cms-jwt 0.2.0__tar.gz

cms_jwt-0.2.0/PKG-INFO

@@ -0,0 +1,5 @@
+Metadata-Version: 2.4
+Name: cms-jwt
+Version: 0.2.0
+Requires-Python: >=3.10
+Dynamic: requires-python

cms_jwt-0.2.0/cms_jwt.egg-info/PKG-INFO

@@ -0,0 +1,5 @@
+Metadata-Version: 2.4
+Name: cms-jwt
+Version: 0.2.0
+Requires-Python: >=3.10
+Dynamic: requires-python

cms_jwt-0.2.0/cms_jwt.egg-info/SOURCES.txt

@@ -0,0 +1,10 @@
+setup.py
+cms_jwt.egg-info/PKG-INFO
+cms_jwt.egg-info/SOURCES.txt
+cms_jwt.egg-info/dependency_links.txt
+cms_jwt.egg-info/entry_points.txt
+cms_jwt.egg-info/top_level.txt
+cms_jwt_import_auth/__init__.py
+cms_jwt_import_auth/apps.py
+cms_jwt_import_auth/bkp_tutor.py
+cms_jwt_import_auth/middleware.py

cms_jwt-0.2.0/cms_jwt.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

cms_jwt-0.2.0/cms_jwt.egg-info/entry_points.txt

@@ -0,0 +1,2 @@
+[cms.djangoapp]
+cms_jwt = cms_jwt_import_auth.apps:CMSJWTImportAuthConfig

cms_jwt-0.2.0/cms_jwt.egg-info/top_level.txt

@@ -0,0 +1 @@
+cms_jwt_import_auth

cms_jwt-0.2.0/cms_jwt_import_auth/apps.py

@@ -0,0 +1,15 @@
+from django.apps import AppConfig
+
+class CMSJWTImportAuthConfig(AppConfig):
+    name = "cms_jwt_import_auth"
+    verbose_name = "CMS JWT-or-Session auth for course import"
+
+    plugin_app = {
+        'settings_config': {
+            'cms.djangoapp': {
+                'common': {'relative_path': 'settings.common'},
+                'production': {'relative_path': 'settings.production'},
+            },
+        },
+    }
+

cms_jwt-0.2.0/cms_jwt_import_auth/bkp_tutor.py

@@ -0,0 +1,28 @@
+from tutor import hooks
+
+def register():
+    # Ensure the Django app is present in the image
+    hooks.Filters.CMS_EXTRA_REQUIREMENTS.add_item("edx-drf-extensions")
+    # If your Django app is published to pip, add it here too:
+    # hooks.Filters.CMS_EXTRA_REQUIREMENTS.add_item("cms-jwt-import-auth>=0.1.0")
+
+    # Load the Django app + middleware
+    hooks.Filters.CMS_EXTRA_APPS.add_item("cms_jwt_import_auth")
+    hooks.Filters.CMS_EXTRA_MIDDLEWARE.add_item(
+        "cms_jwt_import_auth.middleware.ImportJWTOrSessionMiddleware"
+    )
+
+    # Optional settings patch
+    def _patch(settings):
+        settings.setdefault("REST_FRAMEWORK", {})
+        settings["REST_FRAMEWORK"]["DEFAULT_AUTHENTICATION_CLASSES"] = (
+            "edx_rest_framework_extensions.auth.jwt.authentication.JwtAuthentication",
+            "rest_framework.authentication.SessionAuthentication",
+        )
+        settings.setdefault("JWT_AUTH", {})
+        settings["JWT_AUTH"].update({
+            "JWT_ISSUER": "https://campus-dev.nextere.com/oauth2",
+            "JWT_AUDIENCE": "openedx",
+        })
+    hooks.Filters.CMS_EXTRA_SETTINGS.add_item(_patch)
+

cms_jwt-0.2.0/cms_jwt_import_auth/middleware.py

@@ -0,0 +1,56 @@
+from __future__ import annotations
+import re
+from typing import Optional
+
+from django.http import JsonResponse
+from django.utils.deprecation import MiddlewareMixin
+from django.contrib.auth.models import AnonymousUser
+
+from rest_framework.request import Request as DRFRequest
+from edx_rest_framework_extensions.auth.jwt.authentication import JwtAuthentication
+
+class ImportJWTOrSessionMiddleware(MiddlewareMixin):
+    """
+    Enforce authentication for the course import endpoint in CMS:
+      /api/courses/v1/<course_id>/import/
+    Accept either:
+      - existing logged-in Studio session, OR
+      - JWT in Authorization header (JWT or Bearer)
+    If neither present/valid -> 401 JSON.
+
+    NOTE:
+    - Keep this middleware scoped to just the import route to avoid overhead.
+    """
+
+    # Path matcher (strict, trailing slash optional)
+    # Example: /api/courses/v1/course-v1:ACME+ONB101+2025_T1/import/
+    PATTERN = re.compile(
+        r"^/api/courses/v1/[^/]+/import/?$"
+    )
+
+    def process_request(self, request):
+        path = request.path or ""
+        if not self.PATTERN.match(path):
+            return None  # ignore all other routes
+
+        # If session-authenticated, allow through
+        user = getattr(request, "user", None)
+        if user is not None and user.is_authenticated:
+            return None
+
+        # Try JWT auth (accept JWT or Bearer header schemes)
+        auth = JwtAuthentication()
+        drf_request = DRFRequest(request)
+        try:
+            user_auth_tuple: Optional[tuple] = auth.authenticate(drf_request)
+        except Exception as e:
+            # Invalid token format / signature, return 401
+            return JsonResponse({"detail": f"Invalid JWT: {str(e)}"}, status=401)
+
+        if user_auth_tuple:
+            request.user, _ = user_auth_tuple
+            return None  # authenticated via JWT
+
+        # Neither session nor JWT
+        return JsonResponse({"detail": "Authentication required"}, status=401)
+

cms_jwt-0.2.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+

cms_jwt-0.2.0/setup.py

@@ -0,0 +1,27 @@
+"""
+Setup file for eox_core Django plugin.
+"""
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+import os
+import re
+
+from setuptools import setup
+
+VERSION = "0.2.0"
+
+
+
+setup(
+    name="cms-jwt",
+    python_requires='>=3.10',
+    version=VERSION,
+    
+    packages=['cms_jwt_import_auth'],
+    include_package_data=True,
+    entry_points={
+       "cms.djangoapp": [
+            "cms_jwt = cms_jwt_import_auth.apps:CMSJWTImportAuthConfig",
+        ],
+    }
+)