cabana/server.py

from flask import Flask, request, redirect
import requests
import json

CLIENT_ID = 'f1e42d14f45491f9ca34'
CLIENT_SECRET = ''

OAUTH_STATES = []
app = Flask(__name__)

@app.route('/auth_state')
def auth_state():
  # save anti csrf secret
  secret = request.args.get('state')
  OAUTH_STATES.append(secret)

@app.route('/callback')
def callback():
  code = request.args.get('code')
  state = request.args.get('state')

  data = {'client_id': CLIENT_ID,
          'client_secret': CLIENT_SECRET,
          'code': code,
          'state': state}

  resp = requests.post('https://github.com/login/oauth/access_token',
                        data=data,
                        headers={'Accept': 'application/json'})
  oauth_resp = resp.json()

  route = json.loads(state)['route']

  return redirect('http://127.0.0.1:3000/?route={}&gh_access_token={}'.format(route, oauth_resp['access_token']))

if __name__ == '__main__':
  app.run(port=1235)
can explorer demo 2017-06-13 18:40:05 -06:00			`from flask import Flask, request, redirect`
			`import requests`
cabana: pass route fullname in github oauth state 2017-06-28 17:21:19 -06:00			`import json`
can explorer demo 2017-06-13 18:40:05 -06:00
cabana: login with github on modals 2017-06-30 22:27:04 -06:00			`CLIENT_ID = 'f1e42d14f45491f9ca34'`
rotated github secret 2019-06-18 14:54:13 -06:00			`CLIENT_SECRET = ''`
can explorer demo 2017-06-13 18:40:05 -06:00
			`OAUTH_STATES = []`
			`app = Flask(__name__)`

			`@app.route('/auth_state')`
			`def auth_state():`
			`# save anti csrf secret`
			`secret = request.args.get('state')`
			`OAUTH_STATES.append(secret)`

			`@app.route('/callback')`
			`def callback():`
			`code = request.args.get('code')`
			`state = request.args.get('state')`
cabana: pass route fullname in github oauth state 2017-06-28 17:21:19 -06:00
can explorer demo 2017-06-13 18:40:05 -06:00			`data = {'client_id': CLIENT_ID,`
			`'client_secret': CLIENT_SECRET,`
cabana: pass route fullname in github oauth state 2017-06-28 17:21:19 -06:00			`'code': code,`
			`'state': state}`
can explorer demo 2017-06-13 18:40:05 -06:00
			`resp = requests.post('https://github.com/login/oauth/access_token',`
			`data=data,`
			`headers={'Accept': 'application/json'})`
			`oauth_resp = resp.json()`

cabana: pass route fullname in github oauth state 2017-06-28 17:21:19 -06:00			`route = json.loads(state)['route']`

cabana: login with github on modals 2017-06-30 22:27:04 -06:00			`return redirect('http://127.0.0.1:3000/?route={}&gh_access_token={}'.format(route, oauth_resp['access_token']))`
can explorer demo 2017-06-13 18:40:05 -06:00
			`if __name__ == '__main__':`
cabana: pass route fullname in github oauth state 2017-06-28 17:21:19 -06:00			`app.run(port=1235)`