notifier/services/auth.py

import logging

from aiohttp import ClientSession
from strawberry.extensions import Extension

from orm.author import Author
from services.db import local_session
from settings import AUTH_URL


logger = logging.getLogger("\t[services.auth]\t")
logger.setLevel(logging.DEBUG)


async def check_auth(req) -> str | None:
    token = req.headers.get("Authorization")
    user_id = ""
    if token:
        query_name = "validate_jwt_token"
        operation = "ValidateToken"
        headers = {
            "Content-Type": "application/json",
        }

        variables = {
            "params": {
                "token_type": "access_token",
                "token": token,
            }
        }

        gql = {
            "query": f"query {operation}($params: ValidateJWTTokenInput!) {{ {query_name}(params: $params) {{ is_valid claims }} }}",
            "variables": variables,
            "operationName": operation,
        }
        try:
            # Asynchronous HTTP request to the authentication server
            async with ClientSession() as session:
                async with session.post(
                    AUTH_URL, json=gql, headers=headers
                ) as response:
                    logger.debug(
                        f"HTTP Response {response.status} {await response.text()}"
                    )
                    if response.status == 200:
                        data = await response.json()
                        errors = data.get("errors")
                        if errors:
                            logger.error(f"errors: {errors}")
                        else:
                            user_id = (
                                data.get("data", {})
                                .get(query_name, {})
                                .get("claims", {})
                                .get("sub")
                            )
                            if user_id:
                                logger.info(f"got user_id: {user_id}")
                                return user_id
        except Exception as e:
            import traceback

            traceback.print_exc()
            # Handling and logging exceptions during authentication check
            logger.error(f"Error {e}")

    return None


class LoginRequiredMiddleware(Extension):
    async def on_request_start(self):
        context = self.execution_context.context
        req = context.get("request")
        user_id = await check_auth(req)
        if user_id:
            context["user_id"] = user_id.strip()
            with local_session() as session:
                author = session.query(Author).filter(Author.user == user_id).first()
                if author:
                    context["author_id"] = author.id
        context["user_id"] = user_id or None

        self.execution_context.context = context
fixed-fmt-linted 2024-02-16 23:56:15 +00:00			`import logging`

connectors-upgrade 2023-12-18 07:30:14 +00:00			`from aiohttp import ClientSession`
auth-check-middleware-3 2023-12-17 11:47:05 +00:00			`from strawberry.extensions import Extension`

connectors-upgrade 2023-12-18 07:30:14 +00:00			`from orm.author import Author`
fixed-fmt-linted 2024-02-16 23:56:15 +00:00			`from services.db import local_session`
			`from settings import AUTH_URL`
initial-draft 2023-11-23 22:58:55 +00:00
less-logs 2024-01-23 14:52:12 +00:00
merged 2024-02-18 07:47:07 +00:00			`logger = logging.getLogger("\t[services.auth]\t")`
less-logs 2024-01-23 14:52:12 +00:00			`logger.setLevel(logging.DEBUG)`
0.1.0-fixes 2023-12-22 09:09:03 +00:00
precommit 2024-02-04 04:58:44 +00:00
connectors-upgrade 2023-12-18 07:30:14 +00:00			`async def check_auth(req) -> str \| None:`
merged 2024-02-18 07:47:07 +00:00			`token = req.headers.get("Authorization")`
			`user_id = ""`
update-auth-connector 2023-12-13 22:05:45 +00:00			`if token:`
merged 2024-02-18 07:47:07 +00:00			`query_name = "validate_jwt_token"`
			`operation = "ValidateToken"`
update-auth-connector 2023-12-13 22:05:45 +00:00			`headers = {`
merged 2024-02-18 07:47:07 +00:00			`"Content-Type": "application/json",`
update-auth-connector 2023-12-13 22:05:45 +00:00			`}`

			`variables = {`
merged 2024-02-18 07:47:07 +00:00			`"params": {`
			`"token_type": "access_token",`
			`"token": token,`
update-auth-connector 2023-12-13 22:05:45 +00:00			`}`
			`}`

			`gql = {`
merged 2024-02-18 07:47:07 +00:00			`"query": f"query {operation}($params: ValidateJWTTokenInput!) {{ {query_name}(params: $params) {{ is_valid claims }} }}",`
			`"variables": variables,`
			`"operationName": operation,`
update-auth-connector 2023-12-13 22:05:45 +00:00			`}`
			`try:`
auth-connector-fix 2023-12-17 06:43:45 +00:00			`# Asynchronous HTTP request to the authentication server`
connectors-upgrade 2023-12-18 07:30:14 +00:00			`async with ClientSession() as session:`
merged 2024-02-18 07:47:07 +00:00			`async with session.post(`
			`AUTH_URL, json=gql, headers=headers`
			`) as response:`
			`logger.debug(`
			`f"HTTP Response {response.status} {await response.text()}"`
			`)`
update-auth-connector 2023-12-13 22:05:45 +00:00			`if response.status == 200:`
			`data = await response.json()`
merged 2024-02-18 07:47:07 +00:00			`errors = data.get("errors")`
update-auth-connector 2023-12-13 22:05:45 +00:00			`if errors:`
merged 2024-02-18 07:47:07 +00:00			`logger.error(f"errors: {errors}")`
update-auth-connector 2023-12-13 22:05:45 +00:00			`else:`
merged 2024-02-18 07:47:07 +00:00			`user_id = (`
			`data.get("data", {})`
			`.get(query_name, {})`
			`.get("claims", {})`
			`.get("sub")`
			`)`
0.1.0-fixes 2023-12-22 09:09:03 +00:00			`if user_id:`
merged 2024-02-18 07:47:07 +00:00			`logger.info(f"got user_id: {user_id}")`
0.1.0-fixes 2023-12-22 09:09:03 +00:00			`return user_id`
update-auth-connector 2023-12-13 22:05:45 +00:00			`except Exception as e:`
thread-id-fix 2023-12-22 10:08:35 +00:00			`import traceback`
precommit 2024-02-04 04:58:44 +00:00
thread-id-fix 2023-12-22 10:08:35 +00:00			`traceback.print_exc()`
auth-connector-fix 2023-12-17 06:43:45 +00:00			`# Handling and logging exceptions during authentication check`
merged 2024-02-18 07:47:07 +00:00			`logger.error(f"Error {e}")`
update-auth-connector 2023-12-13 22:05:45 +00:00
tolerate-auth 2023-12-22 09:34:47 +00:00			`return None`
0.1.0-fixes 2023-12-22 09:09:03 +00:00
auth-check-middleware-3 2023-12-17 11:47:05 +00:00
			`class LoginRequiredMiddleware(Extension):`
			`async def on_request_start(self):`
			`context = self.execution_context.context`
merged 2024-02-18 07:47:07 +00:00			`req = context.get("request")`
connectors-upgrade 2023-12-18 07:30:14 +00:00			`user_id = await check_auth(req)`
			`if user_id:`
merged 2024-02-18 07:47:07 +00:00			`context["user_id"] = user_id.strip()`
auth-check-middleware-3 2023-12-17 11:47:05 +00:00			`with local_session() as session:`
			`author = session.query(Author).filter(Author.user == user_id).first()`
			`if author:`
merged 2024-02-18 07:47:07 +00:00			`context["author_id"] = author.id`
			`context["user_id"] = user_id or None`
0.1.0-fixes 2023-12-22 09:09:03 +00:00
			`self.execution_context.context = context`