2024-02-08 16:13:36 +01:00
|
|
|
import os
|
|
|
|
|
from flask import Flask
|
|
|
|
|
from cfenv import AppEnv
|
2024-02-08 16:37:17 +01:00
|
|
|
from flask import request
|
|
|
|
|
from flask import abort
|
|
|
|
|
|
|
|
|
|
from sap import xssec
|
2024-02-08 16:13:36 +01:00
|
|
|
|
|
|
|
|
app = Flask(__name__)
|
|
|
|
|
env = AppEnv()
|
|
|
|
|
|
|
|
|
|
port = int(os.environ.get('PORT', 3000))
|
2024-02-08 16:37:17 +01:00
|
|
|
uaa_service = env.get_service(name='pyuaa').credentials
|
2024-02-08 16:13:36 +01:00
|
|
|
|
2024-02-08 16:37:17 +01:00
|
|
|
@app.route('/')
|
2024-02-08 16:13:36 +01:00
|
|
|
def hello():
|
2024-02-08 16:37:17 +01:00
|
|
|
if 'authorization' not in request.headers:
|
|
|
|
|
abort(403)
|
|
|
|
|
access_token = request.headers.get('authorization')[7:]
|
|
|
|
|
security_context = xssec.create_security_context(access_token, uaa_service)
|
|
|
|
|
isAuthorized = security_context.check_scope('openid')
|
|
|
|
|
if not isAuthorized:
|
|
|
|
|
abort(403)
|
|
|
|
|
|
2024-02-08 16:13:36 +01:00
|
|
|
return "Hello World!"
|
|
|
|
|
|
|
|
|
|
if __name__ == '__main__':
|
|
|
|
|
app.run(host='0.0.0.0', port=port)
|
