Implemented proper authentication for backend

2023-08-10 21:12:55 +03:00 · 2020-07-29 15:52:01 +02:00 · 2020-07-29 15:52:01 +02:00 · 56cc06d905
commit 56cc06d905
parent 5f8e73e6c7
4 changed files with 21 additions and 1 deletions
--- a/maloja/pkginfo.py
+++ b/maloja/pkginfo.py
@ -15,7 +15,7 @@ links = {
 requires = [
 	"bottle>=0.12.16",
 	"waitress>=1.3",
-	"doreah>=1.6.7",
+	"doreah>=1.6.8",
 	"nimrodel>=0.6.3",
 	"setproctitle>=1.1.10",
 	"wand>=0.5.4",
--- a/maloja/data_files/auth/dummy
+++ b/maloja/data_files/auth/dummy
--- a/maloja/globalconf.py
+++ b/maloja/globalconf.py
@ -49,6 +49,12 @@ config(
 	},
 	regular={
 		"autostart": False
 	},
 	auth={
 		"multiuser":False,
 		"cookieprefix":"maloja",
 		"stylesheets":["/style.css"],
 		"dbfile":datadir("auth/auth.ddb")
 	}
 )
--- a/maloja/server.py
+++ b/maloja/server.py
@ -25,6 +25,7 @@ from doreah import settings
 from doreah.logging import log
 from doreah.timing import Clock
 from doreah.pyhp import file as pyhpfile
 from doreah.auth import get_login_page, authapi, authenticated
 # technical
 #from importlib.machinery import SourceFileLoader
 import importlib
@ -55,6 +56,7 @@ STATICFOLDER = pkg_resources.resource_filename(__name__,"static")
 DATAFOLDER = DATA_DIR
 webserver = Bottle()
 authapi.mount(server=webserver)
 pthjoin = os.path.join
@ -158,6 +160,10 @@ def get_css():
 	return css
@webserver.route("/login")
 def login():
 	return get_login_page()
@webserver.route("/<name>.<ext>")
 def static(name,ext):
 	assert ext in ["txt","ico","jpeg","jpg","png","less","js"]
@ -216,7 +222,15 @@ jinjaenv = Environment(
 jinjaenv.globals.update(JINJA_CONTEXT)
@webserver.route("/<name:re:(issues|manual|setup|admin)>")
@authenticated
 def static_html_private(name):
 	return static_html(name)
@webserver.route("/<name>")
 def static_html_public(name):
 	return static_html(name)
 def static_html(name):
 	linkheaders = ["</style.css>; rel=preload; as=style"]
 	keys = remove_identical(FormsDict.decode(request.query))