my-dev
/
uploader-bot
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix auth.twa

This commit is contained in:
user 2024-10-27 17:57:36 +03:00
parent 8c5e2d32df
commit 7148e68e06
1 changed files with 15 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
app/api/routes/auth.py
View File

@ -5,7 +5,7 @@ from sanic import response
from sqlalchemy import select, and_ from sqlalchemy import select, and_
from tonsdk.utils import Address from tonsdk.utils import Address
from app.core._config import TELEGRAM_API_KEY from app.core._config import TELEGRAM_API_KEY, CLIENT_TELEGRAM_API_KEY
from app.core.logger import make_log from app.core.logger import make_log
from app.core.models import KnownKey, WalletConnection from app.core.models import KnownKey, WalletConnection
from app.core.models.user import User from app.core.models.user import User
@ -21,8 +21,20 @@ async def s_api_v1_auth_twa(request):
auth_data[req_key] = None auth_data[req_key] = None
twa_data = auth_data['twa_data'] twa_data = auth_data['twa_data']
twa_data = safe_parse_webapp_init_data(token=TELEGRAM_API_KEY, init_data=twa_data)
valid_twa_data = False
for validation_api_key in [TELEGRAM_API_KEY, CLIENT_TELEGRAM_API_KEY]:
try:
twa_data = safe_parse_webapp_init_data(token=validation_api_key, init_data=twa_data)
assert twa_data assert twa_data
valid_twa_data = True
break
except:
pass
if not valid_twa_data:
make_log("auth", "Invalid TWA data", level="warning")
return response.json({"error": "Invalid TWA data"}, status=401)
known_user = request.ctx.db_session.query(User).filter(User.telegram_id == twa_data.user.id).first() known_user = request.ctx.db_session.query(User).filter(User.telegram_id == twa_data.user.id).first()
if not known_user: if not known_user: