whoogle-search/app/utils/session.py

from cryptography.fernet import Fernet
from flask import current_app as app

REQUIRED_SESSION_VALUES = ['uuid', 'config', 'key']


def generate_user_key(cookies_disabled=False) -> bytes:
    """Generates a key for encrypting searches and element URLs

    Args:
        cookies_disabled: Flag for whether or not cookies are disabled by the
                          user. If so, the user can only use the default key
                          generated on app init for queries.

    Returns:
        str: A unique Fernet key

    """
    if cookies_disabled:
        return app.default_key

    # Generate/regenerate unique key per user
    return Fernet.generate_key()


def valid_user_session(session: dict) -> bool:
    """Validates the current user session

    Args:
        session: The current Flask user session

    Returns:
        bool: True/False indicating that all required session values are
              available

    """
    # Generate secret key for user if unavailable
    for value in REQUIRED_SESSION_VALUES:
        if value not in session:
            return False

    return True
Improve naming of _utils files, update fn/class doc The app/utils/_utils weren't named very well, and all have been updated to have more accurate names. Function and class documention for the utils have been updated as well, as part of the effort to improve overall documentation for the project. 2021-03-08 20:22:04 +03:00			`from cryptography.fernet import Fernet`
			`from flask import current_app as app`

Switch to single Fernet key per session This moves away from the previous (messy) approach of using two separate keys for decrypting text and element URLs separately and regenerating them for new searches. The current implementation of sessions is not very reliable, which lead to keys being regenerated too soon, which would break page navigation. Until that can be addressed, the single key per session approach should work a lot better. Fixes #250 Fixes #90 2021-04-01 07:23:30 +03:00			`REQUIRED_SESSION_VALUES = ['uuid', 'config', 'key']`
Improve naming of _utils files, update fn/class doc The app/utils/_utils weren't named very well, and all have been updated to have more accurate names. Function and class documention for the utils have been updated as well, as part of the effort to improve overall documentation for the project. 2021-03-08 20:22:04 +03:00

Switch to single Fernet key per session This moves away from the previous (messy) approach of using two separate keys for decrypting text and element URLs separately and regenerating them for new searches. The current implementation of sessions is not very reliable, which lead to keys being regenerated too soon, which would break page navigation. Until that can be addressed, the single key per session approach should work a lot better. Fixes #250 Fixes #90 2021-04-01 07:23:30 +03:00			`def generate_user_key(cookies_disabled=False) -> bytes:`
			`"""Generates a key for encrypting searches and element URLs`
Improve naming of _utils files, update fn/class doc The app/utils/_utils weren't named very well, and all have been updated to have more accurate names. Function and class documention for the utils have been updated as well, as part of the effort to improve overall documentation for the project. 2021-03-08 20:22:04 +03:00
			`Args:`
			`cookies_disabled: Flag for whether or not cookies are disabled by the`
			`user. If so, the user can only use the default key`
Switch to single Fernet key per session This moves away from the previous (messy) approach of using two separate keys for decrypting text and element URLs separately and regenerating them for new searches. The current implementation of sessions is not very reliable, which lead to keys being regenerated too soon, which would break page navigation. Until that can be addressed, the single key per session approach should work a lot better. Fixes #250 Fixes #90 2021-04-01 07:23:30 +03:00			`generated on app init for queries.`
Improve naming of _utils files, update fn/class doc The app/utils/_utils weren't named very well, and all have been updated to have more accurate names. Function and class documention for the utils have been updated as well, as part of the effort to improve overall documentation for the project. 2021-03-08 20:22:04 +03:00
			`Returns:`
Switch to single Fernet key per session This moves away from the previous (messy) approach of using two separate keys for decrypting text and element URLs separately and regenerating them for new searches. The current implementation of sessions is not very reliable, which lead to keys being regenerated too soon, which would break page navigation. Until that can be addressed, the single key per session approach should work a lot better. Fixes #250 Fixes #90 2021-04-01 07:23:30 +03:00			`str: A unique Fernet key`
Improve naming of _utils files, update fn/class doc The app/utils/_utils weren't named very well, and all have been updated to have more accurate names. Function and class documention for the utils have been updated as well, as part of the effort to improve overall documentation for the project. 2021-03-08 20:22:04 +03:00
			`"""`
			`if cookies_disabled:`
Switch to single Fernet key per session This moves away from the previous (messy) approach of using two separate keys for decrypting text and element URLs separately and regenerating them for new searches. The current implementation of sessions is not very reliable, which lead to keys being regenerated too soon, which would break page navigation. Until that can be addressed, the single key per session approach should work a lot better. Fixes #250 Fixes #90 2021-04-01 07:23:30 +03:00			`return app.default_key`
Improve naming of _utils files, update fn/class doc The app/utils/_utils weren't named very well, and all have been updated to have more accurate names. Function and class documention for the utils have been updated as well, as part of the effort to improve overall documentation for the project. 2021-03-08 20:22:04 +03:00
			`# Generate/regenerate unique key per user`
Switch to single Fernet key per session This moves away from the previous (messy) approach of using two separate keys for decrypting text and element URLs separately and regenerating them for new searches. The current implementation of sessions is not very reliable, which lead to keys being regenerated too soon, which would break page navigation. Until that can be addressed, the single key per session approach should work a lot better. Fixes #250 Fixes #90 2021-04-01 07:23:30 +03:00			`return Fernet.generate_key()`
Improve naming of _utils files, update fn/class doc The app/utils/_utils weren't named very well, and all have been updated to have more accurate names. Function and class documention for the utils have been updated as well, as part of the effort to improve overall documentation for the project. 2021-03-08 20:22:04 +03:00

			`def valid_user_session(session: dict) -> bool:`
			`"""Validates the current user session`

			`Args:`
			`session: The current Flask user session`

			`Returns:`
			`bool: True/False indicating that all required session values are`
			`available`

			`"""`
			`# Generate secret key for user if unavailable`
			`for value in REQUIRED_SESSION_VALUES:`
			`if value not in session:`
			`return False`

			`return True`