kopia lustrzana https://dev.funkwhale.audio/funkwhale/funkwhale
60 wiersze
2.2 KiB
Python
60 wiersze
2.2 KiB
Python
from drf_spectacular.contrib.django_oauth_toolkit import OpenApiAuthenticationExtension
|
|
from drf_spectacular.plumbing import build_bearer_security_scheme_object
|
|
|
|
|
|
class CustomOAuthExt(OpenApiAuthenticationExtension):
|
|
target_class = "funkwhale_api.common.authentication.OAuth2Authentication"
|
|
name = "oauth2"
|
|
|
|
def get_security_definition(self, auto_schema):
|
|
from drf_spectacular.settings import spectacular_settings
|
|
from oauth2_provider.scopes import get_scopes_backend
|
|
|
|
flows = {}
|
|
for flow_type in spectacular_settings.OAUTH2_FLOWS:
|
|
flows[flow_type] = {}
|
|
if flow_type in ("implicit", "authorizationCode"):
|
|
flows[flow_type][
|
|
"authorizationUrl"
|
|
] = spectacular_settings.OAUTH2_AUTHORIZATION_URL
|
|
if flow_type in ("password", "clientCredentials", "authorizationCode"):
|
|
flows[flow_type]["tokenUrl"] = spectacular_settings.OAUTH2_TOKEN_URL
|
|
if spectacular_settings.OAUTH2_REFRESH_URL:
|
|
flows[flow_type]["refreshUrl"] = spectacular_settings.OAUTH2_REFRESH_URL
|
|
scope_backend = get_scopes_backend()
|
|
flows[flow_type]["scopes"] = scope_backend.get_all_scopes()
|
|
|
|
return {"type": "oauth2", "flows": flows}
|
|
|
|
|
|
class CustomApplicationTokenExt(OpenApiAuthenticationExtension):
|
|
target_class = "funkwhale_api.common.authentication.ApplicationTokenAuthentication"
|
|
name = "ApplicationToken"
|
|
|
|
def get_security_definition(self, auto_schema):
|
|
return build_bearer_security_scheme_object(
|
|
header_name="Authorization",
|
|
token_prefix="Bearer",
|
|
)
|
|
|
|
|
|
def custom_preprocessing_hook(endpoints):
|
|
filtered = []
|
|
|
|
# your modifications to the list of operations that are exposed in the schema
|
|
|
|
for path, path_regex, method, callback in endpoints:
|
|
if path.startswith("/api/v1/providers"):
|
|
continue
|
|
|
|
if path.startswith("/api/v1/users/users"):
|
|
continue
|
|
|
|
if path.startswith("/api/v1/oauth/authorize"):
|
|
continue
|
|
|
|
if path.startswith("/api/v1") or path.startswith("/api/v2"):
|
|
filtered.append((path, path_regex, method, callback))
|
|
|
|
return filtered
|