This repository has been archived by the owner on Dec 19, 2021. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 23
/
Copy pathapp.py
76 lines (61 loc) · 2.11 KB
/
app.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
import os
import logging
from flask import Flask
from flask_jwt_extended import JWTManager
from flask_cors import CORS
from flask_mailman import Mail
from models.user import UserModel
from models.revoked_tokens import RevokedTokensModel
from db import db
from ma import ma
from manage import dbsetup
from config.environment import app_environments
from config.routes import Routes
def create_app(env):
app = Flask(__name__)
app.config.from_object(app_environments[env])
app.register_blueprint(dbsetup)
# Define the available routes
Routes.routing(app)
# allow cross-origin (CORS)
CORS(app, origins=app.config["CORS_ORIGINS"])
# set up authorization
app.jwt = JWTManager(app)
# initialize Mail
app.mail = Mail(app)
@app.jwt.user_identity_loader
def user_identity_lookup(user):
return user.id
@app.jwt.user_lookup_loader
def user_lookup_callback(_jwt_header, jwt_data):
user = UserModel.query.filter_by(
id=jwt_data["sub"], archived=False
).one_or_none()
if user and user.type == "user":
return None
else:
return user
@app.jwt.additional_claims_loader
def role_loader(user):
return {
"email": user.email,
"phone": user.phone,
"firstName": user.firstName,
"lastName": user.lastName,
}
# checking if the token's jti (jwt id) is in the set of revoked tokens
# this check is applied globally (to all routes that require jwt)
@app.jwt.token_in_blocklist_loader
def check_if_token_in_blocklist(jwt_header, decrypted_token):
jti = decrypted_token["jti"]
return RevokedTokensModel.is_jti_revoked(jti)
# Format jwt "Missing authorization header" messages
@app.jwt.unauthorized_loader
def format_unauthorized_message(message):
return {app.config["JWT_ERROR_MESSAGE_KEY"]: message.capitalize()}, 401
if os.getenv("DB_LOGGING") == "ON":
logging.basicConfig()
logging.getLogger("sqlalchemy.engine").setLevel(logging.INFO)
db.init_app(app)
ma.init_app(app)
return app