mirror/doorman
1
0
Fork 0
mirror of https://github.com/apidoorman/doorman.git synced 2026-04-24 17:48:18 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
46f218e9cf3a588ee2d820180f99cb5c3dfad490
doorman/backend-services/utils/subscription_util.py
T
seniorswe 764645ab93 Code cleanup
2025-09-29 22:20:23 -04:00

60 lines
2.8 KiB
Python
Raw Blame History

"""
The contents of this file are property of Doorman Dev, LLC
Review the Apache License 2.0 for valid authorization of use
See https://github.com/pypeople-dev/doorman for more information
"""
# External imports
from fastapi import HTTPException, Depends, Request
from jose import jwt, JWTError
import logging
# Internal imports
from utils.doorman_cache_util import doorman_cache
from utils.database import subscriptions_collection
from utils.auth_util import SECRET_KEY, ALGORITHM, auth_required
logger = logging.getLogger('doorman.gateway')
async def subscription_required(request: Request):
try:
payload = await auth_required(request)
username = payload.get('sub')
if not username:
raise HTTPException(status_code=401, detail='Invalid token')
full_path = request.url.path
if full_path.startswith('/api/rest/'):
prefix = '/api/rest/'
path = full_path[len(prefix):]
api_and_version = '/'.join(path.split('/')[:2])
elif full_path.startswith('/api/soap/'):
prefix = '/api/soap/'
path = full_path[len(prefix):]
api_and_version = '/'.join(path.split('/')[:2])
elif full_path.startswith('/api/graphql/'):
api_name = full_path.replace('/api/graphql/', '')
api_version = request.headers.get('X-API-Version', 'v1')
api_and_version = f'{api_name}/{api_version}'
elif full_path.startswith('/api/grpc/'):
api_name = full_path.replace('/api/grpc/', '').split('/')[0]
api_version = request.headers.get('X-API-Version', 'v1')
api_and_version = f'{api_name}/{api_version}'
else:
prefix = ''
path = full_path[len(prefix):] if full_path.startswith(prefix) else full_path
api_and_version = '/'.join(path.split('/')[:2])
user_subscriptions = doorman_cache.get_cache('user_subscription_cache', username) or subscriptions_collection.find_one({'username': username})
subscriptions = user_subscriptions.get('apis') if user_subscriptions and 'apis' in user_subscriptions else None
if not subscriptions or api_and_version not in subscriptions:
logger.info(f'User {username} attempted access to {api_and_version}')
raise HTTPException(status_code=403, detail='You are not subscribed to this resource')
except JWTError:
logger.error('Invalid token')
raise HTTPException(status_code=401, detail='Invalid token')
except HTTPException as e:
logger.error(f'Unexpected error: {e}')
raise HTTPException(status_code=e.status_code, detail=e.detail)
except Exception as e:
logger.error(f'Unexpected error: {e}')
raise HTTPException(status_code=500, detail='Internal server error')
return payload
Reference in New Issue View Git Blame Copy Permalink