photofloat/scanner/floatapp/login.py

from floatapp import app, login_manager
from flask import request, abort
from flask_login import current_user, UserMixin
from functools import wraps

class User(UserMixin):
	def __init__(self, id, admin=False):
		self.admin = admin
		self.id = id

photo_user = User("user")
admin_user = User("admin", True)

@login_manager.user_loader
def load_user(id):
	if id == "user":
		return photo_user
	elif id == "admin":
		return admin_user
	return None

@login_manager.unauthorized_handler
def unauthorized():
	return abort(403)

def login_required(fn):
	@wraps(fn)
	def decorated_view(*args, **kwargs):
		if query_is_admin_user(request.args) or query_is_photo_user(request.args) or current_user.is_authenticated():
			return fn(*args, **kwargs)
		return app.login_manager.unauthorized()
	return decorated_view

def admin_required(fn):
	@wraps(fn)
	def decorated_view(*args, **kwargs):
		if query_is_admin_user(request.args) or (current_user.is_authenticated() and current_user.admin):
			return fn(*args, **kwargs)
		return app.login_manager.unauthorized()
	return decorated_view

def query_is_photo_user(query):
	username = query.get("username", None)
	password = query.get("password", None)
	return username == app.config["PHOTO_USERNAME"] and password == app.config["PHOTO_PASSWORD"]

def query_is_admin_user(query):
	username = query.get("username", None)
	password = query.get("password", None)
	return username == app.config["ADMIN_USERNAME"] and password == app.config["ADMIN_PASSWORD"]

def is_authenticated():
	return query_is_admin_user(request.args) or query_is_photo_user(request.args) or current_user.is_authenticated()
Restructuring Import flask app as well as new makefile and entirely new directory structure. 2013-04-29 11:05:09 +02:00			`from floatapp import app, login_manager`
			`from flask import request, abort`
			`from flask_login import current_user, UserMixin`
			`from functools import wraps`

			`class User(UserMixin):`
			`def __init__(self, id, admin=False):`
			`self.admin = admin`
			`self.id = id`

			`photo_user = User("user")`
			`admin_user = User("admin", True)`

			`@login_manager.user_loader`
			`def load_user(id):`
			`if id == "user":`
			`return photo_user`
			`elif id == "admin":`
			`return admin_user`
			`return None`

			`@login_manager.unauthorized_handler`
			`def unauthorized():`
			`return abort(403)`

			`def login_required(fn):`
			`@wraps(fn)`
			`def decorated_view(args, *kwargs):`
			`if query_is_admin_user(request.args) or query_is_photo_user(request.args) or current_user.is_authenticated():`
			`return fn(args, *kwargs)`
			`return app.login_manager.unauthorized()`
			`return decorated_view`

			`def admin_required(fn):`
			`@wraps(fn)`
			`def decorated_view(args, *kwargs):`
			`if query_is_admin_user(request.args) or (current_user.is_authenticated() and current_user.admin):`
			`return fn(args, *kwargs)`
			`return app.login_manager.unauthorized()`
			`return decorated_view`

			`def query_is_photo_user(query):`
			`username = query.get("username", None)`
			`password = query.get("password", None)`
			`return username == app.config["PHOTO_USERNAME"] and password == app.config["PHOTO_PASSWORD"]`

			`def query_is_admin_user(query):`
			`username = query.get("username", None)`
			`password = query.get("password", None)`
			`return username == app.config["ADMIN_USERNAME"] and password == app.config["ADMIN_PASSWORD"]`

			`def is_authenticated():`
			`return query_is_admin_user(request.args) or query_is_photo_user(request.args) or current_user.is_authenticated()`