improve auth

ff28793e · nanahira · aefe7700 · ff28793e · ff28793e
Commit ff28793e authored Oct 17, 2022 by nanahira
Show whitespace changes
Inline Side-by-side

Showing with 20 additions and 20 deletions

docker-compose.yml docker-compose.yml +2 -2

main.py main.py +18 -18

No files found.
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -8,8 +8,8 @@ services:
      - ./models:/app/models
      - ./main.py:/app/main.py:ro
      - ./hydra_node:/app/hydra_node:ro
-      - ./static:/app/static:ro
+      #- ./static:/app/static:ro
    environment:
      # TOKEN_SERVER: https://api.moecube.com/accounts/authUser
      TOKEN: mycard
-      WITH_STATIC: 1
+      #WITH_STATIC: 1
--- a/main.py
+++ b/main.py
@@ -52,16 +52,9 @@ hostname = socket.gethostname()
 sent_first_message = False
 def verify_token(req: Request):
-    if TOKEN:
+    if not TOKEN and not TOKEN_SERVER:
-        valid = "Authorization" in req.headers and req.headers["Authorization"] == "Bearer "+TOKEN
+        # no auth
-        if valid:
        return True
-        if not TOKEN_SERVER and not valid:
-            raise HTTPException(
-                status_code=401,
-                detail="Unauthorized"
-            )
-    if TOKEN_SERVER:
    if "Authorization" not in req.headers:
        raise HTTPException(
            status_code=401,
@@ -70,6 +63,9 @@ def verify_token(req: Request):
    token = req.headers["Authorization"]
    if token.startswith("Bearer "):
        token = token[7:]
+    if TOKEN and token == TOKEN:
+        return True
+    if TOKEN_SERVER:
        tokenAuthResult = requests.get(TOKEN_SERVER, headers={"Authorization": "Bearer "+token})
        if tokenAuthResult.status_code >= 400:
            raise HTTPException(
@@ -77,6 +73,10 @@ def verify_token(req: Request):
                detail="Unauthorized"
            )
        return True
+    raise HTTPException(
+        status_code=401,
+        detail="Unauthorized"
+    )
 #Initialize fastapi
 app = FastAPI()