archive/alerta_alerta
0
0
Fork 0
mirror of https://github.com/alerta/alerta.git synced 2025-01-24 09:19:40 +00:00
Code Issues Projects Releases Wiki Activity
alerta_alerta/alerta/utils/key.py
Nick Satterly 0cb430d2ef
Fix linting errors (#1618) 
* Use flake8 instead of pylint and black

* Fix type errors
2021-11-21 17:26:37 +01:00

43 lines
1.4 KiB
Python
Raw Permalink Blame History

import base64
import hashlib
import hmac
import os
from typing import List
from flask import Flask
from alerta.models.enums import ADMIN_SCOPES, Scope
class ApiKeyHelper:
def __init__(self, app: Flask = None) -> None:
self.app = app
if app is not None:
self.init_app(app)
def init_app(self, app: Flask) -> None:
self.secret_key = app.config['SECRET_KEY']
self.admin_users = app.config['ADMIN_USERS']
self.user_default_scopes = [Scope(s) for s in app.config['USER_DEFAULT_SCOPES']] # type: List[str]
self.api_key_expire_days = app.config['API_KEY_EXPIRE_DAYS']
def generate(self) -> str:
random = str(os.urandom(32)).encode('utf-8')
digest = hmac.new(self.secret_key.encode('utf-8'), msg=random, digestmod=hashlib.sha256).digest()
return base64.urlsafe_b64encode(digest).decode('utf-8')[:40]
def scopes_to_type(self, scopes: List[str]) -> str:
for scope in scopes:
if scope.startswith(Scope.write) or scope.startswith(Scope.admin):
return 'read-write'
return 'read-only'
def type_to_scopes(self, user: str, key_type: str) -> List[str]:
if user in self.admin_users:
return ADMIN_SCOPES
if key_type == 'read-write':
return [Scope.read, Scope.write]
if key_type == 'read-only':
return [Scope.read]
return []
Reference in a new issue View git blame Copy permalink