Skip to content

Commit 9982092

Browse files
davenquinndavenquinn
committed
Attempt to bring security to a working state
1 parent 956614f commit 9982092

File tree

1 file changed

+2
-40
lines changed

1 file changed

+2
-40
lines changed

services/api-v3/api/routes/security.py

Lines changed: 2 additions & 40 deletions
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@
22
import secrets
33
import string
44
import urllib.parse
5-
from datetime import datetime, timedelta, timezone
5+
from datetime import datetime, timedelta
66
from typing import Annotated, Optional
77

88
import aiohttp
@@ -18,7 +18,7 @@
1818
from fastapi.security.utils import get_authorization_scheme_param
1919
from jose import JWTError, jwt
2020
from pydantic import BaseModel
21-
from sqlalchemy import select, text
21+
from sqlalchemy import select
2222
from sqlalchemy.orm import selectinload
2323
from starlette.status import HTTP_401_UNAUTHORIZED
2424

@@ -99,7 +99,6 @@ async def __call__(self, request: Request) -> Optional[str]:
9999
responses={404: {"description": "Not found"}},
100100
)
101101

102-
'''
103102
async def get_groups_from_header_token(
104103
header_token: Annotated[HTTPAuthorizationCredentials, Depends(http_bearer)]
105104
) -> int | None:
@@ -122,31 +121,7 @@ async def get_groups_from_header_token(
122121
return None
123122

124123
return token.group
125-
'''
126124

127-
128-
async def get_groups_from_header_token(
129-
header_token: Annotated[HTTPAuthorizationCredentials, Depends(http_bearer)]
130-
) -> int | None:
131-
if header_token is None:
132-
return None
133-
134-
engine = db.get_engine()
135-
136-
try:
137-
rows = await db.get_all_unexpired_access_tokens(engine)
138-
except Exception:
139-
rows = []
140-
for row in rows:
141-
try:
142-
if bcrypt.checkpw(header_token.credentials.encode(), row["token"].encode()):
143-
return row["group"]
144-
except Exception:
145-
continue
146-
return None
147-
148-
149-
'''
150125
async def get_user(sub: str) -> schemas.User | None:
151126
"""Get an existing user"""
152127

@@ -164,7 +139,6 @@ async def get_user(sub: str) -> schemas.User | None:
164139
return user
165140

166141

167-
168142
async def create_user(sub: str, name: str, email: str) -> schemas.User:
169143
"""Create a new user"""
170144

@@ -178,18 +152,6 @@ async def create_user(sub: str, name: str, email: str) -> schemas.User:
178152
await session.commit()
179153

180154
return await get_user(sub)
181-
182-
'''
183-
184-
185-
async def get_user(sub: str) -> dict | None:
186-
engine = db.get_engine()
187-
return await db.fetch_user_by_sub(engine, sub)
188-
189-
190-
async def create_user(sub: str, name: str, email: str) -> dict:
191-
engine = db.get_engine()
192-
return await db.create_user_row(engine, sub, name, email)
193155

194156

195157
async def get_user_token_from_cookie(

0 commit comments

Comments
 (0)