HisabKitab-BE/core/auth.py at 0294c517ebb615540367b7047c711ed3e62e2a77 · 101Loop/HisabKitab-BE · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
from django.conf import settings
from django.utils.encoding import smart_str
from django.utils.translation import gettext as _
from rest_framework import HTTP_HEADER_ENCODING, exceptions
from rest_framework_jwt.authentication import BaseJSONWebTokenAuthentication
from rest_framework_jwt.settings import api_settings
from six import text_type


class JSONWebTokenAuthenticationQS(BaseJSONWebTokenAuthentication):
    """
    This is a custom JWT Authentication class. This has inherited
    BaseJsonWebTokenAuthentication and also used some of the codes from
    traditional JSONWebTokenAuthentication class. The traditional one
    can only authenticate from Header with a specific key only.

    This model will first look into HEADER and if the key is not found
    there, it looks for key in the body.
    Key is also changeable and can be set in Django settings as
    JWT_AUTH_KEY with default value of Authorization.

    """

    key = getattr(settings, "JWT_AUTH_KEY", "Authorization")
    header_key = "HTTP_" + key.upper()
    prefix = api_settings.JWT_AUTH_HEADER_PREFIX
    cookie = api_settings.JWT_AUTH_COOKIE

    def get_authorization(self, request):
        """
        This function extracts the authorization JWT string. It first
        looks for specified key in header and then looks
        for the same in body part.

        Parameters
        ----------
        request: HttpRequest
            This is the raw request that user has sent.

        Returns
        -------
        auth: str
            Return request's 'JWT_AUTH_KEY:' content from body or
            Header, as a bytestring.

            Hide some test client ickyness where the header can be unicode.
        """

        auth = request.META.get(self.header_key, b"")

        if isinstance(auth, text_type):
            # Work around django test client oddness
            auth = auth.encode(HTTP_HEADER_ENCODING)
        return auth

    def get_jwt_value(self, request):
        """
        This function has been overloaded and it returns the proper JWT
        auth string.
        Parameters
        ----------
        request: HttpRequest
            This is the request that is received by DJango in the view.
        Returns
        -------
        str
            This returns the extracted JWT auth token string.

        """

        auth = self.get_authorization(request).split()
        auth_header_prefix = self.prefix.lower() or ""

        if not auth:
            return request.COOKIES.get(self.cookie) if self.cookie else None
        if auth_header_prefix is None or len(auth_header_prefix) < 1:
            auth.append("")
            auth.reverse()

        if smart_str(auth[0].lower()) != auth_header_prefix:
            return None

        if len(auth) == 1:
            msg = _("Invalid Authorization header. No credentials provided.")
            raise exceptions.AuthenticationFailed(msg)

        elif len(auth) > 2:
            msg = _(
                "Invalid Authorization header. Credentials string "
                "should not contain spaces."
            )
            raise exceptions.AuthenticationFailed(msg)

        return auth[1]