API-Manager/apimanager/obp/oauth.py

# -*- coding: utf-8 -*-
"""
OAuth authenticator for OBP app
"""

import logging

from django.conf import settings

from requests.exceptions import ConnectionError
from requests_oauthlib import OAuth1Session
from requests_oauthlib.oauth1_session import TokenRequestDenied

from .authenticator import Authenticator, AuthenticatorError

# Set up logging
LOGGER = logging.getLogger("requests_oauthlib")
LOGGER.setLevel(logging.DEBUG)  # Enable detailed logging for requests-oauthlib

# Enable logging for oauthlib to capture signature creation
logging.getLogger("oauthlib").setLevel(logging.DEBUG)

# Optionally, format logging output
logging.basicConfig(level=logging.DEBUG, format='%(asctime)s %(levelname)s %(message)s')

class OAuthAuthenticator(Authenticator):
    """Implements an OAuth authenticator to the API"""

    token = None
    secret = None

    def __init__(self, token=None, secret=None):
        self.token = token
        self.secret = secret

    def get_authorization_url(self, callback_uri):
        session = OAuth1Session(
            settings.OAUTH_CONSUMER_KEY,
            client_secret=settings.OAUTH_CONSUMER_SECRET,
            callback_uri=callback_uri,
        )
        try:
            url = settings.API_HOST + settings.OAUTH_TOKEN_PATH
            # Fetch the request token, logging the signature details
            response = session.fetch_request_token(url, verify=settings.VERIFY)
        except (ValueError, TokenRequestDenied, ConnectionError) as err:
            raise AuthenticatorError(err)
        else:
            self.token = response.get('oauth_token')
            self.secret = response.get('oauth_token_secret')
        url = settings.API_PORTAL + settings.OAUTH_AUTHORIZATION_PATH
        authorization_url = session.authorization_url(url)
        LOGGER.log(logging.INFO, 'Initial token {}, secret {}'.format(
            self.token, self.secret))
        return authorization_url

    def set_access_token(self, authorization_url):
        session = OAuth1Session(
            settings.OAUTH_CONSUMER_KEY,
            settings.OAUTH_CONSUMER_SECRET,
            resource_owner_key=self.token,
            resource_owner_secret=self.secret,
        )
        session.parse_authorization_response(authorization_url)
        url = settings.API_HOST + settings.OAUTH_ACCESS_TOKEN_PATH
        try:
            response = session.fetch_access_token(url)
        except (TokenRequestDenied, ConnectionError) as err:
            raise AuthenticatorError(err)
        else:
            self.token = response.get('oauth_token')
            self.secret = response.get('oauth_token_secret')
        LOGGER.log(logging.INFO, 'Updated token {}, secret {}'.format(
            self.token, self.secret))

    def get_session(self):
        session = OAuth1Session(
            settings.OAUTH_CONSUMER_KEY,
            client_secret=settings.OAUTH_CONSUMER_SECRET,
            resource_owner_key=self.token,
            resource_owner_secret=self.secret,
        )
        return session
Ported obp app from API Tester #31 Also enables possibility to use DirectLogin and GatewayLogin 2017-10-24 11:19:33 +00:00			`# -- coding: utf-8 --`
			`"""`
			`OAuth authenticator for OBP app`
			`"""`

			`import logging`

			`from django.conf import settings`

			`from requests.exceptions import ConnectionError`
			`from requests_oauthlib import OAuth1Session`
			`from requests_oauthlib.oauth1_session import TokenRequestDenied`

			`from .authenticator import Authenticator, AuthenticatorError`

feature/Enable Logging for oauthlib 2024-10-22 18:22:24 +00:00			`# Set up logging`
			`LOGGER = logging.getLogger("requests_oauthlib")`
			`LOGGER.setLevel(logging.DEBUG) # Enable detailed logging for requests-oauthlib`
Ported obp app from API Tester #31 Also enables possibility to use DirectLogin and GatewayLogin 2017-10-24 11:19:33 +00:00
feature/Enable Logging for oauthlib 2024-10-22 18:22:24 +00:00			`# Enable logging for oauthlib to capture signature creation`
			`logging.getLogger("oauthlib").setLevel(logging.DEBUG)`
Ported obp app from API Tester #31 Also enables possibility to use DirectLogin and GatewayLogin 2017-10-24 11:19:33 +00:00
feature/Enable Logging for oauthlib 2024-10-22 18:22:24 +00:00			`# Optionally, format logging output`
			`logging.basicConfig(level=logging.DEBUG, format='%(asctime)s %(levelname)s %(message)s')`
Ported obp app from API Tester #31 Also enables possibility to use DirectLogin and GatewayLogin 2017-10-24 11:19:33 +00:00
			`class OAuthAuthenticator(Authenticator):`
			`"""Implements an OAuth authenticator to the API"""`

			`token = None`
			`secret = None`

			`def __init__(self, token=None, secret=None):`
			`self.token = token`
			`self.secret = secret`

			`def get_authorization_url(self, callback_uri):`
			`session = OAuth1Session(`
			`settings.OAUTH_CONSUMER_KEY,`
			`client_secret=settings.OAUTH_CONSUMER_SECRET,`
			`callback_uri=callback_uri,`
			`)`
			`try:`
			`url = settings.API_HOST + settings.OAUTH_TOKEN_PATH`
feature/Enable Logging for oauthlib 2024-10-22 18:22:24 +00:00			`# Fetch the request token, logging the signature details`
https://github.com/OpenBankProject/API-Manager/pull/67 user None exception in users\views verify warnings to check if start with https 2019-02-06 12:01:29 +00:00			`response = session.fetch_request_token(url, verify=settings.VERIFY)`
Ported obp app from API Tester #31 Also enables possibility to use DirectLogin and GatewayLogin 2017-10-24 11:19:33 +00:00			`except (ValueError, TokenRequestDenied, ConnectionError) as err:`
			`raise AuthenticatorError(err)`
			`else:`
			`self.token = response.get('oauth_token')`
			`self.secret = response.get('oauth_token_secret')`
bugfix/Fix SSO redirects to the portal instead of apis side 2021-07-23 12:04:56 +00:00			`url = settings.API_PORTAL + settings.OAUTH_AUTHORIZATION_PATH`
Ported obp app from API Tester #31 Also enables possibility to use DirectLogin and GatewayLogin 2017-10-24 11:19:33 +00:00			`authorization_url = session.authorization_url(url)`
			`LOGGER.log(logging.INFO, 'Initial token {}, secret {}'.format(`
			`self.token, self.secret))`
			`return authorization_url`

			`def set_access_token(self, authorization_url):`
			`session = OAuth1Session(`
			`settings.OAUTH_CONSUMER_KEY,`
			`settings.OAUTH_CONSUMER_SECRET,`
			`resource_owner_key=self.token,`
			`resource_owner_secret=self.secret,`
			`)`
			`session.parse_authorization_response(authorization_url)`
			`url = settings.API_HOST + settings.OAUTH_ACCESS_TOKEN_PATH`
			`try:`
			`response = session.fetch_access_token(url)`
			`except (TokenRequestDenied, ConnectionError) as err:`
			`raise AuthenticatorError(err)`
			`else:`
			`self.token = response.get('oauth_token')`
			`self.secret = response.get('oauth_token_secret')`
			`LOGGER.log(logging.INFO, 'Updated token {}, secret {}'.format(`
			`self.token, self.secret))`

			`def get_session(self):`
			`session = OAuth1Session(`
			`settings.OAUTH_CONSUMER_KEY,`
			`client_secret=settings.OAUTH_CONSUMER_SECRET,`
			`resource_owner_key=self.token,`
			`resource_owner_secret=self.secret,`
			`)`
			`return session`