LLM/DocsGPT
1
0
Fork 0
mirror of https://github.com/arc53/DocsGPT.git synced 2026-01-20 14:00:55 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
e0bdbcbe381ae6864b83f92e8f5e9772028bf374
DocsGPT/application/auth.py
Alex 197e94302b Patches (#2219) 
* feat: implement URL validation to prevent SSRF

* feat: add zip extraction security

* ruff fixes

* fix: standardize error messages across API responses
2025-12-24 18:35:57 +02:00

29 lines
792 B
Python
Raw Blame History

from jose import jwt
from application.core.settings import settings
def handle_auth(request, data={}):
if settings.AUTH_TYPE in ["simple_jwt", "session_jwt"]:
jwt_token = request.headers.get("Authorization")
if not jwt_token:
return None
jwt_token = jwt_token.replace("Bearer ", "")
try:
decoded_token = jwt.decode(
jwt_token,
settings.JWT_SECRET_KEY,
algorithms=["HS256"],
options={"verify_exp": False},
)
return decoded_token
except Exception:
return {
"message": "Authentication error: invalid token",
"error": "invalid_token",
}
else:
return {"sub": "local"}
Reference in New Issue View Git Blame Copy Permalink