/usr/lib/python2.7/dist-packages/social/backends/bitbucket.py is in python-social-auth 1:0.2.21+dfsg-1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 | """
Bitbucket OAuth2 and OAuth1 backends, docs at:
http://psa.matiasaguirre.net/docs/backends/bitbucket.html
"""
from social.exceptions import AuthForbidden
from social.backends.oauth import BaseOAuth1, BaseOAuth2
class BitbucketOAuthBase(object):
ID_KEY = 'uuid'
def get_user_id(self, details, response):
id_key = self.ID_KEY
if self.setting('USERNAME_AS_ID', False):
id_key = 'username'
return response.get(id_key)
def get_user_details(self, response):
"""Return user details from Bitbucket account"""
fullname, first_name, last_name = self.get_user_names(
response['display_name']
)
return {'username': response.get('username', ''),
'email': response.get('email', ''),
'fullname': fullname,
'first_name': first_name,
'last_name': last_name}
def user_data(self, access_token, *args, **kwargs):
"""Return user data provided"""
emails = self._get_emails(access_token)
email = None
for address in reversed(emails['values']):
email = address['email']
if address['is_primary']:
break
if self.setting('VERIFIED_EMAILS_ONLY', False) and \
not address['is_confirmed']:
raise AuthForbidden(self, 'Bitbucket account has no verified email')
user = self._get_user(access_token)
if email:
user['email'] = email
return user
def _get_user(self, access_token=None):
raise NotImplementedError('Implement in subclass')
def _get_emails(self, access_token=None):
raise NotImplementedError('Implement in subclass')
class BitbucketOAuth2(BitbucketOAuthBase, BaseOAuth2):
name = 'bitbucket-oauth2'
SCOPE_SEPARATOR = ' '
AUTHORIZATION_URL = 'https://bitbucket.org/site/oauth2/authorize'
ACCESS_TOKEN_URL = 'https://bitbucket.org/site/oauth2/access_token'
ACCESS_TOKEN_METHOD = 'POST'
REDIRECT_STATE = False
EXTRA_DATA = [
('scopes', 'scopes'),
('expires_in', 'expires'),
('token_type', 'token_type'),
('refresh_token', 'refresh_token')
]
def auth_complete_credentials(self):
return self.get_key_and_secret()
def _get_user(self, access_token=None):
return self.get_json('https://api.bitbucket.org/2.0/user',
params={'access_token': access_token})
def _get_emails(self, access_token=None):
return self.get_json('https://api.bitbucket.org/2.0/user/emails',
params={'access_token': access_token})
def refresh_token(self, *args, **kwargs):
raise NotImplementedError('Refresh tokens for Bitbucket have '
'not been implemented')
class BitbucketOAuth(BitbucketOAuthBase, BaseOAuth1):
"""Bitbucket OAuth authentication backend"""
name = 'bitbucket'
AUTHORIZATION_URL = 'https://bitbucket.org/api/1.0/oauth/authenticate'
REQUEST_TOKEN_URL = 'https://bitbucket.org/api/1.0/oauth/request_token'
ACCESS_TOKEN_URL = 'https://bitbucket.org/api/1.0/oauth/access_token'
def oauth_auth(self, *args, **kwargs):
return super(BitbucketOAuth, self).oauth_auth(*args, **kwargs)
def _get_user(self, access_token=None):
return self.get_json('https://api.bitbucket.org/2.0/user',
auth=self.oauth_auth(access_token))
def _get_emails(self, access_token=None):
return self.get_json('https://api.bitbucket.org/2.0/user/emails',
auth=self.oauth_auth(access_token))
|