-
Notifications
You must be signed in to change notification settings - Fork 3.3k
/
Copy pathstart_session.py
22 lines (17 loc) · 1.13 KB
/
start_session.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
import importlib
jwt_helper = importlib.import_module('device-bound-session-credentials.jwt_helper')
session_manager = importlib.import_module('device-bound-session-credentials.session_manager')
def main(request, response):
test_session_manager = session_manager.find_for_request(request)
if test_session_manager.get_registration_sends_challenge():
# Only send back a challenge on the first call.
test_session_manager.reset_registration_sends_challenge()
return (401, [('Sec-Session-Challenge', '"login_challenge_value"')], "")
jwt_header, jwt_payload, verified = jwt_helper.decode_jwt(request.headers.get("Sec-Session-Response").decode('utf-8'))
session_id = test_session_manager.create_new_session()
test_session_manager.set_session_key(session_id, jwt_payload.get('key'))
if not verified or jwt_payload.get("jti") != "login_challenge_value":
return (400, response.headers, "")
if jwt_payload.get("authorization") != test_session_manager.get_authorization_value():
return (400, response.headers, "")
return test_session_manager.get_session_instructions_response(session_id, request)