|
|
- import json
- from functools import wraps
-
- from django.contrib.auth.models import User
- from django.http import HttpResponseForbidden, JsonResponse
- from hc.lib.jsonschema import ValidationError, validate
-
-
- def make_error(msg):
- return JsonResponse({"error": msg}, status=400)
-
-
- def check_api_key(f):
- @wraps(f)
- def wrapper(request, *args, **kwds):
- request.json = {}
- if request.body:
- try:
- request.json = json.loads(request.body.decode())
- except ValueError:
- return make_error("could not parse request body")
-
- if "HTTP_X_API_KEY" in request.META:
- api_key = request.META["HTTP_X_API_KEY"]
- else:
- api_key = request.json.get("api_key", "")
-
- if api_key == "":
- return make_error("wrong api_key")
-
- try:
- request.user = User.objects.get(profile__api_key=api_key)
- except User.DoesNotExist:
- return HttpResponseForbidden()
-
- return f(request, *args, **kwds)
-
- return wrapper
-
-
- def validate_json(schema):
- """ Validate request.json contents against `schema`.
-
- Supports a tiny subset of JSON schema spec.
-
- """
-
- def decorator(f):
- @wraps(f)
- def wrapper(request, *args, **kwds):
- try:
- validate(request.json, schema)
- except ValidationError as e:
- return make_error("json validation error: %s" % e)
-
- return f(request, *args, **kwds)
- return wrapper
- return decorator
|