Update secure-websocket-python.md

update python code

Author: valindrae

articles/communication-services/how-tos/call-automation/includes/secure-websocket-python.md

@@ -13,54 +13,39 @@ ms.author: kpunjabi
 
 ## Websocket code sample
 
-This sample code demonstrates how to configure OIDC client to validate websocket payload using JWT
+This sample code demonstrates how to configure OIDC client to validate websocket payload using JWT. Install the following package:
+
+`pip install cryptography`
 
 ```python
-from quart import Quart, websocket, abort, request import jwt from jwt import PyJWKClient, InvalidTokenError
-app = Quart(name)
-JWKS_URL = "https://acscallautomation.communication.azure.com/calling/keys" EXPECTED_ISSUER = "https://acscallautomation.communication.azure.com" EXPECTED_AUDIENCE = "ACS resource ID" # replace with actual audience
-async def validate_token(token: str): try: jwks_client = PyJWKClient(JWKS_URL) signing_key = jwks_client.get_signing_key_from_jwt(token).key
-   decoded_token = jwt.decode(
+JWKS_URL = "https://acscallautomation.communication.azure.com/calling/keys"
+ISSUER = "https://acscallautomation.communication.azure.com"
+AUDIENCE = "ACS resource ID”
+@app.websocket('/ws') async def ws(): try: auth_header = websocket.headers.get("Authorization") if not auth_header or not auth_header.startswith("Bearer "): await websocket.close(1008) # Policy violation return
+   token = auth_header.split()[1]
+
+    jwks_client = PyJWKClient(JWKS_URL)
+    signing_key = jwks_client.get_signing_key_from_jwt(token)
+
+    decoded = jwt.decode(
         token,
-        signing_key,
+        signing_key.key,
         algorithms=["RS256"],
-        audience=EXPECTED_AUDIENCE,
-        issuer=EXPECTED_ISSUER,
+        issuer=ISSUER,
+        audience=AUDIENCE,
     )
 
-    return decoded_token  # Could return claims if needed
-except InvalidTokenError:
-    print("Token is invalid.")
-    return None
-except Exception as e:
-    print(f"Uncaught exception during token validation: {e}")
-    return None
- 
-@app.websocket("/ws") async def ws(): auth_header = websocket.headers.get("Authorization")
-if not auth_header or not auth_header.startswith("Bearer "):
-    await websocket.close(code=4401, reason="Missing or invalid Authorization header")
-    return
-
-token = auth_header.split(" ")[1]
+    app.logger.info(f"Authenticated WebSocket connection with decoded JWT payload: {decoded}")
+    await websocket.send("Connection authenticated.")
 
-claims = await validate_token(token)
-if not claims:
-    await websocket.close(code=4401, reason="Invalid token")
-    return
-
-correlation_id = websocket.headers.get("x-ms-call-correlation-id", "not provided")
-call_connection_id = websocket.headers.get("x-ms-call-connection-id", "not provided")
-print(f"Authenticated WebSocket - Correlation ID: {correlation_id}")
-print(f"Authenticated WebSocket - CallConnection ID: {call_connection_id}")
-
-try:
     while True:
-        message = await websocket.receive()
-        print(f"Received: {message}")
-        # TODO: process message
-except Exception as e:
-    print(f"WebSocket closed: {e}")
- 
-if name == "main": app.run()
+        data = await websocket.receive()
+        # Process incoming data
 
+except InvalidTokenError as e:
+    app.logger.warning(f"Invalid token: {e}")
+    await websocket.close(1008)
+except Exception as e:
+    app.logger.error(f"Uncaught exception: {e}")
+    await websocket.close(1011)  # Internal error
 ```