Mercurial > prosody-modules
view mod_rest/example/prosody_oauth.py @ 5243:d5dc8edb2695
mod_http_oauth2: Use more compact IDs
UUIDs are nice but so verbose!
The reduction in entropy for the nonce should be fine since the
timestamp is also counts towards this, and it changes every second
(modulo clock shenanigans), so the chances of someone managing to get
the same client_secret by registering with the same information at the
same time as another entity should be negligible.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sat, 11 Mar 2023 22:46:27 +0100 |
| parents | ccce785f53e1 |
| children | 0e5a37f55440 |
line wrap: on
line source
from oauthlib.oauth2 import LegacyApplicationClient from requests_oauthlib import OAuth2Session class ProsodyRestClient(LegacyApplicationClient): pass class ProsodyRestSession(OAuth2Session): def __init__(self, base_url=None, token_url=None, rest_url=None, *args, **kwargs): if base_url and not token_url: token_url = base_url + "/oauth2/token" if base_url and not rest_url: rest_url = base_url + "/rest" self._prosody_rest_url = rest_url self._prosody_token_url = token_url super().__init__(client=ProsodyRestClient(*args, **kwargs)) def fetch_token(self, *args, **kwargs): return super().fetch_token(token_url=self._prosody_token_url, *args, **kwargs) def xmpp(self, json=None, *args, **kwargs): return self.post(self._prosody_rest_url, json=json, *args, **kwargs) if __name__ == "__main__": # Example usage # from prosody_oauth import ProsodyRestSession from getpass import getpass p = ProsodyRestSession(base_url=input("Base URL: "), client_id="app") p.fetch_token(username=input("XMPP Address: "), password=getpass("Password: ")) print(p.xmpp(json={"disco": True, "to": "jabber.org"}).json())