ReVanced/revanced-polling-api
1
0
Fork 0
mirror of https://github.com/revanced/revanced-polling-api.git synced 2025-05-02 15:44:33 +02:00
Code Issues Packages Projects Releases Wiki Activity

refactor(auth): use hmac.compare_digest

Browse Source
This commit is contained in:
Alexandre Teles 2022-12-29 02:36:52 -03:00
parent 40d51afd1f
commit c8e203f740
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
app/routers/auth.py
View File

@ -1,4 +1,5 @@
import os import os
import hmac
from fastapi_paseto_auth import AuthPASETO from fastapi_paseto_auth import AuthPASETO
from fastapi import APIRouter, Request, Response, Depends, status, HTTPException, Header from fastapi import APIRouter, Request, Response, Depends, status, HTTPException, Header
from app.dependencies import load_config from app.dependencies import load_config
@ -22,7 +23,11 @@ async def auth(request: Request, response: Response, client: ClientModels.Client
access_token: auth token access_token: auth token
""" """
if client.id == os.environ['CLIENT_ID'] and client.secret == os.environ['CLIENT_SECRET']: if(
hmac.compare_digest(client.id, os.environ['CLIENT_ID']) and
hmac.compare_digest(client.secret, os.environ['CLIENT_SECRET'])
):
authenticated: bool = True authenticated: bool = True
if not authenticated: if not authenticated: