Module supertokens_python.recipe.session.api.implementation
Expand source code
# Copyright (c) 2021, VRAI Labs and/or its affiliates. All rights reserved.
#
# This software is licensed under the Apache License, Version 2.0 (the
# "License") as published by the Apache Software Foundation.
#
# You may not use this file except in compliance with the License. You may
# obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
from __future__ import annotations
from typing import TYPE_CHECKING, Callable, List, Optional, Union
from supertokens_python.normalised_url_path import NormalisedURLPath
from supertokens_python.recipe.session.interfaces import (
APIInterface,
SessionClaimValidator,
SignOutOkayResponse,
)
from supertokens_python.types import MaybeAwaitable
from supertokens_python.utils import normalise_http_method
if TYPE_CHECKING:
from supertokens_python.recipe.session.interfaces import APIOptions
from ..interfaces import SessionContainer
from typing import Any, Dict
from ..session_request_functions import (
get_session_from_request,
refresh_session_in_request,
)
class APIImplementation(APIInterface):
async def refresh_post(
self, api_options: APIOptions, user_context: Dict[str, Any]
) -> SessionContainer:
return await refresh_session_in_request(
api_options.request,
user_context,
api_options.config,
api_options.recipe_implementation,
)
async def signout_post(
self,
session: SessionContainer,
api_options: APIOptions,
user_context: Dict[str, Any],
) -> SignOutOkayResponse:
await session.revoke_session(user_context)
return SignOutOkayResponse()
async def verify_session(
self,
api_options: APIOptions,
anti_csrf_check: Union[bool, None],
session_required: bool,
check_database: bool,
override_global_claim_validators: Optional[
Callable[
[List[SessionClaimValidator], SessionContainer, Dict[str, Any]],
MaybeAwaitable[List[SessionClaimValidator]],
]
],
user_context: Dict[str, Any],
) -> Union[SessionContainer, None]:
method = normalise_http_method(api_options.request.method())
if method in ("options", "trace"):
if session_required:
raise Exception(f"verify_session cannot be used with {method} method")
return None
incoming_path = NormalisedURLPath(api_options.request.get_path())
refresh_token_path = api_options.config.refresh_token_path
if incoming_path.equals(refresh_token_path) and method == "post":
return await refresh_session_in_request(
api_options.request,
user_context,
api_options.config,
api_options.recipe_implementation,
)
return await get_session_from_request(
api_options.request,
api_options.config,
api_options.recipe_implementation,
session_required=session_required,
anti_csrf_check=anti_csrf_check,
check_database=check_database,
override_global_claim_validators=override_global_claim_validators,
user_context=user_context,
)
Classes
class APIImplementation
-
Helper class that provides a standard way to create an ABC using inheritance.
Expand source code
class APIImplementation(APIInterface): async def refresh_post( self, api_options: APIOptions, user_context: Dict[str, Any] ) -> SessionContainer: return await refresh_session_in_request( api_options.request, user_context, api_options.config, api_options.recipe_implementation, ) async def signout_post( self, session: SessionContainer, api_options: APIOptions, user_context: Dict[str, Any], ) -> SignOutOkayResponse: await session.revoke_session(user_context) return SignOutOkayResponse() async def verify_session( self, api_options: APIOptions, anti_csrf_check: Union[bool, None], session_required: bool, check_database: bool, override_global_claim_validators: Optional[ Callable[ [List[SessionClaimValidator], SessionContainer, Dict[str, Any]], MaybeAwaitable[List[SessionClaimValidator]], ] ], user_context: Dict[str, Any], ) -> Union[SessionContainer, None]: method = normalise_http_method(api_options.request.method()) if method in ("options", "trace"): if session_required: raise Exception(f"verify_session cannot be used with {method} method") return None incoming_path = NormalisedURLPath(api_options.request.get_path()) refresh_token_path = api_options.config.refresh_token_path if incoming_path.equals(refresh_token_path) and method == "post": return await refresh_session_in_request( api_options.request, user_context, api_options.config, api_options.recipe_implementation, ) return await get_session_from_request( api_options.request, api_options.config, api_options.recipe_implementation, session_required=session_required, anti_csrf_check=anti_csrf_check, check_database=check_database, override_global_claim_validators=override_global_claim_validators, user_context=user_context, )
Ancestors
- APIInterface
- abc.ABC
Methods
async def refresh_post(self, api_options: APIOptions, user_context: Dict[str, Any])
async def signout_post(self, session: SessionContainer, api_options: APIOptions, user_context: Dict[str, Any])
async def verify_session(self, api_options: APIOptions, anti_csrf_check: Union[bool, None], session_required: bool, check_database: bool, override_global_claim_validators: Optional[Callable[[List[SessionClaimValidator], SessionContainer, Dict[str, Any]], MaybeAwaitable[List[SessionClaimValidator]]]], user_context: Dict[str, Any])