stub jwt_required decorator to protect routes
This commit is contained in:
parent
33584d6147
commit
34182fdc23
2 changed files with 16 additions and 0 deletions
13
api/decorators.py
Normal file
13
api/decorators.py
Normal file
|
@ -0,0 +1,13 @@
|
||||||
|
from flask import Blueprint, request, jsonify, session
|
||||||
|
|
||||||
|
def jwt_required():
|
||||||
|
def decorator(func):
|
||||||
|
def authorized(*args, **kwargs):
|
||||||
|
auth_header = request.headers.get('Authorization') or None
|
||||||
|
if auth_header:
|
||||||
|
# check secret on auth header
|
||||||
|
return func(*args, **kwargs)
|
||||||
|
else:
|
||||||
|
abort(401)
|
||||||
|
return authorized
|
||||||
|
return decorator
|
|
@ -1,5 +1,6 @@
|
||||||
from models.User import User, user_schema, users_schema
|
from models.User import User, user_schema, users_schema
|
||||||
from flask import Blueprint, request, json, session, jsonify
|
from flask import Blueprint, request, json, session, jsonify
|
||||||
|
from ..decorators import jwt_required
|
||||||
|
|
||||||
api_users = Blueprint('api_users', __name__, url_prefix='/api')
|
api_users = Blueprint('api_users', __name__, url_prefix='/api')
|
||||||
|
|
||||||
|
@ -10,7 +11,9 @@ def api_get_users():
|
||||||
response = users_schema.dumps(users)
|
response = users_schema.dumps(users)
|
||||||
return jsonify(response)
|
return jsonify(response)
|
||||||
|
|
||||||
|
|
||||||
@api_users.route('/users/account', methods=['GET'])
|
@api_users.route('/users/account', methods=['GET'])
|
||||||
|
@jwt_required()
|
||||||
def api_get_user():
|
def api_get_user():
|
||||||
print('called')
|
print('called')
|
||||||
auth_header = request.headers.get('Authorization') or None
|
auth_header = request.headers.get('Authorization') or None
|
||||||
|
|
Loading…
Reference in a new issue