/src/googlecl/discovery/authentication.py

http://googlecl.googlecode.com/ · Python · 64 lines · 25 code · 6 blank · 33 comment · 4 complexity · 36625ee91479051185b8171b8f48e5ec MD5 · raw file 

    

  1. # Copyright (C) 2010 Google Inc.
    2. 

  2. #
    3. 

  3. # Licensed under the Apache License, Version 2.0 (the "License");
    4. 

  4. # you may not use this file except in compliance with the License.
    5. 

  5. # You may obtain a copy of the License at
    6. 

  6. #
    7. 

  7. #      http://www.apache.org/licenses/LICENSE-2.0
    8. 

  8. #
    9. 

  9. # Unless required by applicable law or agreed to in writing, software
    10. 

  10. # distributed under the License is distributed on an "AS IS" BASIS,
    11. 

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12. 

  12. # See the License for the specific language governing permissions and
    13. 

  13. # limitations under the License.
    14. 

  14. 

  15. 

  16. """Subfunction for the Google command line tool, GoogleCL.
    17. 

    18. 

  18. This function handles the authentication and storage of
    19. 

  19. credentials for the services which use OAuth2
    20. 

  20. """
    21. 

    22. 

  22. import httplib2
    23. 

  23. import logging
    24. 

  24. import pickle
    25. 

  25. import os
    26. 

  26. import googlecl
    27. 

  27. from oauth2client.file import Storage
    28. 

  28. from oauth2client.client import OAuth2WebServerFlow
    29. 

  29. from oauth2client.tools import run
    30. 

  30. 

  31. LOG = logging.getLogger(googlecl.LOGGER_NAME)
    32. 

  32. 

  33. TOKENS_FILENAME_FORMAT = 'dca_%s_%s'
    34. 

  34. 

  35. def authenticate(email, servicename, doc, http, client_id,
    36. 

  36.                  client_secret, force_auth=False):
    37. 

  37.   """ Authenticates an provided http object,
    38. 

  38.   Prompts for user confirmation if necessary, and stores the credentials
    39. 

  39. 

  40.   Args:
    41. 

  41.     email: The email address of the user
    42. 

  42.     servicename: The service which requires authentication
    43. 

  43.     doc: Documentation for the service (for determining scopes)
    44. 

  44.     http: The object being authenticated
    45. 

  45. 

  46.   Returns:
    47. 

  47.     The authorized object
    48. 

  48.   """
    49. 

  49.   tokens_path = googlecl.get_data_path(TOKENS_FILENAME_FORMAT %
    50. 

  50.                                      (email, servicename),
    51. 

  51.                                      create_missing_dir=True)
    52. 

  52.   storage = Storage(tokens_path)
    53. 

  53.   credentials = storage.get()
    54. 

  54.   if credentials is None or credentials.invalid or force_auth:
    55. 

  55.     # Works with google-api-python-client-1.0beta2, but not with
    56. 

  56.     # beta4.  They're working on a way to allow deleting credentials.
    57. 

  57.     #storage.put(None)
    58. 

  58.     desiredcred = ""
    59. 

  59.     for arg in doc['auth']['oauth2']['scopes']:
    60. 

  60.       desiredcred = desiredcred + arg + ' '
    61. 

  61.     FLOW = OAuth2WebServerFlow(client_id, client_secret,
    62. 

  62.       scope=desiredcred, user_agent='discoverycl')
    63. 

  63.     credentials = run(FLOW, storage)
    64. 

  64.   return credentials.authorize(http)
    65.