将对象从服务器拦截器传送到函数中

class AuthInterceptor(grpc.ServerInterceptor): """Authorization Interceptor""" def __init__(self, loader): self._loader = loader def intercept_service(self, continuation, handler_call_details): # Authenticate if we not requesting token. if not handler_call_details.method.endswith('GetToken'): # My Authentication class. auth = EosJWTAuth() # Authenticate using the headers tokens to get the user. user = auth.authenticate( dict(handler_call_details.invocation_metadata))[0] # Do something here to pass the authenticated user to the functions. cont = continuation(handler_call_details) return cont

1条回答

网友

1楼 · 发布于 2024-04-25 12:01:58

这是web服务器的常见需求，向处理程序中添加decorator以显式地设置身份验证/授权需求是一个好主意。它有助于提高可读性，并降低总体复杂性。在

不过，这里有一个解决问题的方法。它使用Python元类自动修饰每个服务程序方法。在

import grpc
import functools
import six

def auth_decorator(func):
    @functools.wraps(func)
    def wrapper(request, context):
        if not func.__name__.endswith('GetToken'):
            auth = FooAuthClass()
            try:
                user = auth.authenticate(
                    dict(context.invocation_metadata)
                )[0]
                request.user = user
            except UserNotFound:
                context.abort(
                    grpc.StatusCode.UNAUTHENTICATED,
                    'Permission denied.',
                )
        return func(request, context)

    return wrapper

class AuthMeta:

    def __new__(self, class_name, bases, namespace):
        for key, value in list(namespace.items()):
            if callable(value):
                namespace[key] = auth_decorator(value)
        return type.__new__(self, class_name, bases, namespace)

class BusinessServer(FooServicer, six.with_metaclass(AuthMeta)):

    def LogicA(self, request, context):
        # request.user accessible
        ...

    def LogicGetToken(self, request, context):
        # request.user not accessible
        ...

相关问题更多 >

编程相关推荐

热门问题

热门文章