UnisKB/apps/common/auth/authenticate.py

# coding=utf-8
"""
    @project: qabot
    @Author：虎
    @file： authenticate.py
    @date：2023/9/4 11:16
    @desc:  认证类
"""
import traceback

from django.core import cache
from django.core import signing
from rest_framework.authentication import TokenAuthentication

from common.auth.handle.impl.application_key import ApplicationKey
from common.auth.handle.impl.public_access_token import PublicAccessToken
from common.auth.handle.impl.user_token import UserToken
from common.exception.app_exception import AppAuthenticationFailed, AppEmbedIdentityFailed, AppChatNumOutOfBoundsFailed

token_cache = cache.caches['token_cache']


class AnonymousAuthentication(TokenAuthentication):
    def authenticate(self, request):
        return None, None


handles = [UserToken(), PublicAccessToken(), ApplicationKey()]


class TokenDetails:
    token_details = None
    is_load = False

    def __init__(self, token: str):
        self.token = token

    def get_token_details(self):
        if self.token_details is None and not self.is_load:
            try:
                self.token_details = signing.loads(self.token)
            except Exception as e:
                self.is_load = True
        return self.token_details


class TokenAuth(TokenAuthentication):
    # 重新 authenticate 方法，自定义认证规则
    def authenticate(self, request):
        auth = request.META.get('HTTP_AUTHORIZATION', None
                                )
        # 未认证
        if auth is None:
            raise AppAuthenticationFailed(1003, '未登录,请先登录')
        try:
            token_details = TokenDetails(auth)
            for handle in handles:
                if handle.support(request, auth, token_details.get_token_details):
                    return handle.handle(request, auth, token_details.get_token_details)
            raise AppAuthenticationFailed(1002, "身份验证信息不正确！非法用户")
        except Exception as e:
            traceback.format_exc()
            if isinstance(e, AppEmbedIdentityFailed) or isinstance(e, AppChatNumOutOfBoundsFailed):
                raise e
            raise AppAuthenticationFailed(1002, "身份验证信息不正确！非法用户")
-												feat(init): 初始化项目

											
										
										
											2023-09-15 09:40:35 +00:00
+								# coding=utf-8
 								"""
 								    @project: qabot
 								    @Author：虎
 								    @file： authenticate.py
 								    @date：2023/9/4 11:16
 								    @desc:  认证类
 								"""
-												feat: 添加嵌入访问限制,白名单

											
										
										
											2024-03-13 08:07:13 +00:00
+								import traceback
-												feat(init): 初始化项目

											
										
										
											2023-09-15 09:40:35 +00:00
 								from django.core import cache
 								from django.core import signing
 								from rest_framework.authentication import TokenAuthentication
-												feat: 权限限制,团队设置接口,数据集接口

											
										
										
											2023-10-09 11:03:41 +00:00
-												feat: 客户端不使用cookie存储改为localstore,优化认证代码

											
										
										
											2024-03-13 21:43:01 +00:00
+								from common.auth.handle.impl.application_key import ApplicationKey
 								from common.auth.handle.impl.public_access_token import PublicAccessToken
 								from common.auth.handle.impl.user_token import UserToken
-												feat: 添加嵌入访问限制,白名单

											
										
										
											2024-03-13 08:07:13 +00:00
+								from common.exception.app_exception import AppAuthenticationFailed, AppEmbedIdentityFailed, AppChatNumOutOfBoundsFailed
-												feat(init): 初始化项目

											
										
										
											2023-09-15 09:40:35 +00:00
 								token_cache = cache.caches['token_cache']
 								class AnonymousAuthentication(TokenAuthentication):
 								    def authenticate(self, request):
 								        return None, None
-												feat: 客户端不使用cookie存储改为localstore,优化认证代码

											
										
										
											2024-03-13 21:43:01 +00:00
+								handles = [UserToken(), PublicAccessToken(), ApplicationKey()]
 								class TokenDetails:
 								    token_details = None
 								    is_load = False
 								    def __init__(self, token: str):
 								        self.token = token
 								    def get_token_details(self):
 								        if self.token_details is None and not self.is_load:
 								            try:
 								                self.token_details = signing.loads(self.token)
 								            except Exception as e:
 								                self.is_load = True
 								        return self.token_details
-												feat(init): 初始化项目

											
										
										
											2023-09-15 09:40:35 +00:00
+								class TokenAuth(TokenAuthentication):
 								    # 重新 authenticate 方法，自定义认证规则
 								    def authenticate(self, request):
 								        auth = request.META.get('HTTP_AUTHORIZATION', None
 								                                )
 								        # 未认证
 								        if auth is None:
 								            raise AppAuthenticationFailed(1003, '未登录,请先登录')
 								        try:
-												feat: 客户端不使用cookie存储改为localstore,优化认证代码

											
										
										
											2024-03-13 21:43:01 +00:00
+								            token_details = TokenDetails(auth)
 								            for handle in handles:
 								                if handle.support(request, auth, token_details.get_token_details):
 								                    return handle.handle(request, auth, token_details.get_token_details)
 								            raise AppAuthenticationFailed(1002, "身份验证信息不正确！非法用户")
-												feat(init): 初始化项目

											
										
										
											2023-09-15 09:40:35 +00:00
+								        except Exception as e:
-												feat: 添加嵌入访问限制,白名单

											
										
										
											2024-03-13 08:07:13 +00:00
+								            traceback.format_exc()
 								            if isinstance(e, AppEmbedIdentityFailed) or isinstance(e, AppChatNumOutOfBoundsFailed):
 								                raise e
-												feat(init): 初始化项目

											
										
										
											2023-09-15 09:40:35 +00:00
+								            raise AppAuthenticationFailed(1002, "身份验证信息不正确！非法用户")