body',
+              'name': 'body',
+              'description': 'Request body contents.',
+              'dataType': req_schema_name,
+              'required': True,
+            })
+
+            schema = view_class.schemas[req_schema_name]
+            models[req_schema_name] = schema
+
+          if '__api_query_params' in dir(method):
+            for param_spec in method.__api_query_params:
+              new_param = {
+                'paramType': 'query',
+                'name': param_spec['name'],
+                'description': param_spec['help'],
+                'dataType': TYPE_CONVERTER[param_spec['type']],
+                'required': param_spec['required'],
+              }
+
+              if len(param_spec['choices']) > 0:
+                new_param['enum'] = list(param_spec['choices'])
+
+              parameters.append(new_param)
+
+          new_operation = {
            'method': method_name,
            'nickname': method_metadata(method, 'nickname'),
            'type': 'void',
            'summary': method.__doc__ if method.__doc__ else '',
            'parameters': parameters,
-          })
+          }
+
+          scope = method_metadata(method, 'oauth2_scope')
+          if scope:
+            new_operation['authorizations'] = {
+              'oauth2': [scope]
+            }
+
+          operations.append(new_operation)

      swagger_path = PARAM_REGEX.sub(r'{\2}', rule.rule)
      apis.append({
@ -103,6 +112,19 @@ def swagger_route_data():
      'termsOfServiceUrl': 'https://quay.io/tos',
      'contact': 'support@quay.io',
    },
+    'authorizations': {
+      'oauth2': {
+        'scopes': list(scopes.ALL_SCOPES.values()),
+        'grantTypes': {
+          "implicit": {
+            "tokenName": "access_token",
+            "loginEndpoint": {
+              "url": "http://ci.devtable.com:5000/oauth/authorize",
+            },
+          },
+        },
+      },
+    },
    'apis': apis,
    'models': models,
  }