is_accessible (jwt-token) #98

wnesbv · 2022-03-21T07:25:15Z

wnesbv
Mar 21, 2022

`
For me, the whole authorization authentication boils down to this:

oauth2_scheme = OAuth2PasswordBearerWithCookie(tokenUrl = "/")

def get_user(
    db: Session = Depends(get_db),
    token: str = Depends(oauth2_scheme),
):

    email = auth.decode_token(token)
    user = db.query(User).filter(User.email == email).first()
    if not user:
        raise HTTPException(401, "User doesn't exist")

    return user

def get_admin(
    current_user: UserOut = Depends(get_user)
):
    if current_user.is_admin:
        return current_user


def get_active_user(
    current_user: UserOut = Depends(get_user)
):
    if not current_user.email_verified:
        raise HTTPException(401, "Email not confirmed..!")
    if not current_user.is_active:
        raise HTTPException(401, "This account is not active..!")

    return current_user

But, I can't use it here.

class AuthModelAdmin(ModelAdmin):
    def is_accessible(
        self,
        request: Request,
    ) -> bool:

        return True

And this is my first self-authorization-authentication. Maybe there are solutions..?

`

Answered by wnesbv

Mar 23, 2022

I've decided everything. Two offline authorizations

View full answer

aminalaee · 2022-03-21T08:52:56Z

aminalaee
Mar 21, 2022
Maintainer

Hey,
So if I understand the code correctly, you use get_user to query the user by Token?

Then maybe something like this?

class AuthModelAdmin(ModelAdmin):
    def is_accessible(
        self,
        request: Request,
    ) -> bool:

        token = request.headers.get("Authentication")
        # Calling whatever function to handle the auth
         user = get_user(db, token)
         if not user.admin:
                return False
         return True

Does that make sense?

11 replies

aminalaee Mar 21, 2022
Maintainer

Sorry I don't know what that means.

wnesbv Mar 21, 2022
Author

(Can you check the token to see if it has any values?)
{
"exp": 1647857588,
"iat": 1647856688,
"scope": "access_token",
"sub": "admin@gmail.com"
}

aminalaee Mar 21, 2022
Maintainer

I mean if the request and headers and cookies are present in the is_accessible method then it should be an internal problem, does that make sense? Or can you provide a minimal example maybe as a project or gist to take a look into it?

wnesbv Mar 21, 2022
Author

https://github.com/wnesbv/fastapi-web-html

wnesbv Mar 21, 2022
Author

add sqladmin.zip

wnesbv · 2022-03-23T06:30:14Z

wnesbv
Mar 23, 2022
Author

I've decided everything. Two offline authorizations

1 reply

aminalaee Mar 23, 2022
Maintainer

Sorry, what do you mean?

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

is_accessible (jwt-token) #98

{{title}}

Replies: 2 comments 12 replies

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{title}}

{{title}}

Select a reply

is_accessible (jwt-token) #98

wnesbv Mar 21, 2022

Replies: 2 comments · 12 replies

aminalaee Mar 21, 2022 Maintainer

aminalaee Mar 21, 2022 Maintainer

wnesbv Mar 21, 2022 Author

aminalaee Mar 21, 2022 Maintainer

wnesbv Mar 21, 2022 Author

wnesbv Mar 21, 2022 Author

wnesbv Mar 23, 2022 Author

aminalaee Mar 23, 2022 Maintainer

wnesbv
Mar 21, 2022

Replies: 2 comments 12 replies

aminalaee
Mar 21, 2022
Maintainer

aminalaee Mar 21, 2022
Maintainer

wnesbv Mar 21, 2022
Author

aminalaee Mar 21, 2022
Maintainer

wnesbv Mar 21, 2022
Author

wnesbv Mar 21, 2022
Author

wnesbv
Mar 23, 2022
Author

aminalaee Mar 23, 2022
Maintainer