-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathapp.py
153 lines (132 loc) · 4.59 KB
/
app.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
import os
from dotenv import load_dotenv
from flask import Flask, jsonify
from flask_jwt_extended import JWTManager
from flask_migrate import Migrate
# from flask_migrate import Migrate
from flask_smorest import Api
import models # noqa: F401
from blocklist import BLOCKLIST
from db import db
from resources.category import blp as CategoryBlueprint
from resources.product import blp as ProductBlueprint
from resources.store import blp as StoreBlueprint
from resources.user import blp as UserBlueprint
def create_app(db_url=None):
app = Flask(__name__)
load_dotenv()
app.config["PROPAGATE_EXCEPTIONS"] = True
app.config["API_TITLE"] = "On line Shop REST API"
app.config["API_VERSION"] = "v1"
app.config["OPENAPI_VERSION"] = "3.0.3"
app.config["OPENAPI_URL_PREFIX"] = "/"
app.config["OPENAPI_SWAGGER_UI_PATH"] = "/swagger-ui"
app.config["OPENAPI_SWAGGER_UI_VERSION"] = "3.24.2"
app.config["OPENAPI_SWAGGER_UI_URL"] = (
"https://cdnjs.cloudflare.com/ajax/libs/swagger-ui/3.24.2/"
)
app.config["OPENAPI_REDOC_PATH"] = "/redoc"
app.config["OPENAPI_REDOC_URL"] = (
"https://cdn.jsdelivr.net/npm/redoc@next/bundles/redoc.standalone.js"
)
app.config["OPENAPI_RAPIDOC_PATH"] = "/rapidoc"
app.config["OPENAPI_RAPIDOC_URL"] = "https://unpkg.com/rapidoc/dist/rapidoc-min.js"
app.config["OPENAPI_RAPIDOC_CONFIG"] = {"theme": "dark"}
app.config["SQLALCHEMY_DATABASE_URI"] = db_url or os.getenv(
"DATABASE_URL", "sqlite:///data.db"
)
app.config["SQLALCHEMY_TRACK_MODIFICATIONS"] = False
app.config["PROPAGATE_EXCEPTIONS"] = True
# Esquema de seguridad OAuth2
app.config["API_SPEC_OPTIONS"] = {
"components": {
"securitySchemes": {
"OAuth2PasswordBearer": {
"type": "oauth2",
"flows": {
"password": {
"tokenUrl": "/auth/login", # Ruta para obtener el token JWT
"scopes": {},
}
},
}
}
},
"security": [{"OAuth2PasswordBearer": []}],
}
# app.config["API_SPEC_OPTIONS"] = {
# "components": {
# "securitySchemes": {
# "BearerAuth": {
# "type": "http",
# "scheme": "bearer",
# "bearerFormat": "JWT",
# }
# }
# },
# "security": [{"BearerAuth": []}],
# }
db.init_app(app)
migrate = Migrate(app, db) # noqa: F841
api = Api(app)
app.config["JWT_SECRET_KEY"] = os.getenv("JWT_SECRET_KEY")
jwt = JWTManager(app) # noqa: F841
@jwt.token_in_blocklist_loader
def check_if_token_in_blacklist(jwt_headers, jwt_payload):
return jwt_payload["jti"] in BLOCKLIST
@jwt.revoked_token_loader
def revoked_token_callback(jwt_header, jwt_payload):
return (
jsonify(
{"description": "The token has been revoked.", "error": "token_revoked"}
),
401,
)
@jwt.needs_fresh_token_loader
def token_not_fresh_callback(jwt_header, jwt_payload):
return (
jsonify(
{
"description": "The token is not fresh.",
"error": "fresh_token_required",
}
),
401,
)
@jwt.additional_claims_loader
def add_claims_to_jwt(identity):
# Look in the database and see whether the user is an admin
if identity == 1:
return {"is_admin": True}
else:
return {"is_admin": False}
@jwt.expired_token_loader
def expired_token_callback(jwt_header, jwt_payload):
return (
jsonify({"message": "The token has expired.", "error": "token_expired"}),
401,
)
@jwt.invalid_token_loader
def invalid_token_callback(error):
return (
jsonify(
{"message": "Signature verification failed.", "error": "invalid_token"}
),
401,
)
@jwt.unauthorized_loader
def missing_token_callback(error):
return (
jsonify(
{
"description": "Request does not contain an access token.",
"error": "authorization_required",
}
),
401,
)
api.register_blueprint(ProductBlueprint)
api.register_blueprint(StoreBlueprint)
api.register_blueprint(CategoryBlueprint)
api.register_blueprint(UserBlueprint)
return app