Implement bearer token #4

New issue

Open

opened 2024-02-16 13:29:10 +01:00 by Frank · 1 comment

Frank commented 2024-02-16 13:29:10 +01:00

Owner

Copy link

First investigate/understand what is possible in FastAPI without external tools

• read https://fastapi.tiangolo.com/tutorial/security/
  • esp. Simple OAuth2 with Password and Bearer and OAuth2 with Password (and hashing), Bearer with JWT tokens

Next step

• discuss doing it or not
• maybe make a PoC demo project, or add in Amarillo on a branch

First investigate/understand what is possible in FastAPI without external tools - read https://fastapi.tiangolo.com/tutorial/security/ - esp. Simple OAuth2 with Password and Bearer and OAuth2 with Password (and hashing), Bearer with JWT tokens Next step - discuss doing it or not - maybe make a PoC demo project, or add in Amarillo on a branch

Frank self-assigned this 2024-02-16 13:29:10 +01:00

Csaba was assigned by Frank 2024-02-16 13:29:10 +01:00

Frank added this to the Amarillo project 2024-02-16 13:29:10 +01:00

Csaba referenced this issue from a commit 2024-02-28 09:34:22 +01:00

[#4] Passwords in AgencyConf model

Csaba referenced this issue from a commit 2024-02-28 10:53:16 +01:00

[#4] Verify password from agencyconf

Csaba referenced this issue from a commit 2024-02-28 11:04:32 +01:00

[#4] Fix KeyError in authenticate_agency

Csaba referenced this issue from a commit 2024-03-01 14:40:20 +01:00

[#4] Make password and api_key optional in AgencyConf

Csaba referenced this issue from a commit 2024-03-01 16:01:13 +01:00

[#4] load secret key from env variable

Csaba commented 2024-03-06 12:10:15 +01:00

Owner

Copy link

Status: deployed on mitanand.mfdz.de
Backwards compatible with API keys using verify_optional_api_key.
verify_admin and verify_api_key have been moved to services/oauth2.py to avoid circular imports.

Status: deployed on mitanand.mfdz.de Backwards compatible with API keys using verify_optional_api_key. verify_admin and verify_api_key have been moved to services/oauth2.py to avoid circular imports.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dev

fastapi-enhancer

permissions

carpool-events

bearer-token

log-errors

grfs-export

docker-build-test

static-files

jenkins-test

No results found.

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Amarillo

Assignees

Clear assignees

No assignees

Frank

Csaba

2 participants

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: amarillo/amarillo-core#4

No description provided.