bgallet
/
galicea-odoo-addons-ecosystem
forked from Myceliandre/galicea-odoo-addons-ecosystem
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
19 Commits
8 Branches
0 Tags
636 KiB
 
 
 
Branch: 13.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '13.0'
${ noResults }
galicea-odoo-addons-ecosystem/galicea_openid_connect/api.py

103 lines
3.8 KiB
Raw Permalink Blame History

import json
import logging
from functools import wraps
from odoo import http
import werkzeug
_logger = logging.getLogger(__name__)
class ApiException(Exception):
INVALID_REQUEST = "invalid_request"
def __init__(self, message, code=None):
super(Exception, self).__init__(message)
self.code = code if code else self.INVALID_REQUEST
def resource(path, method, auth="user"):
assert auth in ["user", "client"]
def endpoint_decorator(func):
@http.route(
path, auth="public", type="http", methods=[method, "OPTIONS"], csrf=False
)
@wraps(func)
def func_wrapper(self, req, **query):
cors_headers = {
"Access-Control-Allow-Origin": "*",
"Access-Control-Allow-Headers": "Origin, X-Requested-With, Content-Type, Accept, X-Debug-Mode, Authorization",
"Access-Control-Max-Age": 60 * 60 * 24,
}
if req.httprequest.method == "OPTIONS":
return http.Response(status=200, headers=cors_headers)
try:
access_token = None
if "Authorization" in req.httprequest.headers:
authorization_header = req.httprequest.headers["Authorization"]
if authorization_header[:7] == "Bearer ":
access_token = authorization_header.split(" ", 1)[1]
if access_token is None:
access_token = query.get("access_token")
if not access_token:
raise ApiException(
"access_token param is missing", "invalid_request",
)
if auth == "user":
token = (
req.env["galicea_openid_connect.access_token"]
.sudo()
.search([("token", "=", access_token)])
)
if not token:
raise ApiException(
"access_token is invalid", "invalid_request",
)
req.uid = token.user_id.id
elif auth == "client":
token = (
req.env["galicea_openid_connect.client_access_token"]
.sudo()
.search([("token", "=", access_token)])
)
if not token:
raise ApiException(
"access_token is invalid", "invalid_request",
)
req.uid = token.client_id.system_user_id.id
ctx = req.context.copy()
ctx.update({"client_id": token.client_id.id})
req.context = ctx
response = func(self, req, **query)
return werkzeug.Response(
response=json.dumps(response), headers=cors_headers, status=200
)
except ApiException as e:
error_message = "error: {0}".format(e)
return werkzeug.Response(
response=json.dumps(
{"error": e.code, "error_message": error_message}
),
status=400,
headers=cors_headers,
)
except:
_logger.exception("Unexpected exception while processing API request")
return werkzeug.Response(
response=json.dumps(
{
"error": "server_error",
"error_message": "Unexpected server error",
}
),
headers=cors_headers,
status=500,
)
return func_wrapper
return endpoint_decorator