velvox
/
litecord
mirror of https://gitlab.com/litecord/litecord.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Compare commits

base: velvox:7dd8838f020901c6f3bf8f83c7b61dbfe0368831
Branches Tags
velvox:master
velvox:fix/fake-nitro-flow
velvox:v8-support
velvox:enhance/dynamic-message-fields
velvox:feature/state-manager
velvox:multiple-embeds
velvox:email-support
velvox:impl/categories
..
compare: velvox:aeee3d9dbbc7acda34d39b68ff826af222e2c841
Branches Tags
velvox:master
velvox:fix/fake-nitro-flow
velvox:v8-support
velvox:enhance/dynamic-message-fields
velvox:feature/state-manager
velvox:multiple-embeds
velvox:email-support
velvox:impl/categories

1 Commits
7dd8838f02 ... aeee3d9dbb

Author SHA1 Message Date
Bluenix aeee3d9dbb Merge branch 'admin-token' into 'master' 
Implement admin ID for automated tests

See merge request litecord/litecord!90
 2022-10-19 11:41:54 +00:00
3 changed files with 21 additions and 27 deletions
Show Stats Expand all files Collapse all files

28
config.example.py
View File

@ -18,6 +18,10 @@ along with this program. If not, see <http://www.gnu.org/licenses/>.
"""
import os
from logbook import Logger
log = Logger(__name__)
MODE = "Development"
@ -72,8 +76,22 @@ class Config:
#: Shared secret for LVSP
LVSP_SECRET = ""
ADMIN_ID = None
ADMIN_TOKEN = None
#: Admin credentials for automated testing
# The token is the value to pass in the Authorization header, and the ID
# is the user ID to use when it is passed.
ADMIN_ID = os.getenv("ADMIN_ID")
ADMIN_TOKEN = os.getenv("ADMIN_TOKEN")
if None in {ADMIN_ID, ADMIN_TOKEN} and not ADMIN_ID == ADMIN_TOKEN:
log.warning(
"Not both admin ID ({}) and token ({}) configured; ignoring",
ADMIN_ID,
ADMIN_TOKEN,
)
ADMIN_ID = ADMIN_TOKEN = None
if ADMIN_ID is not None:
ADMIN_ID = int(ADMIN_ID)
class Development(Config):
@ -86,12 +104,6 @@ class Development(Config):
"database": "litecord",
}
ADMIN_ID = os.getenv("ADMIN_ID")
ADMIN_TOKEN = os.getenv("ADMIN_TOKEN")
if ADMIN_ID is not None:
ADMIN_ID = int(ADMIN_ID)
class Production(Config):
DEBUG = False

5
litecord/auth.py
View File

@ -19,7 +19,6 @@ along with this program. If not, see <http://www.gnu.org/licenses/>.
import base64
import binascii
from hmac import compare_digest
import bcrypt
from itsdangerous import TimestampSigner, BadSignature
@ -48,9 +47,7 @@ async def raw_token_check(token: str, db=None) -> int:
Forbidden
If token validation fails.
"""
if app.config["ADMIN_TOKEN"] is not None and compare_digest(
token, app.config["ADMIN_TOKEN"]
):
if app.config["ADMIN_TOKEN"] is not None:
return app.config["ADMIN_ID"]
db = db or app.db

15
run.py
View File

@ -122,22 +122,7 @@ redirect_logging()
def make_app():
app = Quart(__name__)
app.config.from_object(f"config.{config.MODE}")
admin_id, admin_token = app.config["ADMIN_ID"], app.config["ADMIN_TOKEN"]
if None in {admin_id, admin_token} and not admin_id == admin_token:
log.warning(
"Not both admin ID ({}) and token ({}) configured; ignoring",
admin_id,
admin_token,
)
admin_id = admin_token = None
# update config if the variables were updated
app.config["ADMIN_ID"] = admin_id
app.config["ADMIN_TOKEN"] = admin_token
is_debug = app.config.get("DEBUG", False)
app.debug = is_debug