Startsida Utforska Hjälp
Registrera dig Logga in
yf_fyh
/
bigdataAPI
1
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: 596a1fbc2b
Grenar Taggar
bigdataAPI
/
utils
/
JWTAuthentication_diy.py

JWTAuthentication_diy.py 2.6 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475 
  1. from rest_framework_jwt.serializers import jwt_encode_handler, jwt_decode_handler
    2. 

  2. from rest_framework.authentication import BaseAuthentication
    3. 

  3. from rest_framework.exceptions import AuthenticationFailed
    4. 

  4. import jwt
    5. 

  5. from .AESencipher import aescrypt
    6. 

  6. from .db_utils import MySQLTool
    7. 

  7. from bigdataAPI.settings import SECRET_KEY
    8. 

  8. from django.core.cache import cache as default_cache
    9. 

  9. 

  10. PrAes = aescrypt(SECRET_KEY, 'ECB', '', 'gbk')
    11. 

  11. 

  12. 

  13. def get_token(user):
    14. 

  14.     data = str(user.id) + "," + user.username + "," + str(user.user_modules)
    15. 

  15.     data = PrAes.aesencrypt(data)
    16. 

  16.     payload = {"token": data}
    17. 

  17. 

  18.     token = jwt_encode_handler(payload)
    19. 

  19.     return token
    20. 

  20. 

  21. 

  22. class MyJWTAuthentication(BaseAuthentication):
    23. 

  23.     def authenticate(self, request):
    24. 

  24.         token = request.META.get('HTTP_AUTHORIZATION')
    25. 

  25.         if token:
    26. 

  26.             try:
    27. 

  27.                 payload = jwt_decode_handler(token)
    28. 

  28.                 data = payload["token"]
    29. 

  29.                 if '%2B' in data or " " in data:
    30. 

  30.                     data = str(data).replace("%2B", "+").replace(" ", "+")
    31. 

  31.                 data = PrAes.aesdecrypt(data)
    32. 

  32.                 data_list = data.split(",")
    33. 

  33.                 user = {"uid": data_list[0], "username": data_list[1], "user_modules": data_list[2]}
    34. 

  34.                 return (user, token)
    35. 

  35.             except jwt.ExpiredSignature:
    36. 

  36.                 msg = 'token过期'
    37. 

  37.                 raise AuthenticationFailed(msg)
    38. 

  38.             except jwt.DecodeError:
    39. 

  39.                 msg = 'toke非法'
    40. 

  40.                 raise AuthenticationFailed(msg)
    41. 

  41.             except jwt.InvalidTokenError:
    42. 

  42.                 msg = '用户非法'
    43. 

  43.                 raise AuthenticationFailed(msg)
    44. 

  44.             except Exception as e:
    45. 

  45.                 msg = str(e)
    46. 

  46.                 raise AuthenticationFailed(msg)
    47. 

  47.         raise AuthenticationFailed('token为空')
    48. 

  48. 

  49. 

  50. def API_get_uid(token):
    51. 

  51.     sql = f"select uid from sa_device_user where api_token='{token}';"
    52. 

  52.     m = MySQLTool()
    53. 

  53.     result = m.execute_by_one(sql)
    54. 

  54.     if result:
    55. 

  55.         uid = result['uid']
    56. 

  56.     else:
    57. 

  57.         uid = ""
    58. 

  58.     return uid    
    59. 

  59. 

  60. 

  61. class APIAuthentication(BaseAuthentication):
    62. 

  62.     cache = default_cache
    63. 

  63.     def authenticate(self, request):
    64. 

  64.         token = request.META.get('HTTP_AUTHORIZATION')
    65. 

  65.         if token:
    66. 

  66.             uid_cache = self.cache.get(token)
    67. 

  67.             if uid_cache:
    68. 

  68.                 return (uid_cache,token)
    69. 

  69.             uid_sql = API_get_uid(token)
    70. 

  70.             if uid_sql:
    71. 

  71.                 self.cache.set(token,uid_sql,60*1)
    72. 

  72.                 return (uid_sql,token)
    73. 

  73.             
    74. 

  74.             raise AuthenticationFailed("校验失败")
    75. 

  75.         raise AuthenticationFailed('Authorization为空')
    76.