dify/api/libs/passport.py

import jwt
from flask import current_app
from werkzeug.exceptions import Unauthorized


class PassportService:
    def __init__(self):
        self.sk = current_app.config.get('SECRET_KEY')
    
    def issue(self, payload):
        return jwt.encode(payload, self.sk, algorithm='HS256')
    
    def verify(self, token):
        try:
            return jwt.decode(token, self.sk, algorithms=['HS256'])
        except jwt.exceptions.InvalidSignatureError:
            raise Unauthorized('Invalid token signature.')
        except jwt.exceptions.DecodeError:
            raise Unauthorized('Invalid token.')
        except jwt.exceptions.ExpiredSignatureError:
            raise Unauthorized('Token has expired.')
Feature/use jwt in web (#533) Co-authored-by: crazywoola <li.zheng@dentsplysirona.com> Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-07-11 15:21:20 +08:00			`import jwt`
			`from flask import current_app`
improve: introduce isort for linting Python imports (#1983) 2024-01-12 12:34:01 +08:00			`from werkzeug.exceptions import Unauthorized`


Feature/use jwt in web (#533) Co-authored-by: crazywoola <li.zheng@dentsplysirona.com> Co-authored-by: StyleZhang <jasonapring2015@outlook.com> 2023-07-11 15:21:20 +08:00			`class PassportService:`
			`def __init__(self):`
			`self.sk = current_app.config.get('SECRET_KEY')`

			`def issue(self, payload):`
			`return jwt.encode(payload, self.sk, algorithm='HS256')`

			`def verify(self, token):`
			`try:`
			`return jwt.decode(token, self.sk, algorithms=['HS256'])`
			`except jwt.exceptions.InvalidSignatureError:`
			`raise Unauthorized('Invalid token signature.')`
			`except jwt.exceptions.DecodeError:`
			`raise Unauthorized('Invalid token.')`
			`except jwt.exceptions.ExpiredSignatureError:`
			`raise Unauthorized('Token has expired.')`