stub jwt_required decorator to protect routes
This commit is contained in:
parent
33584d6147
commit
34182fdc23
2 changed files with 16 additions and 0 deletions
13
api/decorators.py
Normal file
13
api/decorators.py
Normal file
|
@ -0,0 +1,13 @@
|
|||
from flask import Blueprint, request, jsonify, session
|
||||
|
||||
def jwt_required():
|
||||
def decorator(func):
|
||||
def authorized(*args, **kwargs):
|
||||
auth_header = request.headers.get('Authorization') or None
|
||||
if auth_header:
|
||||
# check secret on auth header
|
||||
return func(*args, **kwargs)
|
||||
else:
|
||||
abort(401)
|
||||
return authorized
|
||||
return decorator
|
|
@ -1,5 +1,6 @@
|
|||
from models.User import User, user_schema, users_schema
|
||||
from flask import Blueprint, request, json, session, jsonify
|
||||
from ..decorators import jwt_required
|
||||
|
||||
api_users = Blueprint('api_users', __name__, url_prefix='/api')
|
||||
|
||||
|
@ -10,7 +11,9 @@ def api_get_users():
|
|||
response = users_schema.dumps(users)
|
||||
return jsonify(response)
|
||||
|
||||
|
||||
@api_users.route('/users/account', methods=['GET'])
|
||||
@jwt_required()
|
||||
def api_get_user():
|
||||
print('called')
|
||||
auth_header = request.headers.get('Authorization') or None
|
||||
|
|
Loading…
Reference in a new issue