File: verify_authenticated_util.py

package info (click to toggle)
firefox 149.0-1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 4,767,760 kB
  • sloc: cpp: 7,416,064; javascript: 6,752,859; ansic: 3,774,850; python: 1,250,473; xml: 641,578; asm: 439,191; java: 186,617; sh: 56,634; makefile: 18,856; objc: 13,092; perl: 12,763; pascal: 5,960; yacc: 4,583; cs: 3,846; lex: 1,720; ruby: 1,002; php: 436; lisp: 258; awk: 105; sql: 66; sed: 53; csh: 10; exp: 6
file content (16 lines) | stat: -rw-r--r-- 718 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
 
def verify_authenticated(request, response):
    expected_cookie_name_and_value = request.body
    if expected_cookie_name_and_value == b"":
        expected_cookie_name_and_value = b"auth_cookie=abcdef0123"
    (expected_name, expected_value) = expected_cookie_name_and_value.split(b"=")

    headers = []
    # Only CORS requests need the CORS headers
    if request.headers.get(b"origin") != None:
      headers = [(b"Access-Control-Allow-Origin",request.headers.get(b"origin")),
                 (b"Access-Control-Allow-Credentials", b"true")]

    cookie = request.cookies.get(expected_name)
    if cookie == None or cookie.value != expected_value:
        return (403, headers, "")
    return (200, headers, "")