Ozwillo » Modules CKAN Ozwillo

from hashlib import sha1

import hmac

import ckan.plugins as plugins

from pylons import config

from ckan.common import request, _

from ckan.logic.action.create import _group_or_org_create as group_or_org_create

                                       'X-Hub-Signature')

    def wrapper(context, data):

        if signature_header_name in request.headers:

            if request.headers[signature_header_name].startswith('sha1='):

                computed_hmac = hmac.new(instantiated_secret, str(data), sha1).hexdigest()

                # the received hmac is uppercase according to

                # http://doc.ozwillo.com/#ref-3-2-1

                if received_hmac != computed_hmac.upper():

            else:

                raise logic.ValidationError(_('Invalid HMAC algo'))

        else:

            raise logic.NotAuthorized(_("No HMAC in the header"))

        return func(context, data)

    return wrapper

@valid_signature_required

def create_organization(context, data_dict):

    destruction_secret = config.get(plugin_config_prefix + 'destruction_secret',

                                       'changeme')

    client_id = data_dict.pop('client_id')

    client_secret = data_dict.pop('client_secret')

    instance_id = data_dict.pop('instance_id')

    # re-mapping received dict

    registration_uri = data_dict.pop('instance_registration_uri')

    organization = data_dict['organization']

    org_dict = {

        'type': 'organization',

        'name': organization['organization_name'].lower(),

        'description': organization['type'],

    }

    try:

        delete_uri = toolkit.url_for(controller='api', action='action',

                                     logic_function="delete-organization",

                                     ver=context['api_version'],

                                     qualified=True)

        group_or_org_create(context, org_dict, is_org=True)

        # notify about organization creation

        services = {'services': [{

            'local_id': 'organization',

            'name': 'Organization ' + org_dict['name'] + ' on CKAN',

            'service_uri': '/organization/' + org_dict['name'],

            'visible': True}],

            'instance_id': instance_id,

            'destruction_uri': delete_uri,

            'destruction_secret': destruction_secret,

            'needed_scopes': [{

                'scope_id': 'profile',

                'motivation': 'Used to link user to the organization'

            }]

        }

        requests.post(registration_uri,

                      data = services,

                      auth=(client_id, client_secret)

                  )

    except:

@valid_signature_required

def delete_organization(context, data_dict):

    context['ignore_auth'] = True

    _group_or_org_purge(context, data_dict, is_org=True)

class OzwilloOrganizationApiPlugin(plugins.SingletonPlugin):

    """

    API for OASIS to create and delete an organization

    """

    plugins.implements(plugins.IActions)

    def get_actions(self):

        return {

            'delete-ozwillo-organization': delete_organization