Spaces:
Runtime error
Runtime error
File size: 9,120 Bytes
7927df4 b2d7fbf 7927df4 e8cbd34 7927df4 e8cbd34 7927df4 e8cbd34 7927df4 e8cbd34 7927df4 e8cbd34 7927df4 a2a8e2c 7927df4 b2d7fbf 7927df4 b2d7fbf 7927df4 eadf223 7927df4 b2d7fbf 7927df4 b2d7fbf a8352e3 781d8ed a8352e3 781d8ed a8352e3 ad65049 e37a154 ad65049 e37a154 f20e0b4 95a21ea ad65049 0c707fa dc2572f 0c707fa dc2572f 0c707fa a8352e3 7927df4 5517543 7927df4 7cbab12 b2d7fbf 7927df4 02bfc9a |
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 |
import jwt
import yaml
import bcrypt
import sqlite3
import os.path
import streamlit as st
from datetime import datetime, timedelta
import extra_streamlit_components as stx
class Hasher:
def __init__(self, password):
"""Create a new instance of "Hasher".
Parameters
----------
password: str
Plain text password to be hashed.
Returns
-------
str
Plain text password to be hashed.
"""
self.password = password
def hash(self, password):
"""
Parameters
----------
password: str
The plain text password to be hashed.
Returns
-------
str
The hashed password.
"""
return bcrypt.hashpw(password.encode(), bcrypt.gensalt()).decode()
def generate(self):
"""
Returns
-------
str
The hashed password.
"""
return self.hash(self.password)
class Authenticate:
def __init__(self, dbname, tablename, cookie_name, key, cookie_expiry_days=30):
"""Create a new instance of "Authenticate".
Parameters
----------
dbname: str
First name of user from database
dbusername: str
Username of user from database
dbpassword: str
Hashed password from database
cookie_name: str
The name of the JWT cookie stored on the client's browser for passwordless reauthentication.
key: str
The key to be used for hashing the signature of the JWT cookie.
cookie_expiry_days: int
The number of days before the cookiFe expires on the client's browser.
Returns
-------
str
Name of authenticated user.
boolean
The status of authentication, None: no credentials entered, False: incorrect credentials, True: correct credentials.
str
Username of authenticated user.
"""
self.dbname = dbname
self.dbtable = tablename
self.cookie_name = cookie_name
self.key = key
self.cookie_expiry_days = cookie_expiry_days
self.cookie_manager = stx.CookieManager()
if 'name' not in st.session_state:
st.session_state['name'] = None
if 'authentication_status' not in st.session_state:
st.session_state['authentication_status'] = None
if 'username' not in st.session_state:
st.session_state['username'] = None
if 'logout' not in st.session_state:
st.session_state['logout'] = None
def get_path(self):
dir = os.path.dirname(os.path.abspath(__file__))
return os.path.join(dir, self.dbname)
def get_connection(self):
return sqlite3.connect(self.get_path())
def check_connection(self):
try:
self.get_connection().cursor()
return True
except Exception as ex:
return False
def get_cursor(self):
return self.get_connection().cursor()
def check_username(self):
usernames = []
query = f"SELECT username FROM {self.dbtable}"
c = self.get_cursor()
for item in c.execute(query):
usernames.append(item[0])
if self.username in usernames:
return True
else:
return False
def get_hashed_password(self):
query = f'''SELECT hashed_password FROM {self.dbtable} WHERE username = ?'''
c = self.get_cursor()
c.execute(query, (self.username, ))
return c.fetchone()[0]
def token_encode(self):
"""
Returns
-------
str
The JWT cookie for passwordless reauthentication.
"""
return jwt.encode({'name':st.session_state['name'],
'username':st.session_state['username'],
'exp_date':self.exp_date}, self.key, algorithm='HS256')
def token_decode(self):
"""
Returns
-------
str
The decoded JWT cookie for passwordless reauthentication.
"""
try:
return jwt.decode(self.token, self.key, algorithms=['HS256'])
except:
return False
def exp_date(self):
"""
Returns
-------
str
The JWT cookie's expiry timestamp in Unix epoch.
"""
return (datetime.utcnow() + timedelta(days=self.cookie_expiry_days)).timestamp()
def check_pw(self):
"""
Returns
-------
boolean
The validation state for the input password by comparing it to the hashed password on disk.
"""
return bcrypt.checkpw(self.password.encode(), self.get_hashed_password().encode())
def login(self, form_name, location='main'):
"""Create a new instance of "authenticate".
Parameters
----------
form_name: str
The rendered name of the login form.
location: str
The location of the login form i.e. main or sidebar.
Returns
-------
str
Name of authenticated user.
boolean
The status of authentication, None: no credentials entered, False: incorrect credentials, True: correct credentials.
str
Username of authenticated user.
"""
if location not in ['main', 'sidebar']:
raise ValueError("Location must be one of 'main' or 'sidebar'")
if not st.session_state['authentication_status']:
self.token = self.cookie_manager.get(self.cookie_name)
if self.token is not None:
self.token = self.token_decode()
if self.token is not False:
if not st.session_state['logout']:
if self.token['exp_date'] > datetime.utcnow().timestamp():
st.session_state['name'] = self.token['name']
st.session_state['authentication_status'] = True
st.session_state['username'] = self.token['username']
if st.session_state['authentication_status'] != True:
if location == 'main':
login_form = st.form('Login')
elif location == 'sidebar':
login_form = st.sidebar.form('Login')
login_form.subheader(form_name)
self.username = login_form.text_input('Username')
st.session_state['username'] = self.username
self.password = login_form.text_input('Password', type='password')
if login_form.form_submit_button('Login'):
if self.check_username() is not None:
try:
if self.check_pw():
st.session_state['name'] = self.dbname
self.exp_date = self.exp_date()
self.token = self.token_encode()
self.cookie_manager.set(self.cookie_name, self.token,
expires_at=datetime.now() + timedelta(days=self.cookie_expiry_days))
st.session_state['authentication_status'] = True
else:
st.session_state['authentication_status'] = False
except Exception as e:
print(e)
else:
st.session_state['authentication_status'] = False
return st.session_state['name'], st.session_state['authentication_status'], st.session_state['username']
def logout(self, button_name, location='main'):
"""Creates a logout button.
Parameters
----------
button_name: str
The rendered name of the logout button.
location: str
The location of the logout button i.e. main or sidebar.
"""
if location not in ['main', 'sidebar']:
raise ValueError("Location must be one of 'main' or 'sidebar'")
if location == 'main':
if st.button(button_name):
self.cookie_manager.delete(self.cookie_name)
st.session_state['logout'] = True
st.session_state['name'] = None
st.session_state['username'] = None
st.session_state['authentication_status'] = None
elif location == 'sidebar':
if st.sidebar.button(button_name):
self.cookie_manager.delete(self.cookie_name)
st.session_state['logout'] = True
st.session_state['name'] = None
st.session_state['username'] = None
st.session_state['authentication_status'] = None |