Fix API auth crash and add more error messagesv1.25.1

author: rubenwardy <rw@rubenwardy.com> 2020-05-19 17:24:57 +0100
committer: rubenwardy <rw@rubenwardy.com> 2020-05-19 17:24:57 +0100
commit: a36e233051b35d3ca44b5bd38f8f6262c16c1833 (patch)
tree: 036363e023375185581d0ac50a84eab33c55c199 /app/blueprints/api/auth.py
parent: 8484c0f0aa8bcb02a234c816a75a423737b0297c (diff)
download: cheatdb-a36e233051b35d3ca44b5bd38f8f6262c16c1833.tar.xz
1 files changed, 4 insertions, 3 deletions
diff --git a/app/blueprints/api/auth.py b/app/blueprints/api/auth.py
index 6eeadde..234d481 100644
--- a/app/blueprints/api/auth.py
+++ b/app/blueprints/api/auth.py
@@ -16,6 +16,7 @@
 
 from flask import request, make_response, jsonify, abort
 from app.models import APIToken
+from .support import error
 from functools import wraps
 
 def is_api_authd(f):
@@ -29,13 +30,13 @@ def is_api_authd(f):
 		elif value[0:7].lower() == "bearer ":
 			access_token = value[7:]
 			if len(access_token) < 10:
-				abort(400)
+				error(400, "API token is too short")
 
 			token = APIToken.query.filter_by(access_token=access_token).first()
 			if token is None:
-				abort(403)
+				error(403, "Unknown API token")
 		else:
-			abort(403)
+			abort(403, "Unsupported authentication method")
 
 		return f(token=token, *args, **kwargs)
author	rubenwardy <rw@rubenwardy.com>	2020-05-19 17:24:57 +0100
committer	rubenwardy <rw@rubenwardy.com>	2020-05-19 17:24:57 +0100
commit	a36e233051b35d3ca44b5bd38f8f6262c16c1833 (patch)
tree	036363e023375185581d0ac50a84eab33c55c199 /app/blueprints/api/auth.py
parent	8484c0f0aa8bcb02a234c816a75a423737b0297c (diff)
download	cheatdb-a36e233051b35d3ca44b5bd38f8f6262c16c1833.tar.xz