File: verify_authenticated_util.py

package info (click to toggle)

thunderbird 1%3A140.4.0esr-1

links: PTS, VCS
area: main
in suites: forky, sid
size: 4,609,432 kB
sloc: cpp: 7,672,442; javascript: 5,901,613; ansic: 3,898,954; python: 1,413,343; xml: 653,997; asm: 462,286; java: 180,927; sh: 113,489; makefile: 20,460; perl: 14,288; objc: 13,059; yacc: 4,583; pascal: 3,352; lex: 1,720; ruby: 1,222; exp: 762; sql: 715; awk: 580; php: 436; lisp: 430; sed: 70; csh: 10

file content (16 lines) | stat: -rw-r--r-- 718 bytes

parent folder | download | duplicates (11)

def verify_authenticated(request, response):
    expected_cookie_name_and_value = request.body
    if expected_cookie_name_and_value == b"":
        expected_cookie_name_and_value = b"auth_cookie=abcdef0123"
    (expected_name, expected_value) = expected_cookie_name_and_value.split(b"=")

    headers = []
    # Only CORS requests need the CORS headers
    if request.headers.get(b"origin") != None:
      headers = [(b"Access-Control-Allow-Origin",request.headers.get(b"origin")),
                 (b"Access-Control-Allow-Credentials", b"true")]

    cookie = request.cookies.get(expected_name)
    if cookie == None or cookie.value != expected_value:
        return (401, headers, "")
    return (200, headers, "")