louplus 第6周挑战示例代码

aiden0z · aiden0z · commit d711683b2811 · 2017-10-31T14:14:32.000+08:00
diff --git a/19-fix-auth/README.md b/19-fix-auth/README.md
@@ -0,0 +1 @@
+本挑战的参考代码需要配合 rmon 项目的完整项目代码工作, rmon 项目完整代码可以在 楼+课程中找到下载地址。
diff --git a/19-fix-auth/auth.py b/19-fix-auth/auth.py
@@ -0,0 +1,43 @@
+""" rmon.views.auth
+
+实现用户认证登录功能
+"""
+
+from datetime import datetime
+from flask import request
+
+from rmon.models import User
+from rmon.common.errors import AuthenticationError
+from rmon.common.rest import RestView
+
+
+
+class AuthView(RestView):
+    """认证视图控制器
+    """
+
+    def post(self):
+        """登录认证用户
+
+        用户可以使用昵称或者邮箱进行登录，登录成功后返回用于后续认证的 token
+        """
+
+        data = request.get_json()
+        if data is None:
+            raise AuthenticationError(403, 'user name or password required')
+
+        name = data.get('name')
+        password = data.get('password')
+
+        if not name or not password:
+            raise AuthenticationError(403, 'user name or password required')
+
+        # FIXME 只有管理员用户允许登录管理后台
+        user = User.authenticate(name, password)
+        if not user.is_admin:
+            raise AuthenticationError(403, 'user name or password required')
+
+        user.login_at = datetime.utcnow()
+        user.save()
+        return {'ok': True, 'token': user.generate_token()}
+
diff --git a/20-wx-message-handler/ip_handler.py b/20-wx-message-handler/ip_handler.py
@@ -0,0 +1,42 @@
+import re
+import os
+from wechatpy.messages import TextMessage
+from wechatpy import create_reply
+from qqwry import QQwry
+
+class CommandHandler:
+    command = ''
+
+    def check_match(self, message):
+        """检查消息是否匹配命令模式
+        """
+        if not isinstance(message, TextMessage):
+            return False
+        if not message.content.strip().lower().startswith(self.command):
+            return False
+        return True
+
+
+class IPLocationHandler(CommandHandler):
+    command = 'ip'
+
+    def __init__(self):
+        file = os.environ.get('QQWRY_DAT', 'qqwry.dat')
+        self.q = QQwry()
+        self.q.load_file(file)
+
+    def handle(self, message):
+        if not self.check_match(message):
+            return
+        parts = message.content.strip().split()
+        if len(parts) == 1 or len(parts) > 2:
+            return create_reply('IP地址无效', message)
+        ip = parts[1]
+        pattern = r'^\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}$'
+        if not re.match(pattern, ip):
+            return create_reply('IP地址无效', message)
+        result = self.q.lookup(ip)
+        if result is None:
+            return create_reply('未找到', message)
+        else:
+            return create_reply(result[0], message)
diff --git a/21-refresh-token/README.md b/21-refresh-token/README.md
@@ -0,0 +1 @@
+本挑战的参考代码需要配合 rmon 项目的完整项目代码工作, rmon 项目完整代码可以在 楼+课程中找到下载地址。
diff --git a/21-refresh-token/auth.py b/21-refresh-token/auth.py
@@ -0,0 +1,52 @@
+""" rmon.views.auth
+
+实现用户认证登录功能
+"""
+
+from datetime import datetime
+from flask import request, g
+
+from rmon.models import User
+from rmon.common.errors import AuthenticationError
+from rmon.common.rest import RestView
+
+from .decorators import TokenAuthenticate
+
+
+class AuthView(RestView):
+    """认证视图控制器
+    """
+
+    def post(self):
+        """登录认证用户
+
+        用户可以使用昵称或者邮箱进行登录，登录成功后返回用于后续认证的 token
+        """
+
+        # FIXME 没有处理 data 为 None 的情况
+        data = request.get_json()
+        if data is None:
+            raise AuthenticationError(403, 'user name or password required')
+
+        name = data.get('name')
+        password = data.get('password')
+
+        if not name or not password:
+            raise AuthenticationError(403, 'user name or password required')
+
+        # FIXME 只有管理员用户允许登录管理后台
+        user = User.authenticate(name, password)
+        if not user.is_admin:
+            raise AuthenticationError(403, 'user name or password required')
+
+        user.login_at = datetime.utcnow()
+        user.save()
+        return {'ok': True, 'token': user.generate_token()}
+
+
+class RefreshTokenView(RestView):
+
+    method_decorators = (TokenAuthenticate(admin=False, verify_exp=False), )
+
+    def get(self):
+        return {'ok': True, 'token': g.user.generate_token()}
diff --git a/21-refresh-token/decorators.py b/21-refresh-token/decorators.py
@@ -0,0 +1,91 @@
+""" rmon.views.decorators
+
+该模块实现了视图控制器装饰器
+"""
+
+from functools import wraps
+from flask import g, request
+
+from rmon.common.errors import RestError, AuthenticationError
+from rmon.models import User
+
+
+class ObjectMustBeExist:
+    """该装饰器确保操作的对象必须存在
+    """
+
+    def __init__(self, object_class):
+        """
+        Args:
+            object_class (class): 数据库对象
+        """
+
+        self.object_class = object_class
+
+    def __call__(self, func):
+        """装饰器实现
+        """
+        @wraps(func)
+        def wrapper(*args, **kwargs):
+            """
+            Args:
+                object_id (int): SQLAlchemy object id
+            """
+
+            object_id = kwargs.get('object_id')
+            if object_id is None:
+                raise RestError(404, 'object not exist')
+
+            obj = self.object_class.query.get(object_id)
+            if obj is None:
+                raise RestError(404, 'object not exist')
+
+            g.instance = obj
+            return func(*args, **kwargs)
+
+        return wrapper
+
+
+class TokenAuthenticate:
+    """通过 jwt 认证用户
+
+    验证 HTTP Authorization 头所包含的 token
+    """
+
+    def __init__(self, admin=True, verify_exp=True):
+        """
+        Args:
+            admin(bool): 是否需要验证管理员权限
+        """
+        self.admin = admin
+        self.verify_exp = verify_exp
+
+    def __call__(self, func):
+        """装饰器实现
+        """
+        @wraps(func)
+        def wrapper(*args, **kwargs):
+
+            pack = request.headers.get('Authorization', None)
+            if pack is None:
+                raise AuthenticationError(401, 'token not found')
+            parts = pack.split()
+            # Authorization 头部值必须为 'jwt <token_value>' 这种形式
+            if parts[0].lower() != 'jwt':
+                raise AuthenticationError(401, 'invalid token header')
+            elif len(parts) == 1:
+                raise AuthenticationError(401, 'token missing')
+            elif len(parts) > 2:
+                raise AuthenticationError(401, 'invalid token')
+            token = parts[1]
+            user = User.verify_token(token, verify_exp=self.verify_exp)
+
+            # 如果需要验证是否是管理员
+            if self.admin and not user.is_admin:
+                raise AuthenticationError(403, 'no permission')
+
+            # 将当前用户存入到 g 对象中
+            g.user = user
+            return func(*args, **kwargs)
+        return wrapper
+

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+本挑战的参考代码需要配合 rmon 项目的完整项目代码工作, rmon 项目完整代码可以在楼+课程中找到下载地址。`