Merge pull request auth0-samples#2 from mehreencs87/master

Seed Added

Author: iannyanes

00-Starter-Seed/flask-api/.gitignore

@@ -0,0 +1 @@
+.env

00-Starter-Seed/flask-api/Procfile

@@ -0,0 +1 @@
+web: python server.py

00-Starter-Seed/flask-api/README.md

@@ -0,0 +1,25 @@
+# Auth0 + Python + Flask API Seed
+This is the seed project you need to use if you're going to create a Python + Flask API. You'll mostly use this API either for a SPA or a Mobile app. If you just want to create a Regular Python WebApp, please check [this other seed project](https://github.com/auth0/auth0-python/tree/master/examples/flask-webapp)
+
+This example is deployed at Heroku at http://auth0-python-flaskapi-sample.herokuapp.com/ping
+
+# Running the example
+In order to run the example you need to have `python` and `pip` installed.
+
+You also need to set the client secret and ID of your Auth0 app as enviroment variables with the following names respectively: `AUTH0_CLIENT_SECRET` and `AUTH0_CLIENT_ID`.
+
+For that, if you just create a file named `.env` in the directory and set the values like the following, the app will just work:
+
+```bash
+# .env file
+AUTH0_CLIENT_SECRET=myCoolSecret
+AUTH0_CLIENT_ID=myCoolClientId
+```
+
+Once you've set those 2 enviroment variables:
+
+1. Install the needed dependencies with `pip install -r requirements.txt`
+2. Start the server with `python server.py`
+3. Try calling [http://localhost:3001/ping](http://localhost:3001/ping)
+
+You can then try to do a GET to [http://localhost:3001/secured/ping](http://localhost:3001/secured/ping) which will throw an error if you don't send the JWT in the header.

00-Starter-Seed/flask-api/requirements.txt

@@ -0,0 +1,4 @@
+flask
+dotenv
+PyJWT
+flask-cors

00-Starter-Seed/flask-api/server.py

@@ -0,0 +1,79 @@
+import jwt
+import base64
+import os
+
+from functools import wraps
+from flask import Flask, request, jsonify, _request_ctx_stack
+from werkzeug.local import LocalProxy
+from dotenv import Dotenv
+from flask.ext.cors import cross_origin
+
+env = None
+
+try:
+ env = Dotenv('./.env')
+ client_id = env["AUTH0_CLIENT_ID"]
+ client_secret = env["AUTH0_CLIENT_SECRET"]
+except IOError:
+ env = os.environ
+
+app = Flask(__name__)
+
+# Authentication annotation
+current_user = LocalProxy(lambda: _request_ctx_stack.top.current_user)
+
+# Authentication attribute/annotation
+def authenticate(error):
+ resp = jsonify(error)
+ resp.status_code = 401
+ return resp
+
+def requires_auth(f):
+ @wraps(f)
+ def decorated(*args, **kwargs):
+ auth = request.headers.get('Authorization', None)
+ if not auth:
+ return authenticate({'code': 'authorization_header_missing', 'description': 'Authorization header is expected'})
+
+ parts = auth.split()
+
+ if parts[0].lower() != 'bearer':
+ return {'code': 'invalid_header', 'description': 'Authorization header must start with Bearer'}
+ elif len(parts) == 1:
+ return {'code': 'invalid_header', 'description': 'Token not found'}
+ elif len(parts) > 2:
+ return {'code': 'invalid_header', 'description': 'Authorization header must be Bearer + \s + token'}
+
+ token = parts[1]
+ try:
+ payload = jwt.decode(
+ token,
+ base64.b64decode(client_secret.replace("_","/").replace("-","+")),
+ audience=client_id
+ )
+ except jwt.ExpiredSignature:
+ return authenticate({'code': 'token_expired', 'description': 'token is expired'})
+ except jwt.InvalidAudienceError:
+ return authenticate({'code': 'invalid_audience', 'description': 'incorrect audience, expected: ' + client_id})
+ except jwt.DecodeError:
+ return authenticate({'code': 'token_invalid_signature', 'description': 'token signature is invalid'})
+
+ _request_ctx_stack.top.current_user = user = payload
+ return f(*args, **kwargs)
+
+ return decorated
+
+# Controllers API
+@app.route("/ping")
+@cross_origin(headers=['Content-Type', 'Authorization'])
+def ping():
+ return "All good. You don't need to be authenticated to call this"
+
+@app.route("/secured/ping")
+@cross_origin(headers=['Content-Type', 'Authorization'])
+@requires_auth
+def securedPing():
+ return "All good. You only get this message if you're authenticated"
+
+if __name__ == "__main__":
+ app.run(host='0.0.0.0', port = int(os.environ.get('PORT', 3001)))

00-Starter-Seed/flask-webapp/.gitignore

@@ -0,0 +1 @@
+.env

00-Starter-Seed/flask-webapp/Procfile

@@ -0,0 +1 @@
+web: python server.py

00-Starter-Seed/flask-webapp/README.md

@@ -0,0 +1,20 @@
+#Auth0 + Python WebApp Seed
+This is the seed project you need to use if you're going to create a Regular WebApp with Python. If you want to build a Python API that will be used with a SPA or a Mobile device, please check this [other seed project](https://github.com/auth0/auth0-python/tree/master/examples/flask-api)
+
+#Running the example
+In order to run the example you need to have `python` and `pip` installed.
+
+You also need to set the ClientSecret, ClientId, Domain and CallbackURL for your Auth0 app as environment variables with the following names respectively: AUTH0_CLIENT_SECRET, AUTH0_CLIENT_ID, AUTH0_DOMAIN and AUTH0_CALLBACK_URL.
+
+For that, the .env file should be created already; if not, simply create a file named .env in the directory and set the values like the following, the app will just work:
+
+````bash
+# .env file
+AUTH0_CLIENT_SECRET=myCoolSecret
+AUTH0_CLIENT_ID=myCoolClientId
+AUTH0_DOMAIN=samples.auth0.com
+AUTH0_CALLBACK_URL=http://localhost:3000/auth/auth0/callback
+````
+Once you've set those 4 environment variables, just run `python server.py` and try calling [http://localhost:3000/](http://localhost:3000/), but you may change the port as needed.
+
+

00-Starter-Seed/flask-webapp/public/app.css

@@ -0,0 +1,95 @@
+body {
+ font-family: "proxima-nova", sans-serif;
+ text-align: center;
+ font-size: 300%;
+ font-weight: 100;
+}
+input[type=checkbox],
+input[type=radio] {
+ position: absolute;
+ opacity: 0;
+}
+input[type=checkbox] + label,
+input[type=radio] + label {
+ display: inline-block;
+}
+input[type=checkbox] + label:before,
+input[type=radio] + label:before {
+ content: "";
+ display: inline-block;
+ vertical-align: -0.2em;
+ width: 1em;
+ height: 1em;
+ border: 0.15em solid #0074d9;
+ border-radius: 0.2em;
+ margin-right: 0.3em;
+ background-color: white;
+}
+input[type=radio] + label:before {
+ border-radius: 50%;
+}
+input[type=radio]:checked + label:before,
+input[type=checkbox]:checked + label:before {
+ background-color: #0074d9;
+ box-shadow: inset 0 0 0 0.15em white;
+}
+input[type=radio]:focus + label:before,
+input[type=checkbox]:focus + label:before {
+ outline: 0;
+}
+.btn {
+ font-size: 140%;
+ text-transform: uppercase;
+ letter-spacing: 1px;
+ border: 0;
+ background-color: #16214D;
+ color: white;
+}
+.btn:hover {
+ background-color: #44C7F4;
+}
+.btn:focus {
+ outline: none !important;
+}
+.btn.btn-lg {
+ padding: 20px 30px;
+}
+.btn:disabled {
+ background-color: #333;
+ color: #666;
+}
+h1,
+h2,
+h3 {
+ font-weight: 100;
+}
+#logo img {
+ width: 300px;
+ margin-bottom: 60px;
+}
+.home-description {
+ font-weight: 100;
+ margin: 100px 0;
+}
+h2 {
+ margin-top: 30px;
+ margin-bottom: 40px;
+ font-size: 200%;
+}
+label {
+ font-size: 100%;
+ font-weight: 300;
+}
+.btn-next {
+ margin-top: 30px;
+}
+.answer {
+ width: 70%;
+ margin: auto;
+ text-align: left;
+ padding-left: 10%;
+ margin-bottom: 20px;
+}
+.login-page .login-box {
+ padding: 100px 0;
+}

00-Starter-Seed/flask-webapp/public/app.js

@@ -0,0 +1,10 @@
+$(document).ready(function() {
+ var lock = new Auth0Lock(AUTH0_CLIENT_ID, AUTH0_DOMAIN );
+
+ $('.btn-login').click(function(e) {
+ e.preventDefault();
+ lock.show({
+ callbackURL: AUTH0_CALLBACK_URL
+ });
+ });
+});