Refactor our auth handling code to be cleaner

Breaks out the validation code from the auth context modification calls, makes decorators easier to define and adds testing for each individual piece. Will be the basis of better error messaging in the following change.
2017-03-16 17:05:26 -04:00 · 2017-03-16 17:05:26 -04:00 · 651666b60b
commit 651666b60b
parent 1bd4422da9
18 changed files with 830 additions and 455 deletions
--- a/endpoints/v1/index.py
+++ b/endpoints/v1/index.py
@ -9,10 +9,11 @@ from flask import request, make_response, jsonify, session
 from data.interfaces.v1 import pre_oci_model as model
 from app import authentication, userevents, metric_queue
 from auth.auth_context import get_authenticated_user, get_validated_token, get_validated_oauth_token
-from auth.decorators import process_auth, generate_signed_token
+from auth.decorators import process_auth
 from auth.permissions import (ModifyRepositoryPermission, UserAdminPermission,
                              ReadRepositoryPermission, CreateRepositoryPermission,
                              repository_read_grant, repository_write_grant)
+from auth.signedgrant import generate_signed_token
 from util.http import abort
 from util.names import REPOSITORY_NAME_REGEX
 from endpoints.common import parse_repository_name