mirror of
https://github.com/GSA/notifications-api.git
synced 2025-12-20 15:31:15 -05:00
51 lines
1.3 KiB
Python
51 lines
1.3 KiB
Python
import uuid
|
|
from datetime import datetime
|
|
|
|
from app import db, encryption
|
|
from app.models import ApiKey
|
|
|
|
from app.dao.dao_utils import (
|
|
transactional,
|
|
version_class
|
|
)
|
|
|
|
|
|
@transactional
|
|
@version_class(ApiKey)
|
|
def save_model_api_key(api_key):
|
|
if not api_key.id:
|
|
api_key.id = uuid.uuid4() # must be set now so version history model can use same id
|
|
api_key.secret = uuid.uuid4()
|
|
db.session.add(api_key)
|
|
|
|
|
|
@transactional
|
|
@version_class(ApiKey)
|
|
def expire_api_key(service_id, api_key_id):
|
|
api_key = ApiKey.query.filter_by(id=api_key_id, service_id=service_id).one()
|
|
api_key.expiry_date = datetime.utcnow()
|
|
db.session.add(api_key)
|
|
|
|
|
|
def get_model_api_keys(service_id, id=None):
|
|
if id:
|
|
return ApiKey.query.filter_by(id=id, service_id=service_id, expiry_date=None).one()
|
|
return ApiKey.query.filter_by(service_id=service_id).all()
|
|
|
|
|
|
def get_unsigned_secrets(service_id):
|
|
"""
|
|
This method can only be exposed to the Authentication of the api calls.
|
|
"""
|
|
api_keys = ApiKey.query.filter_by(service_id=service_id, expiry_date=None).all()
|
|
keys = [x.secret for x in api_keys]
|
|
return keys
|
|
|
|
|
|
def get_unsigned_secret(key_id):
|
|
"""
|
|
This method can only be exposed to the Authentication of the api calls.
|
|
"""
|
|
api_key = ApiKey.query.filter_by(id=key_id, expiry_date=None).one()
|
|
return api_key.secret
|