2016-09-20 16:58:30 -04:00
|
|
|
import logging
|
2016-09-21 03:49:52 -04:00
|
|
|
from zope.interface import implementer
|
2016-09-20 16:58:30 -04:00
|
|
|
from twisted.cred import portal, checkers, credentials, error as cred_error
|
|
|
|
from twisted.internet import defer
|
|
|
|
from twisted.web import resource
|
2017-06-25 21:04:33 -04:00
|
|
|
from lbrynet.daemon.auth.util import load_api_keys
|
2016-09-20 16:58:30 -04:00
|
|
|
|
|
|
|
log = logging.getLogger(__name__)
|
|
|
|
|
|
|
|
|
|
|
|
@implementer(portal.IRealm)
|
2016-09-21 03:49:52 -04:00
|
|
|
class HttpPasswordRealm(object):
|
2016-09-20 16:58:30 -04:00
|
|
|
def __init__(self, resource):
|
|
|
|
self.resource = resource
|
|
|
|
|
|
|
|
def requestAvatar(self, avatarId, mind, *interfaces):
|
2016-09-21 21:36:06 -04:00
|
|
|
log.debug("Processing request for %s", avatarId)
|
2016-09-20 16:58:30 -04:00
|
|
|
if resource.IResource in interfaces:
|
|
|
|
return (resource.IResource, self.resource, lambda: None)
|
|
|
|
raise NotImplementedError()
|
|
|
|
|
|
|
|
|
2016-09-21 03:49:52 -04:00
|
|
|
@implementer(checkers.ICredentialsChecker)
|
|
|
|
class PasswordChecker(object):
|
2016-09-20 16:58:30 -04:00
|
|
|
credentialInterfaces = (credentials.IUsernamePassword,)
|
|
|
|
|
2016-09-21 03:49:52 -04:00
|
|
|
def __init__(self, passwords):
|
|
|
|
self.passwords = passwords
|
|
|
|
|
|
|
|
@classmethod
|
|
|
|
def load_file(cls, key_path):
|
|
|
|
keys = load_api_keys(key_path)
|
|
|
|
return cls.load(keys)
|
|
|
|
|
|
|
|
@classmethod
|
|
|
|
def load(cls, password_dict):
|
|
|
|
passwords = {key: password_dict[key].secret for key in password_dict}
|
2018-03-31 18:42:57 -04:00
|
|
|
log.info("Loaded %i api key(s)", len(passwords))
|
2016-09-21 03:49:52 -04:00
|
|
|
return cls(passwords)
|
2016-09-20 16:58:30 -04:00
|
|
|
|
|
|
|
def requestAvatarId(self, creds):
|
|
|
|
if creds.username in self.passwords:
|
|
|
|
pw = self.passwords.get(creds.username)
|
|
|
|
pw_match = creds.checkPassword(pw)
|
2016-09-21 03:49:52 -04:00
|
|
|
if pw_match:
|
2016-09-20 16:58:30 -04:00
|
|
|
return defer.succeed(creds.username)
|
|
|
|
log.warning('Incorrect username or password')
|
|
|
|
return defer.fail(cred_error.UnauthorizedLogin('Incorrect username or password'))
|