[ADD] pms_api_rest: module created

2025-01-29 00:17:45 +02:00 · 2021-07-26 13:07:37 +02:00
parent 75f453adec
commit 78da297eb4
6 changed files with 327 additions and 5 deletions
--- a/pms_api_rest/lib_jwt/validator.py
+++ b/pms_api_rest/lib_jwt/validator.py
@@ -0,0 +1,108 @@
+import datetime
+import logging
+import re
+import traceback
+
+import jwt
+from jwt import InvalidSignatureError
+
+from odoo.http import request
+from odoo.tools import DEFAULT_SERVER_DATETIME_FORMAT
+
+_logger = logging.getLogger(__name__)
+
+regex = (
+    r"^[a-z0-9!#$%&'*+\/=?^_`{|}~-]+(?:\.[a-z0-9!#$%&'*+\/=?^_`{|}~-]+)*@(?:[a-z0-9]"
+)
+regex += r"(?:[a-z0-9-]*[a-z0-9])?\.)+[a-z0-9](?:[a-z0-9-]*[a-z0-9])?$"
+
+
+class Validator:
+    def is_valid_email(self, email):
+        return re.search(regex, email)
+
+    def key(self):
+        # TODO: change this key before production (build an UI Form to maintain
+        #                                                   (in form company?)
+        return "CHANGE THIS KEY"
+
+    def create_token(self, user):
+        try:
+            exp = datetime.datetime.utcnow() + datetime.timedelta(days=30)
+            payload = {
+                "exp": exp,
+                "iat": datetime.datetime.utcnow(),
+                "sub": user["id"],
+                "lgn": user["login"],
+            }
+            token = jwt.encode(payload, self.key(), algorithm="HS256")
+
+            self.save_token(token, user["id"], exp)
+            return token
+        except Exception as ex:
+            _logger.error(ex)
+            raise
+
+    def save_token(self, token, uid, exp):
+        request.env["jwt_provider.access_token"].sudo().create(
+            {
+                "user_id": uid,
+                "expires": exp.strftime(DEFAULT_SERVER_DATETIME_FORMAT),
+                "token": token,
+            }
+        )
+
+    def verify(self, token):
+        record = (
+            request.env["jwt_provider.access_token"]
+            .sudo()
+            .search([("token", "=", token)])
+        )
+
+        if len(record) != 1:
+            _logger.info("not found %s" % token)
+            return False
+
+        if record.is_expired:
+            return False
+
+        return record.user_id
+
+    def verify_token(self, token):
+        try:
+            result = {
+                "status": False,
+                "message": None,
+            }
+
+            if not self.verify(token):
+                result["message"] = "Token invalid or expired"
+                result["code"] = 498
+                _logger.info("11111")
+                return result
+
+            payload = jwt.decode(token, self.key(), algorithms=["HS256"])
+            uid = request.session.authenticate(
+                request.session.db, login=payload["lgn"], password=token
+            )
+            if not uid:
+                result["message"] = "Token invalid or expired"
+                result["code"] = 498
+                _logger.info("2222")
+                return result
+
+            result["status"] = True
+            return result
+        except (
+            jwt.ExpiredSignatureError,
+            jwt.InvalidTokenError,
+            InvalidSignatureError,
+            Exception,
+        ):
+            result["code"] = 498
+            result["message"] = "Token invalid or expired"
+            _logger.error(traceback.format_exc())
+            return result
+
+
+validator = Validator()