1

我有一个关于烧瓶 python 的问题。我尝试学习如何使用烧瓶构建网络,但出现了一些错误。在这种情况下,我使用 mongoengine 作为数据库和 JWT(Json Web Token),并且警报错误是这样的:“TypeError: Expecting a string- or bytes-formatted key”

192.168.100.26 - - [22/Nov/2016 22:50:08] "POST /auth HTTP/1.1" 500 -
Traceback (most recent call last):
  File "/home/def/.local/lib/python2.7/site-packages/flask/app.py", line 2000, in __call__
    return self.wsgi_app(environ, start_response)
  File "/home/def/.local/lib/python2.7/site-packages/flask/app.py", line 1991, in wsgi_app
    response = self.make_response(self.handle_exception(e))
  File "/home/def/.local/lib/python2.7/site-packages/flask/app.py", line 1567, in handle_exception
    reraise(exc_type, exc_value, tb)
  File "/home/def/.local/lib/python2.7/site-packages/flask/app.py", line 1988, in wsgi_app
    response = self.full_dispatch_request()
  File "/home/def/.local/lib/python2.7/site-packages/flask/app.py", line 1641, in full_dispatch_request
    rv = self.handle_user_exception(e)
  File "/home/def/.local/lib/python2.7/site-packages/flask/app.py", line 1544, in handle_user_exception
    reraise(exc_type, exc_value, tb)
  File "/home/def/.local/lib/python2.7/site-packages/flask/app.py", line 1639, in full_dispatch_request
    rv = self.dispatch_request()
  File "/home/def/.local/lib/python2.7/site-packages/flask/app.py", line 1625, in dispatch_request
    return self.view_functions[rule.endpoint](**req.view_args)
  File "/home/def/pr/flask/flask_deeper/test/routes/auth.py", line 26, in auth
    access_token = _jwt.jwt_encode_callback(identity)
  File "/usr/local/lib/python2.7/dist-packages/flask_jwt/__init__.py", line 70, in _default_jwt_encode_handler
    return jwt.encode(payload, secret, algorithm=algorithm, headers=headers)
  File "/usr/local/lib/python2.7/dist-packages/jwt/api_jwt.py", line 56, in encode
    json_payload, key, algorithm, headers, json_encoder
  File "/usr/local/lib/python2.7/dist-packages/jwt/api_jws.py", line 98, in encode
    key = alg_obj.prepare_key(key)
  File "/usr/local/lib/python2.7/dist-packages/jwt/algorithms.py", line 116, in prepare_key
    raise TypeError('Expecting a string- or bytes-formatted key.')
TypeError: Expecting a string- or bytes-formatted key.

我以为错误就在于此。

模型/用户.py

@staticmethod
def jwt_handler(token):
    if not User.objects(token=token):
        raise JWTError("Bad bad bad bad")

    secret = str(current_app.config["JWT_SECRET_KEY"])
    algorithm = str(current_app.config["JWT_ALGORITHM"])
    options = {
        'verify_' + claim: True
        for claim in verify_claims
    }

    options.update({
        'require_' + claim: True
        for claim in required_claims
    })

    decode = jwt.decode(token, secret, options=options, algorithms=[algorithm])
    return decode

@staticmethod
def authenticate(username, password):
    user = User.objects(username=username)
    if len(user) == 0:
        return None
    user = user[0]
    user["id"] = str(user["id"])

    if crypt.verify(password, user.password):
        return user

    return user

路线/用户.py

def auth():
    username = request.form.get("username")
    password = request.form.get("password")

    if not username:
        raise BadRequest("Userna doesn't exists")

    user = user_ctrl.read(username)

    identity = _jwt.authentication_callback(username, password)

    if identity:
        access_token = _jwt.jwt_encode_callback(identity)
        identity.update(push__token=access.decode("utf8"))
        return _jwt.auth_response_callback(access_token, identity)
    else:
        raise JWTError("Bad bad bad very bad")

配置文件

import os
from test.models import db

class Config(object):

    db_name = os.getenv('MONGODB_NAME', 'third')
    db_host = os.getenv('MONGODB_HOST', '127.0.0.1')
    db_port  = os.getenv('MONGODB_PORT', '5000')

    JWT_SECRET_KEY = 'test123'
    JWT_ALGORITHM = 'SH256'
    JWT_AUTH_ENDPOINT = 'jwt'
    JWT_AUTH_USERNAME_KEY = 'username'
    JWT_AUTH_PASSWORD_KEY = 'password'

http.py

import logging.config
import jwt
from flask_jwt import JWT
from flask import Flask

from test import routes
from test.models import db, User

_jwt = JWT(authentication_handler=User.authenticate, identity_handler=User.identity)
_jwt.jwt_decode_callback=User.jwt_handler

def create_app(config):
    app = Flask(__name__.split(',')[0])

    app.register_blueprint(routes.user.bp)
    app.register_blueprint(routes.auth.bp)

    db.init_app(app)

    _jwt.init_app(app)

    return app
4

1 回答 1

2

您已定义配置,config.py但尚未将配置对象添加到您的烧瓶应用程序。因此,诸如之类的键JWT_SECRET_KEY不在您的应用配置中。

Flask-JWT 的default_handler需要这些值(复制以防源更改)

def _default_jwt_decode_handler(token):
    secret = current_app.config['JWT_SECRET_KEY']
    algorithm = current_app.config['JWT_ALGORITHM']
    leeway = current_app.config['JWT_LEEWAY']

在您的情况下,由于未设置,它会返回None并触发algorithms.py(需要字符串键)。

因此,在 http.py 中您的应用程序初始化期间,您必须添加对app.config.from_object. 也许是这样的

def create_app(config):
    app = Flask(__name__.split(',')[0])

    # Edit the following to point it to your Config class
    app.config.from_object(config.Config)

    app.register_blueprint(routes.user.bp)
    app.register_blueprint(routes.auth.bp)

    db.init_app(app)

    _jwt.init_app(app)

    return app

附带说明一下,的名称JWT_ALGORITHM应该是HS256而不是SH256(尽管它并不重要,因为HS256它是默认值,并且将被选择,因为SH256它不是一个有效的算法)

于 2016-11-23T09:34:38.157 回答