-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathtoken_handler.py
42 lines (37 loc) · 1.35 KB
/
token_handler.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
import config
import datetime
import jwt
# Erzeugt ein JWT Token für einen Nutzer
def create_session_jwt_token(username):
return jwt.encode({
'username': username,
'exp': datetime.datetime.utcnow() + datetime.timedelta(minutes=30)
}, config.JWT_SECRET, algorithm='HS256')
def create_email_confirmation_jwt_token(username, email):
return jwt.encode({
'type': 'email_confirmation',
'username': username,
'email': email,
'exp': datetime.datetime.utcnow() + datetime.timedelta(hours=48)
}, config.JWT_SECRET, algorithm='HS256')
def create_password_reset_jwt_token(username):
return jwt.encode({
'type': 'password_reset',
'username': username,
'exp': datetime.datetime.utcnow() + datetime.timedelta(minutes=30)
}, config.JWT_SECRET, algorithm='HS256')
# checks header and returns username if header is valid
# returns None if header is invalid
def get_jwt_user(header):
if header == None:
return None
header_fields = header.split(" ")
if header_fields[0] != "Bearer":
return None
return get_token_user_with_string(header_fields[1])
def get_token_user_with_string(token_str):
try:
jwt_user = jwt.decode(token_str, config.JWT_SECRET, algorithms=['HS256']).get("username")
except jwt.InvalidTokenError:
return None
return jwt_user