joerussbowman/gist:1295578

## gistfile1.py
#!/usr/bin/env python
#
# Copyright 2009 Facebook
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.

import tornado.auth
import tornado.escape
import tornado.httpserver
import tornado.ioloop
import tornado.options
import tornado.web
import logging

from tornado.options import define, options

define("port", default=8888, help="run on the given port", type=int)


class Application(tornado.web.Application):
    def __init__(self):
        handlers = [
            (r"/", MainHandler),
            (r"/auth/login", AuthHandler),
            (r"/auth/logout", LogoutHandler),
        ]
        settings = dict(
            cookie_secret="32oETzKXQAGaYdkL5gEmGeJJFuYh7EQnp2XdTP1o/Vo=",
            login_url="/auth/login",
        )
        tornado.web.Application.__init__(self, handlers, **settings)


class BaseHandler(tornado.web.RequestHandler):
    def get_current_user(self):
        user_json = self.get_secure_cookie("user")
        if not user_json: return None
        return tornado.escape.json_decode(user_json)

class MainHandler(BaseHandler):
    @tornado.web.authenticated
    def get(self):
        name = tornado.escape.xhtml_escape(self.current_user["name"])
        self.write("Hello, " + name)
        self.write("<br><br><a href=\"/auth/logout\">Log out</a>")


class AuthHandler(BaseHandler, tornado.auth.GoogleMixin):
    @tornado.web.asynchronous
    def get(self):
        if self.get_argument("openid.mode", None):
            self.get_authenticated_user(self.async_callback(self._on_auth))
            return
        # self.authenticate_redirect()
        self.authorize_redirect("http://www.google.com/m8/feeds/", "http://localhost:8888/auth/login", ax_attrs=["name","email","username"])

    def _on_auth(self, user):
        if not user:
            raise tornado.web.HTTPError(500, "Google auth failed")
        self.set_secure_cookie("user", tornado.escape.json_encode(user))
        logging.error(user)
        self.redirect("/")

class LogoutHandler(BaseHandler):
    def get(self):
        self.clear_cookie("user")
        self.redirect("/")

def main():
    tornado.options.parse_command_line()
    http_server = tornado.httpserver.HTTPServer(Application())
    http_server.listen(options.port)
    tornado.ioloop.IOLoop.instance().start()


if __name__ == "__main__":
    main()
	#!/usr/bin/env python
	#
	# Copyright 2009 Facebook
	#
	# Licensed under the Apache License, Version 2.0 (the "License"); you may
	# not use this file except in compliance with the License. You may obtain
	# a copy of the License at
	#
	# http://www.apache.org/licenses/LICENSE-2.0
	#
	# Unless required by applicable law or agreed to in writing, software
	# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
	# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
	# License for the specific language governing permissions and limitations
	# under the License.

	import tornado.auth
	import tornado.escape
	import tornado.httpserver
	import tornado.ioloop
	import tornado.options
	import tornado.web
	import logging

	from tornado.options import define, options

	define("port", default=8888, help="run on the given port", type=int)


	class Application(tornado.web.Application):
	def __init__(self):
	handlers = [
	(r"/", MainHandler),
	(r"/auth/login", AuthHandler),
	(r"/auth/logout", LogoutHandler),
	]
	settings = dict(
	cookie_secret="32oETzKXQAGaYdkL5gEmGeJJFuYh7EQnp2XdTP1o/Vo=",
	login_url="/auth/login",
	)
	tornado.web.Application.__init__(self, handlers, **settings)


	class BaseHandler(tornado.web.RequestHandler):
	def get_current_user(self):
	user_json = self.get_secure_cookie("user")
	if not user_json: return None
	return tornado.escape.json_decode(user_json)

	class MainHandler(BaseHandler):
	@tornado.web.authenticated
	def get(self):
	name = tornado.escape.xhtml_escape(self.current_user["name"])
	self.write("Hello, " + name)
	self.write("<br><br><a href=\"/auth/logout\">Log out</a>")


	class AuthHandler(BaseHandler, tornado.auth.GoogleMixin):
	@tornado.web.asynchronous
	def get(self):
	if self.get_argument("openid.mode", None):
	self.get_authenticated_user(self.async_callback(self._on_auth))
	return
	# self.authenticate_redirect()
	self.authorize_redirect("http://www.google.com/m8/feeds/", "http://localhost:8888/auth/login", ax_attrs=["name","email","username"])

	def _on_auth(self, user):
	if not user:
	raise tornado.web.HTTPError(500, "Google auth failed")
	self.set_secure_cookie("user", tornado.escape.json_encode(user))
	logging.error(user)
	self.redirect("/")

	class LogoutHandler(BaseHandler):
	def get(self):
	self.clear_cookie("user")
	self.redirect("/")

	def main():
	tornado.options.parse_command_line()
	http_server = tornado.httpserver.HTTPServer(Application())
	http_server.listen(options.port)
	tornado.ioloop.IOLoop.instance().start()


	if __name__ == "__main__":
	main()