2020-02-04 13:54:53 +00:00
|
|
|
import warnings
|
|
|
|
|
|
|
|
from openapi_core.security.exceptions import SecurityError
|
|
|
|
|
|
|
|
|
|
|
|
class BaseProvider(object):
|
|
|
|
|
|
|
|
def __init__(self, scheme):
|
|
|
|
self.scheme = scheme
|
|
|
|
|
|
|
|
|
|
|
|
class UnsupportedProvider(BaseProvider):
|
|
|
|
|
|
|
|
def __call__(self, request):
|
|
|
|
warnings.warn("Unsupported scheme type")
|
|
|
|
|
|
|
|
|
|
|
|
class ApiKeyProvider(BaseProvider):
|
|
|
|
|
|
|
|
def __call__(self, request):
|
|
|
|
source = getattr(request.parameters, self.scheme.apikey_in.value)
|
|
|
|
if self.scheme.name not in source:
|
|
|
|
raise SecurityError("Missing api key parameter.")
|
|
|
|
return source.get(self.scheme.name)
|
|
|
|
|
|
|
|
|
|
|
|
class HttpProvider(BaseProvider):
|
|
|
|
|
|
|
|
def __call__(self, request):
|
|
|
|
if 'Authorization' not in request.parameters.header:
|
|
|
|
raise SecurityError('Missing authorization header.')
|
|
|
|
auth_header = request.parameters.header['Authorization']
|
|
|
|
try:
|
|
|
|
auth_type, encoded_credentials = auth_header.split(' ', 1)
|
|
|
|
except ValueError:
|
|
|
|
raise SecurityError('Could not parse authorization header.')
|
|
|
|
|
|
|
|
if auth_type.lower() != self.scheme.scheme.value:
|
|
|
|
raise SecurityError(
|
|
|
|
'Unknown authorization method %s' % auth_type)
|
2020-03-23 13:20:08 +00:00
|
|
|
|
|
|
|
return encoded_credentials
|