henine
/
wubloader
mirror of https://github.com/ekimekim/wubloader
1
0
Fork 0
Code Issues Releases Wiki Activity

Adding issuer validation.

Browse Source
pull/73/head^2
mg 5 years ago committed by Christopher Usher
parent 96d2566ab2
commit 64824973ba
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File

5
thrimshim/thrimshim/main.py
Unescape Escape View File

@ -43,13 +43,16 @@ def cors(app):
def auth_test():
if flask.request.method == 'POST':
userToken = flask.request.json['token']
# Reference: https://developers.google.com/identity/sign-in/web/backend-auth
try:
# Alternate method, query this endpoint: https://oauth2.googleapis.com/tokeninfo?id_token=XYZ123
idinfo = id_token.verify_oauth2_token(userToken, requests.Request(), None)
if idinfo['iss'] not in ['accounts.google.com', 'https://accounts.google.com']:
raise ValueError('Wrong issuer.')
# ID token is valid. Get the user's Google Account ID from the decoded token.
# userid = idinfo['sub']
userEmail = idinfo['email']
return json.dumps(userEmail)

Write Preview
Loading…
Cancel
Save