-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathpwdless.py
52 lines (47 loc) · 1.9 KB
/
pwdless.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
import jwt
import string, random, time, smtplib, base64
import config as cfg # Config file
def generateCode(email):
metadataDict = {}
cfg.tokenMetaData['jti'] = oneTimeNonce()
cfg.tokenMetaData['issuedFor'] = email
jwtToken = jwt.encode(cfg.tokenMetaData, cfg.jwtSecret , algorithm='HS256')
return cfg.baseURL + base64.b64encode(jwtToken)
def sendEmail(code):
try:
tokenMetaData = jwt.decode(trimToken(code), cfg.jwtSecret , algorithms=['HS256'])
recipientEmailAddress = tokenMetaData['issuedFor']
if cfg.emailMetaData:
message = 'Subject: {}\n\n{}'.format(cfg.emailMetaData["subject"], cfg.emailMetaData["text"] + str(code))
server = smtplib.SMTP(cfg.emailMetaData["smtp-server"],cfg.emailMetaData["port"])
server.ehlo()
server.starttls()
server.login(cfg.emailMetaData["username"], cfg.emailMetaData["password"])
server.sendmail(cfg.emailMetaData["username"], recipientEmailAddress, message)
server.close()
return True
except Exception as e:
print "Failed to send email. Error ==> " + str(e)
return False
def validateCode(returnToken,returnEmail=""):
try:
tokenMetaData = jwt.decode(trimToken(returnToken), cfg.jwtSecret , algorithms=['HS256'])
# Validate JWT
if tokenMetaData["exp"] < int(time.time()):
print "Failed to validate returning token. Error ==> Token Expired"
return False
elif returnEmail != "":
if tokenMetaData["issuedFor"] != returnEmail:
print "Failed to validate returning token. Error ==> Code not associated with email address specified"
return False
return True
else:
return True
except Exception as e:
print "Failed to validate returning token. Error ==> " + str(e)
return False
def oneTimeNonce(size=16, chars=string.ascii_uppercase + string.digits):
return ''.join(random.choice(chars) for _ in range(size))
def trimToken(code):
returnTokenWithoutURL = code.replace(cfg.baseURL,"")
return base64.b64decode(returnTokenWithoutURL)