forked from slackapi/python-slack-sdk
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path__init__.py
More file actions
42 lines (35 loc) · 1.54 KB
/
__init__.py
File metadata and controls
42 lines (35 loc) · 1.54 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
from typing import Optional, Dict, Sequence, Union
class OAuthStateUtils:
cookie_name: str
expiration_seconds: int
default_cookie_name: str = "slack-app-oauth-state"
default_expiration_seconds: int = 60 * 10 # 10 minutes
def __init__(
self,
*,
cookie_name: str = default_cookie_name,
expiration_seconds: int = default_expiration_seconds,
):
self.cookie_name = cookie_name
self.expiration_seconds = expiration_seconds
def build_set_cookie_for_new_state(self, state: str) -> str:
return f"{self.cookie_name}={state}; " "Secure; " "HttpOnly; " "Path=/; " f"Max-Age={self.expiration_seconds}"
def build_set_cookie_for_deletion(self) -> str:
return f"{self.cookie_name}=deleted; " "Secure; " "HttpOnly; " "Path=/; " "Expires=Thu, 01 Jan 1970 00:00:00 GMT"
def is_valid_browser(
self,
state: Optional[str],
request_headers: Dict[str, Union[str, Sequence[str]]],
) -> bool:
if state is None or request_headers is None or request_headers.get("cookie", None) is None:
return False
cookies = request_headers["cookie"]
if isinstance(cookies, str):
cookies = [cookies]
for cookie in cookies:
values = cookie.split(";")
for value in values:
# handle quoted cookie values (e.g. due to base64 encoding)
if value.strip().replace('"', "").replace("'", "") == f"{self.cookie_name}={state}":
return True
return False