lanterno/beats - Change L3L2ES3MCB63PC2N2AWUIRKQA53C43IXGMBTT5GCDHLY2IU7SE3QC

feat: implement access token authentication on the API

Created by Ahmed on March 31, 2021

L3L2ES3MCB63PC2N2AWUIRKQA53C43IXGMBTT5GCDHLY2IU7SE3QC

Dependencies

In channels

main

Change contents

Replacement in src/server.py at line 6 [7.22]
∅:D[5.39] → [6.18:46]
∅:D[8.49] → [6.18:46]
∅:D[9.61] → [6.18:46]
B:BD[10.4] → [6.18:46]
```
from fastapi import FastAPI
```
[5.39]
[2.3]
```
from fastapi import FastAPI, Request, status
```
Insertion in src/server.py at line 8 [7.22]
[2.54]
[7.51]
```
from starlette.responses import JSONResponse
```
Insertion in src/server.py at line 13 [7.22]
[4.520]
[11.255]
```
from beats.settings import settings
```

Insertion in src/server.py at line 21 [7.22]

[2.120]

    "https://lifepete.com",
    "http://lifepete.com"

Insertion in src/server.py at line 33 [7.22]

[12.98]

[10.47]


@app.middleware("http")
async def authenticate(request: Request, call_next):
    logger.error(request.method)
    PROTECTED_METHODS = ["POST", "PUT", "PATCH"]
    if request.method in PROTECTED_METHODS and "X-API-Token" not in request.headers:
        return JSONResponse(
            content={"error": "Header X-API-Token is required for all POST actions"},
            status_code=status.HTTP_401_UNAUTHORIZED
        )
    if request.method in PROTECTED_METHODS and request.headers["X-API-Token"] != settings.access_token:
        return JSONResponse(
            content={"error": "your X-API-Token is not valid"},
            status_code=status.HTTP_401_UNAUTHORIZED
        )
    response = await call_next(request)
    return response

Insertion in src/beats/settings.py at line 7 [13.2]

[3.62]

[13.303]

    access_token: str = Field(default="secret", env="ACCESS_TOKEN")

feat: implement access token authentication on the API

Dependencies

In channels

Change contents

Replacement in src/server.py at line 6 [7.22]

Insertion in src/server.py at line 8 [7.22]

Insertion in src/server.py at line 13 [7.22]

Insertion in src/server.py at line 21 [7.22]

Insertion in src/server.py at line 33 [7.22]

Insertion in src/beats/settings.py at line 7 [13.2]