reactbin/api/app/auth/noop.py at 28df9a126140acd39d91c370c1fc80e087bb01ea - reactbin - Gitea: Git with a cup of tea

agatha/reactbin

Files

agatha 5fbbc1e67f Feat: Implement JWT bearer token authentication

Protects image upload, delete, and tag-update endpoints behind
Bearer token auth. Public read endpoints remain open. Angular SPA
gains a login page, auth interceptor, and route guard for /upload.

- JWTAuthProvider (HS256, sub/iat/exp, secrets.compare_digest)
- POST /api/v1/auth/token login endpoint
- require_auth FastAPI dependency on all write routes
- AuthService, LoginComponent, authInterceptor, authGuard
- Detail page hides write controls for unauthenticated visitors
- 43 unit tests passing; integration tests require Docker stack

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-03 19:12:38 +00:00

9 lines

247 B

Python

Raw Blame History

 from app.auth.provider import AuthProvider, Identity
 _ANONYMOUS = Identity(id="anonymous", anonymous=True)
 class NoOpAuthProvider(AuthProvider):
     async def get_identity(self, authorization: str | None) -> Identity:
         return _ANONYMOUS