Skip to content

Commit

Permalink
Merge pull request #11 from uw-it-ist/json
Browse files Browse the repository at this point in the history 
Support JSON representation of session status
  • Loading branch information
Thomas Thorogood authored Oct 7, 2020
2 parents b59e2dd + 694123f commit 2c04345
Showing 1 changed file with 26 additions and 3 deletions.
29 changes: 26 additions & 3 deletions app.py
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,8 @@
from flask import Flask, Response, request, session, abort, redirect
from flask.logging import default_handler
import flask
import flask.json
from werkzeug.exceptions import Unauthorized, Forbidden
from werkzeug.middleware.proxy_fix import ProxyFix
import uw_saml2
from urllib.parse import urljoin
Expand Down Expand Up @@ -36,6 +38,10 @@ def configure_logging():
)


def wants_json(request):
return "application/json" in request.accept_mimetypes.values()


@app.route('/status') # if we add any more options then refactor all this.
@app.route('/status/2fa')
@app.route('/status/group/<group>')
Expand All @@ -56,16 +62,24 @@ def status(group=None):
wants_2fa = '2fa' in request.path.split('/')
has_2fa = session.get('has_2fa', False)
if not userid or (wants_2fa and not has_2fa):
abort(401)
raise Unauthorized
if group and group not in groups:
message = f"{userid} not a member of {group} or SP can't receive it"
app.logger.error(message)
abort(403)
raise Forbidden
str_2fa = str(has_2fa).lower()
headers = {'X-Saml-User': userid,
'X-Saml-Groups': ':'.join(groups),
'X-Saml-2fa': str_2fa}
txt = f'Logged in as: {userid}\nGroups: {str(groups)}\n2FA: {str_2fa}'
if wants_json(request):
txt = flask.json.dumps({
"user": userid,
"groups": groups,
"two_factor": has_2fa
})
headers['Content-Type'] = 'application/json'
else:
txt = f'Logged in as: {userid}\nGroups: {str(groups)}\n2FA: {str_2fa}'
return Response(txt, status=200, headers=headers)


Expand Down Expand Up @@ -139,3 +153,12 @@ def healthz():
<p><a href="status">Status</a></p>
<p><a href="logout">Logout</a></p>
'''


@app.errorhandler(Unauthorized)
@app.errorhandler(Forbidden)
def error_handler(e):
if wants_json(request):
return flask.jsonify(error=str(e)), e.code
else:
return e

0 comments on commit 2c04345

Please sign in to comment.