Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Implement OAuth2 authorization_code integration #797

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
tiangolo merged 15 commits into from
Jan 8, 2020
Merged

Implement OAuth2 authorization_code integration #797

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
8b12675
Update oauth2.py
kuwv Dec 18, 2019
28d50d3
Update oauth2.py
kuwv Dec 18, 2019
b426c43
Update oauth2.py
kuwv Dec 18, 2019
d472f7a
Update __init__.py
kuwv Dec 20, 2019
4118c03
Update __init__.py
kuwv Dec 20, 2019
8b0b4db
Added authorization code test
kuwv Dec 20, 2019
717d290
Merge branch 'master' of github.com:tiangolo/fastapi
kuwv Dec 22, 2019
04a0fdd
Matching password flow exception
invalid-email-address Dec 22, 2019
1ddf49a
Troubleshooting coverage of authorization code exception
invalid-email-address Dec 22, 2019
865f0cf
Complied with black formatting
kuwv Dec 23, 2019
480f79e
Enabled auto_fail for test coverage
kuwv Dec 23, 2019
fc1f5f4
Reverted auto_error
kuwv Dec 25, 2019
d5b80b1
Fixed coverage need to add docs
kuwv Dec 26, 2019
8895147
Removed redundant test
kuwv Dec 26, 2019
fc28bf3
Reverted pydantic version as requested for bug submittal.
kuwv Jan 2, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions fastapi/security/__init__.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@
)
from .oauth2 import (
OAuth2,
OAuth2AuthorizationCodeBearer,
OAuth2PasswordBearer,
OAuth2PasswordRequestForm,
SecurityScopes,
Expand Down
37 changes: 37 additions & 0 deletions fastapi/security/oauth2.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -163,6 +163,43 @@ async def __call__(self, request: Request) -> Optional[str]:
return param


class OAuth2AuthorizationCodeBearer(OAuth2):
def __init__(
self,
authorizationUrl: str,
tokenUrl: str,
refreshUrl: str = None,
scheme_name: str = None,
scopes: dict = None,
auto_error: bool = True,
):
if not scopes:
scopes = {}
flows = OAuthFlowsModel(
authorizationCode={
"authorizationUrl": authorizationUrl,
"tokenUrl": tokenUrl,
"refreshUrl": refreshUrl,
"scopes": scopes,
}
)
super().__init__(flows=flows, scheme_name=scheme_name, auto_error=auto_error)

async def __call__(self, request: Request) -> Optional[str]:
authorization: str = request.headers.get("Authorization")
scheme, param = get_authorization_scheme_param(authorization)
if not authorization or scheme.lower() != "bearer":
if self.auto_error:
raise HTTPException(
status_code=HTTP_401_UNAUTHORIZED,
detail="Not authenticated",
headers={"WWW-Authenticate": "Bearer"},
)
else:
return None # pragma: nocover
return param


class SecurityScopes:
def __init__(self, scopes: List[str] = None):
self.scopes = scopes or []
Expand Down
77 changes: 77 additions & 0 deletions tests/test_security_oauth2_authorization_code_bearer.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,77 @@
from typing import Optional

from fastapi import FastAPI, Security
from fastapi.security import OAuth2AuthorizationCodeBearer
from starlette.testclient import TestClient

app = FastAPI()

oauth2_scheme = OAuth2AuthorizationCodeBearer(
authorizationUrl="/authorize", tokenUrl="/token", auto_error=True
)


@app.get("/items/")
async def read_items(token: Optional[str] = Security(oauth2_scheme)):
return {"token": token}


client = TestClient(app)

openapi_schema = {
"openapi": "3.0.2",
"info": {"title": "Fast API", "version": "0.1.0"},
"paths": {
"/items/": {
"get": {
"responses": {
"200": {
"description": "Successful Response",
"content": {"application/json": {"schema": {}}},
}
},
"summary": "Read Items",
"operationId": "read_items_items__get",
"security": [{"OAuth2AuthorizationCodeBearer": []}],
}
}
},
"components": {
"securitySchemes": {
"OAuth2AuthorizationCodeBearer": {
"type": "oauth2",
"flows": {
"authorizationCode": {
"authorizationUrl": "/authorize",
"tokenUrl": "/token",
"scopes": {},
}
},
}
}
},
}


def test_openapi_schema():
response = client.get("/openapi.json")
assert response.status_code == 200
assert response.json() == openapi_schema


def test_no_token():
response = client.get("/items")
assert response.status_code == 401
assert response.json() == {"detail": "Not authenticated"}


def test_incorrect_token():
response = client.get("/items", headers={"Authorization": "Non-existent testtoken"})
assert response.status_code == 401
assert response.json() == {"detail": "Not authenticated"}


def test_token():
response = client.get("/items", headers={"Authorization": "Bearer testtoken"})
assert response.status_code == 200
assert response.json() == {"token": "testtoken"}