forked from Azure-Samples/ms-identity-python-webapp
-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathapp.py
60 lines (47 loc) · 2.15 KB
/
app.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
from typing import Optional
import httpx
import uvicorn
import msal
from starlette.middleware.sessions import SessionMiddleware
from fastapi import FastAPI, Request
from fastapi.responses import RedirectResponse, HTMLResponse
from fastapi.templating import Jinja2Templates
from fastapi_msal import MSALAuthorization, MSALClientConfig
from fastapi_msal.models import AuthToken
class AppConfig(MSALClientConfig):
# You can find more Microsoft Graph API endpoints from Graph Explorer
# https://developer.microsoft.com/en-us/graph/graph-explorer
endpoint: str = "https://graph.microsoft.com/v1.0/users" # This resource requires no admin consent
login_path = "/login" # default is '/_login_route'
logout_path = "/logout" # default is '/_logout_route'
config = AppConfig(_env_file="app_config.env")
app = FastAPI()
app.add_middleware(SessionMiddleware, secret_key=config.client_credential)
auth = MSALAuthorization(client_config=config)
app.include_router(auth.router)
templates = Jinja2Templates(directory="templates")
@app.get("/", response_class=HTMLResponse)
async def index(request: Request):
token: Optional[AuthToken] = await auth.get_session_token(request=request)
if not token or not token.id_token_claims:
return RedirectResponse(url=config.login_path)
context = {
"request": request,
"user": token.id_token_claims,
"version": msal.__version__,
}
return templates.TemplateResponse(name="index.html", context=context)
@app.get("/graphcall")
async def graphcall(request: Request):
token: Optional[AuthToken] = await auth.handler.get_token_from_session(request=request)
if not token or not token.access_token:
return RedirectResponse(url=config.login_path)
async with httpx.AsyncClient() as client:
resp = await client.get(
config.endpoint, headers={"Authorization": "Bearer " + token.access_token},
)
graph_data = resp.json()
context = {"request": request, "result": graph_data}
return templates.TemplateResponse(name="display.html", context=context)
if __name__ == "__main__":
uvicorn.run("app:app", host="localhost", port=5000, reload=True)