odyfo
/
odapi
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add OTP verification

This commit is contained in:
coolneng 2020-04-19 21:30:41 +02:00
parent 69792075cb
commit 068cea8019
Signed by: coolneng
GPG Key ID: 9893DA236405AF57
3 changed files with 39 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
src/app/routes.py
View File

@ -1,5 +1,5 @@
from flask import request, jsonify from flask import request, jsonify, make_response
from database.crud import insert_data from database.crud import insert_data, verify_otp
from external.twilio import send_otp from external.twilio import send_otp
from app import app from app import app
@ -9,4 +9,12 @@ def create_user():
data = request.get_json() data = request.get_json()
insert_data(schema="Users", data=data) insert_data(schema="Users", data=data)
send_otp(receiver=data["mobile"]) send_otp(receiver=data["mobile"])
return jsonify("User created, pending OTP verification") return make_response(jsonify("User created, pending OTP verification"))
@app.route("/verifyotp", methods=["POST"])
def validate_otp():
data = request.get_json()
if verify_otp(mobile=data["mobile"], otp=data["otp"]):
return make_response(jsonify("The OTP has been verified successfully"))
return make_response(jsonify("The OTP is not correct"))

28
src/database/crud.py
View File

@ -2,6 +2,7 @@ from app import db
from database.models import * from database.models import *
from database.schema import * from database.schema import *
from marshmallow import ValidationError from marshmallow import ValidationError
from datetime import datetime
def insert_data(schema, data): def insert_data(schema, data):
@ -10,13 +11,13 @@ def insert_data(schema, data):
db.session.commit() db.session.commit()
def delete_data(id): def delete_data(data):
db.session.delete(data) db.session.delete(data)
db.session.commit() db.session.commit()
def update_otp(user_id, otp): def save_otp(mobile, otp):
db.session.query(table="Users").filter_by(id=user_id).update(dict(otp=otp)) db.session.query(table="Users").filter_by(mobile=mobile).update(dict(otp=otp))
db.session.commit() db.session.commit()
@ -28,3 +29,24 @@ def validate_data(schema, data):
return output return output
except ValidationError as err: except ValidationError as err:
print(err.messages) print(err.messages)
def fetch_stored_otp(mobile):
user = db.session.query(table="Users").filter_by(mobile=mobile)
otp = user.otp
return otp
def validate_otp(mobile):
timestamp = datetime.now()
db.session.query(table="Users").filter_by(mobile=mobile).update(
dict(otp_valid_time=timestamp)
)
def verify_otp(mobile, otp):
stored_otp = fetch_stored_otp(mobile=mobile)
if stored_otp == otp:
validate_otp(mobile=mobile)
return True
return False

4
src/external/twilio.py vendored
View File

@ -1,6 +1,7 @@
from twilio.rest import Client from twilio.rest import Client
from secrets import randbits from secrets import randbits
from constants import account_id, token, sms_sender from constants import account_id, token, sms_sender
from database.crud import save_otp
def connect_api(): def connect_api():
@ -20,4 +21,5 @@ def send_otp(receiver):
client = connect_api() client = connect_api()
code = generate_code() code = generate_code()
message = "Your OTP code is {0}".format(code) message = "Your OTP code is {0}".format(code)
sms = client.messages.create(to=receiver, from_=sms_sender, body=message) client.messages.create(to=receiver, from_=sms_sender, body=message)
save_otp(receiver, code)