tor-browser

The Tor Browser
git clone https://git.dasho.dev/tor-browser.git
Log | Files | Refs | README | LICENSE

login.py (2669B)

      1 import json
      2 import importlib
      3 session_manager = importlib.import_module('device-bound-session-credentials.session_manager')
      4 
      5 def main(request, response):
      6    num_sessions = 1
      7    use_single_header = True
      8    registration_url = "/device-bound-session-credentials/start_session.py"
      9    request_body_raw = request.body.decode('utf-8')
     10    if len(request_body_raw) > 0:
     11        request_body = json.loads(request_body_raw)
     12        maybe_num_sessions = request_body.get("numSessions")
     13        if maybe_num_sessions is not None:
     14            num_sessions = maybe_num_sessions
     15        maybe_use_single_header = request_body.get("useSingleHeader")
     16        if maybe_use_single_header is not None:
     17            use_single_header = maybe_use_single_header
     18        maybe_registration_url = request_body.get("registrationUrl")
     19        if maybe_registration_url is not None:
     20            registration_url = maybe_registration_url
     21 
     22    test_session_manager = session_manager.find_for_request(request)
     23 
     24    header_items = ["(RS256)",f'path="{registration_url}"']
     25    if test_session_manager.get_allows_challenges():
     26        header_items.append('challenge="login_challenge_value"')
     27    authorization_value = test_session_manager.get_authorization_value()
     28    if authorization_value is not None:
     29        header_items.append(f'authorization="{authorization_value}"')
     30    provider_session_id = test_session_manager.get_provider_session_id()
     31    if provider_session_id is not None:
     32        header_items.append(f'provider_session_id="{provider_session_id}"')
     33    provider_url = test_session_manager.get_provider_url()
     34    if provider_url is not None:
     35        header_items.append(f'provider_url="{provider_url}"')
     36    provider_key = test_session_manager.get_provider_key()
     37    if provider_key is not None:
     38        header_items.append(f'provider_key="{provider_key}"')
     39 
     40    registrations = []
     41    for i in range(num_sessions):
     42        registrations.append(('Secure-Session-Registration', ";".join(header_items)))
     43 
     44    headers = []
     45    if request.headers.get(b"origin") is not None:
     46        # Some tests (e.g. subdomain-registration.https.html) login
     47        # across origins. Allow cookies so that we can get the
     48        # session_manager for the request.
     49        headers = [
     50            ("Access-Control-Allow-Origin", request.headers.get(b"origin")),
     51            ("Access-Control-Allow-Credentials", "true"),
     52        ]
     53 
     54    if use_single_header:
     55        combined_registrations = [("Secure-Session-Registration", ", ".join([registration[1] for registration in registrations]))]
     56        return (200, headers + combined_registrations, "")
     57    else:
     58        return (200, headers + registrations, "")