# -*- coding:utf-8 -*- import jwt from flask import current_app from werkzeug.exceptions import Unauthorized class PassportService: def __init__(self): self.sk = current_app.config.get('SECRET_KEY') def issue(self, payload): return jwt.encode(payload, self.sk, algorithm='HS256') def verify(self, token): try: return jwt.decode(token, self.sk, algorithms=['HS256']) except jwt.exceptions.InvalidSignatureError: raise Unauthorized('Invalid token signature.') except jwt.exceptions.DecodeError: raise Unauthorized('Invalid token.') except jwt.exceptions.ExpiredSignatureError: raise Unauthorized('Token has expired.')