lbry-sdk/lbrynet/daemon/auth/client.py

import os
import json
import urlparse
import requests
from requests.cookies import RequestsCookieJar
import logging
from jsonrpc.proxy import JSONRPCProxy
from lbrynet import conf
from lbrynet.daemon.auth.util import load_api_keys, APIKey, API_KEY_NAME, get_auth_message

log = logging.getLogger(__name__)
USER_AGENT = "AuthServiceProxy/0.1"
TWISTED_SESSION = "TWISTED_SESSION"
LBRY_SECRET = "LBRY_SECRET"
HTTP_TIMEOUT = 30


def copy_cookies(cookies):
    result = RequestsCookieJar()
    result.update(cookies)
    return result


class JSONRPCException(Exception):
    def __init__(self, rpc_error):
        Exception.__init__(self)
        self.error = rpc_error


class AuthAPIClient(object):
    def __init__(self, key, timeout, connection, count, cookies, url, login_url):
        self.__api_key = key
        self.__service_url = login_url
        self.__id_count = count
        self.__url = url
        self.__conn = connection
        self.__cookies = copy_cookies(cookies)

    def __getattr__(self, name):
        if name.startswith('__') and name.endswith('__'):
            raise AttributeError(name)

        def f(*args, **kwargs):
            return self.call(name, [args, kwargs])

        return f

    def call(self, method, params=None):
        params = params or {}
        self.__id_count += 1
        pre_auth_post_data = {
            'version': '2',
            'method': method,
            'params': params,
            'id': self.__id_count
        }
        to_auth = get_auth_message(pre_auth_post_data)
        pre_auth_post_data.update({'hmac': self.__api_key.get_hmac(to_auth)})
        post_data = json.dumps(pre_auth_post_data)
        cookies = copy_cookies(self.__cookies)
        req = requests.Request(
            method='POST', url=self.__service_url, data=post_data, cookies=cookies,
            headers={
                        'Host': self.__url.hostname,
                        'User-Agent': USER_AGENT,
                        'Content-type': 'application/json'
            }
        )
        http_response = self.__conn.send(req.prepare())
        if http_response is None:
            raise JSONRPCException({
                'code': -342, 'message': 'missing HTTP response from server'})
        http_response.raise_for_status()
        next_secret = http_response.headers.get(LBRY_SECRET, False)
        if next_secret:
            self.__api_key.secret = next_secret
            self.__cookies = copy_cookies(http_response.cookies)
        response = http_response.json()
        if response.get('error') is not None:
            raise JSONRPCException(response['error'])
        elif 'result' not in response:
            raise JSONRPCException({
                'code': -343, 'message': 'missing JSON-RPC result'})
        else:
            return response['result']

    @classmethod
    def config(cls, key_name=None, key=None, pw_path=None, timeout=HTTP_TIMEOUT, connection=None, count=0,
               cookies=None, auth=None, url=None, login_url=None):

        api_key_name = key_name or API_KEY_NAME
        pw_path = os.path.join(conf.settings['data_dir'], ".api_keys") if not pw_path else pw_path
        if not key:
            keys = load_api_keys(pw_path)
            api_key = keys.get(api_key_name, False)
        else:
            api_key = APIKey(name=api_key_name, secret=key)
        if login_url is None:
            service_url = "http://%s:%s@%s:%i/%s" % (api_key_name,
                                                     api_key.secret,
                                                     conf.settings['api_host'],
                                                     conf.settings['api_port'],
                                                     conf.settings['API_ADDRESS'])
        else:
            service_url = login_url
        id_count = count

        if auth is None and connection is None and cookies is None and url is None:
            # This is a new client instance, start an authenticated session
            url = urlparse.urlparse(service_url)
            conn = requests.Session()
            req = requests.Request(method='POST',
                                   url=service_url,
                                   headers={'Host': url.hostname,
                                            'User-Agent': USER_AGENT,
                                            'Content-type': 'application/json'},)
            r = req.prepare()
            http_response = conn.send(r)
            cookies = RequestsCookieJar()
            cookies.update(http_response.cookies)
            uid = cookies.get(TWISTED_SESSION)
            api_key = APIKey.new(seed=uid)
        else:
            # This is a client that already has a session, use it
            conn = connection
            if not cookies.get(LBRY_SECRET):
                raise Exception("Missing cookie")
            secret = cookies.get(LBRY_SECRET)
            api_key = APIKey(secret, api_key_name)
        return cls(api_key, timeout, conn, id_count, cookies, url, service_url)


class LBRYAPIClient(object):
    @staticmethod
    def get_client():
        if not conf.settings:
            conf.initialize_settings()
        return AuthAPIClient.config() if conf.settings['use_auth_http'] else \
            JSONRPCProxy.from_url(conf.settings.get_api_connection_string())
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00			`import os`
undo simplejson commit 2018-07-21 20:12:29 +02:00			`import json`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`import urlparse`
			`import requests`
			`from requests.cookies import RequestsCookieJar`
			`import logging`
updates from master, more refactoring -lbrynet.lbrynet_daemon.auth.client.LBRYAPIClient.config will detect if it needs to return the auth/non-auth version 2016-10-26 09:16:33 +02:00			`from jsonrpc.proxy import JSONRPCProxy`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`from lbrynet import conf`
			`from lbrynet.daemon.auth.util import load_api_keys, APIKey, API_KEY_NAME, get_auth_message`
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00
			`log = logging.getLogger(__name__)`
			`USER_AGENT = "AuthServiceProxy/0.1"`
clean up 2016-09-21 09:49:52 +02:00			`TWISTED_SESSION = "TWISTED_SESSION"`
			`LBRY_SECRET = "LBRY_SECRET"`
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00			`HTTP_TIMEOUT = 30`


fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`def copy_cookies(cookies):`
			`result = RequestsCookieJar()`
			`result.update(cookies)`
			`return result`


api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00			`class JSONRPCException(Exception):`
			`def __init__(self, rpc_error):`
			`Exception.__init__(self)`
			`self.error = rpc_error`


updates from master, more refactoring -lbrynet.lbrynet_daemon.auth.client.LBRYAPIClient.config will detect if it needs to return the auth/non-auth version 2016-10-26 09:16:33 +02:00			`class AuthAPIClient(object):`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`def __init__(self, key, timeout, connection, count, cookies, url, login_url):`
clean up 2016-09-21 09:49:52 +02:00			`self.__api_key = key`
			`self.__service_url = login_url`
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00			`self.__id_count = count`
clean up 2016-09-21 09:49:52 +02:00			`self.__url = url`
			`self.__conn = connection`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`self.__cookies = copy_cookies(cookies)`
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00
			`def __getattr__(self, name):`
			`if name.startswith('__') and name.endswith('__'):`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`raise AttributeError(name)`
rename api endpoints 2017-01-03 20:13:01 +01:00
fix positional and keyword args 2018-04-03 18:26:32 +02:00			`def f(args, *kwargs):`
			`return self.call(name, [args, kwargs])`
rename api endpoints 2017-01-03 20:13:01 +01:00
			`return f`

fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`def call(self, method, params=None):`
			`params = params or {}`
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00			`self.__id_count += 1`
rpc works with authentication 2017-01-10 01:31:06 +01:00			`pre_auth_post_data = {`
restore http error codes, add some color 2017-03-24 22:18:17 +01:00			`'version': '2',`
rename api endpoints 2017-01-03 20:13:01 +01:00			`'method': method,`
nicer error output 2017-01-31 00:46:06 +01:00			`'params': params,`
rename api endpoints 2017-01-03 20:13:01 +01:00			`'id': self.__id_count`
			`}`
rpc works with authentication 2017-01-10 01:31:06 +01:00			`to_auth = get_auth_message(pre_auth_post_data)`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`pre_auth_post_data.update({'hmac': self.__api_key.get_hmac(to_auth)})`
rpc works with authentication 2017-01-10 01:31:06 +01:00			`post_data = json.dumps(pre_auth_post_data)`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`cookies = copy_cookies(self.__cookies)`
			`req = requests.Request(`
			`method='POST', url=self.__service_url, data=post_data, cookies=cookies,`
			`headers={`
			`'Host': self.__url.hostname,`
			`'User-Agent': USER_AGENT,`
			`'Content-type': 'application/json'`
			`}`
			`)`
			`http_response = self.__conn.send(req.prepare())`
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00			`if http_response is None:`
			`raise JSONRPCException({`
			`'code': -342, 'message': 'missing HTTP response from server'})`
			`http_response.raise_for_status()`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`next_secret = http_response.headers.get(LBRY_SECRET, False)`
			`if next_secret:`
			`self.__api_key.secret = next_secret`
			`self.__cookies = copy_cookies(http_response.cookies)`
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00			`response = http_response.json()`
fix cli kwargs 2018-03-29 18:19:41 +02:00			`if response.get('error') is not None:`
api sessions -user starts a httpauthsession with an api key and name -user initializes jsonrpc hmac secret to sha256 of session id -server sends new random hmac secret after each api call -a user without an authenticated session will get a authorization error 2016-09-20 22:58:30 +02:00			`raise JSONRPCException(response['error'])`
			`elif 'result' not in response:`
			`raise JSONRPCException({`
			`'code': -343, 'message': 'missing JSON-RPC result'})`
			`else:`
clean up 2016-09-21 09:49:52 +02:00			`return response['result']`

			`@classmethod`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`def config(cls, key_name=None, key=None, pw_path=None, timeout=HTTP_TIMEOUT, connection=None, count=0,`
			`cookies=None, auth=None, url=None, login_url=None):`
more cleaning up 2016-09-22 03:36:06 +02:00
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`api_key_name = key_name or API_KEY_NAME`
refactor conf.settings 2017-01-17 04:23:20 +01:00			`pw_path = os.path.join(conf.settings['data_dir'], ".api_keys") if not pw_path else pw_path`
clean up 2016-09-21 09:49:52 +02:00			`if not key:`
			`keys = load_api_keys(pw_path)`
			`api_key = keys.get(api_key_name, False)`
			`else:`
			`api_key = APIKey(name=api_key_name, secret=key)`
			`if login_url is None:`
--http-auth flag to use authentication, refactor settings settings will prefer, in order: -defaults -settings in config file -settings given as environmental variables -settings given as command line args 2016-10-19 06:12:44 +02:00			`service_url = "http://%s:%s@%s:%i/%s" % (api_key_name,`
			`api_key.secret,`
refactor conf.settings 2017-01-17 04:23:20 +01:00			`conf.settings['api_host'],`
			`conf.settings['api_port'],`
			`conf.settings['API_ADDRESS'])`
clean up 2016-09-21 09:49:52 +02:00			`else:`
			`service_url = login_url`
			`id_count = count`

			`if auth is None and connection is None and cookies is None and url is None:`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`# This is a new client instance, start an authenticated session`
clean up 2016-09-21 09:49:52 +02:00			`url = urlparse.urlparse(service_url)`
			`conn = requests.Session()`
			`req = requests.Request(method='POST',`
			`url=service_url,`
			`headers={'Host': url.hostname,`
			`'User-Agent': USER_AGENT,`
			`'Content-type': 'application/json'},)`
			`r = req.prepare()`
			`http_response = conn.send(r)`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`cookies = RequestsCookieJar()`
			`cookies.update(http_response.cookies)`
clean up 2016-09-21 09:49:52 +02:00			`uid = cookies.get(TWISTED_SESSION)`
			`api_key = APIKey.new(seed=uid)`
			`else:`
			`# This is a client that already has a session, use it`
			`conn = connection`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`if not cookies.get(LBRY_SECRET):`
			`raise Exception("Missing cookie")`
clean up 2016-09-21 09:49:52 +02:00			`secret = cookies.get(LBRY_SECRET)`
			`api_key = APIKey(secret, api_key_name)`
fix lbrynet-cli when using authentication -add explanation of daemon authentication to AuthJSONRPCServer docstring -remove auth_required decorator, use auth for all api methods if use_authentication is true -fix issues with the command line --http-auth flag to lbrynet-daemon and the use_http_auth setting in the config file 2018-04-01 00:42:57 +02:00			`return cls(api_key, timeout, conn, id_count, cookies, url, service_url)`
updates from master, more refactoring -lbrynet.lbrynet_daemon.auth.client.LBRYAPIClient.config will detect if it needs to return the auth/non-auth version 2016-10-26 09:16:33 +02:00

			`class LBRYAPIClient(object):`
			`@staticmethod`
rename api endpoints 2017-01-03 20:13:01 +01:00			`def get_client():`
initialize settings if necessary when configuring an api client 2017-06-26 03:23:48 +02:00			`if not conf.settings:`
			`conf.initialize_settings()`
refactor conf.settings 2017-01-17 04:23:20 +01:00			`return AuthAPIClient.config() if conf.settings['use_auth_http'] else \`
			`JSONRPCProxy.from_url(conf.settings.get_api_connection_string())`