aboutsummaryrefslogtreecommitdiff
path: root/gn3/auth/authentication/__init__.py
blob: 42ceacb6bb89b9af1e081ba82f5f5c36621c55a0 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
"""Handle authentication requests"""

import bcrypt

def credentials_in_database(cursor, email: str, password: str) -> bool:
    """Check whether credentials are in the database."""
    if len(email.strip()) == 0 or len(password.strip()) == 0:
        return False

    cursor.execute(
        ("SELECT "
         "users.email, user_credentials.password "
         "FROM users LEFT JOIN user_credentials "
         "ON users.user_id = user_credentials.user_id "
         "WHERE users.email = :email"),
        {"email": email})
    results = cursor.fetchall()
    if len(results) == 0:
        return False

    assert len(results) == 1, "Expected one row."
    row = results[0]
    return (email == row[0] and
            bcrypt.checkpw(password.encode("utf-8"), row[1]))