|
|
# -*- coding: utf-8 -*-
import jsonimport loggingfrom functools import wraps
from odoo import httpimport werkzeug
_logger = logging.getLogger(__name__)
class ApiException(Exception): INVALID_REQUEST = 'invalid_request'
def __init__(self, message, code=None): super(Exception, self).__init__(message) self.code = code if code else self.INVALID_REQUEST
def resource(path, method, auth='user'): assert auth in ['user', 'client']
def endpoint_decorator(func): @http.route(path, auth='public', type='http', methods=[method], csrf=False) @wraps(func) def func_wrapper(self, req, **query): try: access_token = None if 'Authorization' in req.httprequest.headers: authorization_header = req.httprequest.headers['Authorization'] if authorization_header[:7] == 'Bearer ': access_token = authorization_header.split(' ', 1)[1] if access_token is None: access_token = query.get('access_token') if not access_token: raise ApiException( 'access_token param is missing', 'invalid_request', ) if auth == 'user': token = req.env['galicea_openid_connect.access_token'].sudo().search( [('token', '=', access_token)] ) if not token: raise ApiException( 'access_token is invalid', 'invalid_request', ) req.uid = token.user_id.id elif auth == 'client': token = req.env['galicea_openid_connect.client_access_token'].sudo().search( [('token', '=', access_token)] ) if not token: raise ApiException( 'access_token is invalid', 'invalid_request', ) req.uid = token.client_id.system_user_id.id
ctx = req.context.copy() ctx.update({'client_id': token.client_id.id}) req.context = ctx
response = func(self, req, **query) return json.dumps(response) except ApiException as e: return werkzeug.Response( response=json.dumps({'error': e.code, 'error_message': e.message}), status=400, ) except: _logger.exception('Unexpected exception while processing API request') return werkzeug.Response( response=json.dumps({ 'error': 'server_error', 'error_message': 'Unexpected server error', }), status=500, )
return func_wrapper return endpoint_decorator
|
