summaryrefslogtreecommitdiff
path: root/auth-server-poc/src/app.py
diff options
context:
space:
mode:
Diffstat (limited to 'auth-server-poc/src/app.py')
-rw-r--r--auth-server-poc/src/app.py54
1 files changed, 0 insertions, 54 deletions
diff --git a/auth-server-poc/src/app.py b/auth-server-poc/src/app.py
deleted file mode 100644
index 37a7030..0000000
--- a/auth-server-poc/src/app.py
+++ /dev/null
@@ -1,54 +0,0 @@
-from flask import Flask, request
-from flask_restful import Api, Resource
-from flask_jwt_extended import create_access_token, JWTManager
-from flask_cors import CORS
-
-import authn
-
-app = Flask(__name__)
-cors = CORS(
- app,
- resources={r"/api/*": {"origins": "*"}},
- expose_headers=["Content-Type", "Authorization", "X-Total-Count"],
-)
-api = Api(app, prefix="/api/v1.0")
-jwt = JWTManager(app)
-
-PEM_PRIVATE = "/opt/auth-server-poc/cert/private.pem"
-PEM_PUBLIC = "/opt/auth-server-poc/cert/public.pem"
-USERDB_YAML = "/opt/auth-server-poc/userdb/userdb.yaml"
-
-app.config["JWT_PRIVATE_KEY"] = open(PEM_PRIVATE).read()
-app.config["JWT_PUBLIC_KEY"] = open(PEM_PUBLIC).read()
-app.config["JWT_ALGORITHM"] = "ES256"
-app.config["JWT_IDENTITY_CLAIM"] = "sub"
-app.config["JWT_ACCESS_TOKEN_EXPIRES"] = False
-
-
-class AuthApi(Resource):
- def post(self):
-
- identity = request.environ.get("REMOTE_USER")
- db = authn.UserDB(USERDB_YAML)
- additional_claims = {
- "type": "access",
- "read": db.read_perms(identity),
- "write": db.write_perms(identity),
- }
-
- access_token = create_access_token(
- identity=identity,
- additional_claims=additional_claims,
- )
-
- return {"access_token": access_token}, 200
-
-
-@app.route("/")
-def index():
- return "<p>Username: {}</p><p>Auth type: {}</p>".format(
- request.environ.get("REMOTE_USER"), request.environ.get("AUTH_TYPE")
- )
-
-
-api.add_resource(AuthApi, "/auth")
generated by cgit v1.1 at 2025-07-14 11:48:14 +0000