blob: acd0958492ca09a661f22ce6b6ff1f9d6c4ba04a (
about) (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
|
"""Allows users to authenticate directly."""
from flask import current_app as app
from authlib.oauth2.rfc6749 import grants
from gn_auth.auth.db import sqlite3 as db
from gn_auth.auth.errors import NotFoundError
from gn_auth.auth.authentication.users import valid_login, user_by_email
class PasswordGrant(grants.ResourceOwnerPasswordCredentialsGrant):
"""Implement the 'Password' grant."""
TOKEN_ENDPOINT_AUTH_METHODS = ["client_secret_basic", "client_secret_post"]
def authenticate_user(self, username, password):
"Authenticate the user with their username and password."
with db.connection(app.config["AUTH_DB"]) as conn:
try:
user = user_by_email(conn, username)
return user if valid_login(conn, user, password) else None
except NotFoundError as _nfe:
return None
|