oncall-engine/engine/apps/mobile_app/auth.py

from typing import Optional, Tuple

from rest_framework import exceptions
from rest_framework.authentication import BaseAuthentication, get_authorization_header

from apps.auth_token.exceptions import InvalidToken
from apps.user_management.exceptions import OrganizationDeletedException, OrganizationMovedException
from apps.user_management.models import User

from .models import MobileAppAuthToken, MobileAppVerificationToken


class MobileAppVerificationTokenAuthentication(BaseAuthentication):
    model = MobileAppVerificationToken

    def authenticate(self, request) -> Tuple[User, MobileAppVerificationToken]:
        auth = get_authorization_header(request).decode("utf-8")
        user, auth_token = self.authenticate_credentials(auth)
        return user, auth_token

    def authenticate_credentials(self, token_string: str) -> Tuple[User, MobileAppVerificationToken]:
        try:
            auth_token = self.model.validate_token_string(token_string)
        except InvalidToken:
            raise exceptions.AuthenticationFailed("Invalid token")

        return auth_token.user, auth_token


class MobileAppAuthTokenAuthentication(BaseAuthentication):
    model = MobileAppAuthToken

    def authenticate(self, request) -> Optional[Tuple[User, MobileAppAuthToken]]:
        auth = get_authorization_header(request).decode("utf-8")
        user, auth_token = self.authenticate_credentials(auth)
        if user is None:
            return None
        return user, auth_token

    def authenticate_credentials(self, token_string: str) -> Tuple[Optional[User], Optional[MobileAppAuthToken]]:
        try:
            auth_token = self.model.validate_token_string(token_string)
        except InvalidToken:
            return None, None

        if auth_token.organization.is_moved:
            raise OrganizationMovedException(auth_token.organization)
        if auth_token.organization.deleted_at:
            raise OrganizationDeletedException(auth_token.organization)

        return auth_token.user, auth_token
Mobile app messaging backend (#874) * move mobile notifications to a separate backend, remove critical notification * remove outdated mobile app code * MOBILE_APP_PUSH_NOTIFICATIONS_ENABLED -> FEATURE_MOBILE_APP_INTEGRATION_ENABLED * create error log if no devices are set up * move mobile auth related code to the mobile_app Django app * move mobile auth related code to the mobile_app Django app * move mobile auth related code to the mobile_app Django app * fix typing * add GCMDevice todos * add user connection capabilities * add user connect/disconnect to the messaging backend * move APNS endpoint to mobile_app Django app * restore critical notifications * support hackathon app * tweak migrations so mobile app auth tokens are preserved * reuse notify_by IDs * use mobile app template to render push notification * add GCM/FCM (Android) support * fix unlink user * logger.error -> logger.info 2022-11-23 15:56:43 +00:00			`from typing import Optional, Tuple`

			`from rest_framework import exceptions`
			`from rest_framework.authentication import BaseAuthentication, get_authorization_header`

			`from apps.auth_token.exceptions import InvalidToken`
Add organization moved exception to mobile app auth (#2422) # What this PR does Add organization moved exception to mobile app auth to redirect requests to correct region ## Which issue(s) this PR fixes ## Checklist - [ ] Unit, integration, and e2e (if applicable) tests updated - [ ] Documentation added (or `pr:no public docs` PR label added if not required) - [ ] `CHANGELOG.md` updated (or `pr:no changelog` PR label added if not required) 2023-07-05 08:11:56 +02:00			`from apps.user_management.exceptions import OrganizationDeletedException, OrganizationMovedException`
Mobile app messaging backend (#874) * move mobile notifications to a separate backend, remove critical notification * remove outdated mobile app code * MOBILE_APP_PUSH_NOTIFICATIONS_ENABLED -> FEATURE_MOBILE_APP_INTEGRATION_ENABLED * create error log if no devices are set up * move mobile auth related code to the mobile_app Django app * move mobile auth related code to the mobile_app Django app * move mobile auth related code to the mobile_app Django app * fix typing * add GCMDevice todos * add user connection capabilities * add user connect/disconnect to the messaging backend * move APNS endpoint to mobile_app Django app * restore critical notifications * support hackathon app * tweak migrations so mobile app auth tokens are preserved * reuse notify_by IDs * use mobile app template to render push notification * add GCM/FCM (Android) support * fix unlink user * logger.error -> logger.info 2022-11-23 15:56:43 +00:00			`from apps.user_management.models import User`

			`from .models import MobileAppAuthToken, MobileAppVerificationToken`


			`class MobileAppVerificationTokenAuthentication(BaseAuthentication):`
			`model = MobileAppVerificationToken`

			`def authenticate(self, request) -> Tuple[User, MobileAppVerificationToken]:`
			`auth = get_authorization_header(request).decode("utf-8")`
			`user, auth_token = self.authenticate_credentials(auth)`
			`return user, auth_token`

			`def authenticate_credentials(self, token_string: str) -> Tuple[User, MobileAppVerificationToken]:`
			`try:`
			`auth_token = self.model.validate_token_string(token_string)`
			`except InvalidToken:`
			`raise exceptions.AuthenticationFailed("Invalid token")`

			`return auth_token.user, auth_token`


			`class MobileAppAuthTokenAuthentication(BaseAuthentication):`
			`model = MobileAppAuthToken`

			`def authenticate(self, request) -> Optional[Tuple[User, MobileAppAuthToken]]:`
			`auth = get_authorization_header(request).decode("utf-8")`
			`user, auth_token = self.authenticate_credentials(auth)`
			`if user is None:`
			`return None`
			`return user, auth_token`

			`def authenticate_credentials(self, token_string: str) -> Tuple[Optional[User], Optional[MobileAppAuthToken]]:`
			`try:`
			`auth_token = self.model.validate_token_string(token_string)`
			`except InvalidToken:`
			`return None, None`

Add organization moved exception to mobile app auth (#2422) # What this PR does Add organization moved exception to mobile app auth to redirect requests to correct region ## Which issue(s) this PR fixes ## Checklist - [ ] Unit, integration, and e2e (if applicable) tests updated - [ ] Documentation added (or `pr:no public docs` PR label added if not required) - [ ] `CHANGELOG.md` updated (or `pr:no changelog` PR label added if not required) 2023-07-05 08:11:56 +02:00			`if auth_token.organization.is_moved:`
			`raise OrganizationMovedException(auth_token.organization)`
			`if auth_token.organization.deleted_at:`
			`raise OrganizationDeletedException(auth_token.organization)`

Mobile app messaging backend (#874) * move mobile notifications to a separate backend, remove critical notification * remove outdated mobile app code * MOBILE_APP_PUSH_NOTIFICATIONS_ENABLED -> FEATURE_MOBILE_APP_INTEGRATION_ENABLED * create error log if no devices are set up * move mobile auth related code to the mobile_app Django app * move mobile auth related code to the mobile_app Django app * move mobile auth related code to the mobile_app Django app * fix typing * add GCMDevice todos * add user connection capabilities * add user connect/disconnect to the messaging backend * move APNS endpoint to mobile_app Django app * restore critical notifications * support hackathon app * tweak migrations so mobile app auth tokens are preserved * reuse notify_by IDs * use mobile app template to render push notification * add GCM/FCM (Android) support * fix unlink user * logger.error -> logger.info 2022-11-23 15:56:43 +00:00			`return auth_token.user, auth_token`