add admin only decorator

wuttinanhi · Sep 22, 2022 · 4c99dce · 4c99dce
1 parent f24c766
commit 4c99dce
Show file tree

Hide file tree

Showing 4 changed files with 31 additions and 0 deletions.
diff --git a/admin/__init__.py b/admin/__init__.py
diff --git a/admin/service.py b/admin/service.py
@@ -0,0 +1,11 @@
+"""
+    admin service
+"""
+
+import os
+
+
+class AdminService:
+    @staticmethod
+    def is_valid_admin_key(key: str):
+        return key == os.getenv("ADMIN_KEY")
diff --git a/auth/decorator.py b/auth/decorator.py
@@ -4,6 +4,7 @@
 
 from functools import wraps
 
+from admin.service import AdminService
 from flask import request
 from jwt_wrapper.service import JwtService
 from user.service import UserService
@@ -27,3 +28,21 @@ def decorated_function(*args, **kwargs):
         return {"error": "Unauthorized!"}, 401
 
     return decorated_function
+
+
+def admin_only(f):
+    @wraps(f)
+    def decorated_function(*args, **kwargs):
+        auth_header = request.headers.get("X-API-KEY")
+        if auth_header == None:
+            return {"error": "Unauthorized!"}, 401
+
+        admin_key = auth_header
+        check = AdminService.is_valid_admin_key(admin_key)
+
+        if check:
+            return f(*args, **kwargs)
+
+        return {"error": "Unauthorized!"}, 401
+
+    return decorated_function
diff --git a/dev.env b/dev.env
@@ -1,2 +1,3 @@
 ENV=dev
 DATABASE_URI=mysql+mysqldb://appuser:[email protected]:3306/appdb?charset=utf8mb4
+ADMIN_KEY=@Dev12345