created oauth url

This commit is contained in:
Shailaja Kumari 2024-02-14 13:30:23 +05:30
parent 5d2cfc1aac
commit af486e5b48
Signed by: shailaja
GPG Key ID: 81C942771BB69898
1 changed files with 27 additions and 34 deletions

View File

@ -2,10 +2,9 @@ import os
from flask import Flask, render_template, request, redirect, abort, url_for, session
import requests
from datetime import datetime
from urllib.parse import quote_plus, urlencode
from urllib.parse import urlencode
def get_env_variable(var_name):
"""Get environment variable or raise an exception."""
value = os.environ.get(var_name)
if not value:
raise ValueError(f"Missing required environment variable: {var_name}")
@ -13,7 +12,7 @@ def get_env_variable(var_name):
app = Flask(__name__)
# Reading environment variables
# Read environment variables outside the route function
client_id = get_env_variable('CLIENT_ID')
client_secret = get_env_variable('CLIENT_SECRET')
redirect_uri = get_env_variable('REDIRECT_URI')
@ -24,50 +23,44 @@ secret_key = get_env_variable('APP_SECRET_KEY')
# Set secret key to enable sessions
app.secret_key = secret_key
# OAuth URL
def home():
"""Home route that either shows user info or initiates OAuth flow."""
if 'token_id' in session:
# Attempt to fetch user info using the stored access token
token_id = session['token_id']
resp = requests.get(f'{database_url}/token/{token_id}')
resp.raise_for_status() # This will raise an exception for HTTP errors
token = resp.json()['token']
if is_logged_in():
token_id = session.get('token_id')
resp = requests.get(f'{database_url}/token/{token_id}')
resp_json = resp.json()
token = resp_json['token']
# Use the access token to fetch user info from GitHub
user_info_resp = requests.get('', headers={'Authorization': f'token {token["access_token"]}'})
user_info = user_info_resp.json()
user_info = requests.get('', headers={
'Authorization': f'Bearer {token.get("access_token")}'
# Prepare user info and token details for rendering
last_synced = datetime.fromtimestamp(token['updated_at']).strftime('%Y-%m-%d %H:%M:%S')
next_sync = datetime.fromtimestamp(token['updated_at'] + token['expires_in']).strftime('%Y-%m-%d %H:%M:%S')
last_synced = datetime.fromtimestamp(token.get('updated_at')).strftime('%Y-%m-%d %H:%M:%S')
next_sync = datetime.fromtimestamp(token.get('updated_at') + token.get('expiration_seconds')).strftime('%Y-%m-%d %H:%M:%S')
return render_template('home.html', user_login=user_info.get('login'), user_email=user_info.get('email'), # for inoreader it's userName and userEmail
readwise_api_key=token.get('readwise_api_key') or '',
last_synced=last_synced, next_sync=next_sync)
return render_template('home.html', user_info=user_info, last_synced=last_synced, next_sync=next_sync)
except Exception as e:
# Handle errors (e.g., token expired) by clearing the session and redirecting to login
session.pop('token_id', None)
return redirect(url_for('home'))
# User not logged in; start OAuth flow
session['csrf_protection_string'] = os.urandom(16).hex() # CSRF protection
# Construct OAuth URL
params = {
# Generate a CSRF protection string
session['csrf_protection_string'] = os.urandom(16).hex()
# Construct the OAuth URL with URL encoding
oauth_params = {
'client_id': client_id,
'redirect_uri': redirect_uri,
'response_type': 'code',
'scope': optional_scopes,
'state': session['csrf_protection_string']
oauth_url = f'{AUTH_URL}?{urlencode(params)}'
# Use urlencode to properly encode the URL parameters
oauth_url = f'{AUTH_URL}?{urlencode(oauth_params)}'
return redirect(oauth_url)
# Pass dynamic variables to the template
return render_template('login.html',oauth_url )