Skip to content

Django

Using with Django

Let's create authorization middleware.

from django.conf import settings
from telegram_webapp_auth.auth import TelegramAuthenticator
from telegram_webapp_auth.errors import InvalidInitDataError

class TWAAuthorizationMiddleware:
    def __init__(self, get_response):
        self.get_response = get_response
        self._telegram_authenticator = TelegramAuthenticator(settings.TELEGRAM_SECRET_KEY)

    def __call__(self, request):
        # Code to be executed for each request before
        # the view (and later middleware) are called.
        auth_cred = request.headers.get('Authorization')

        try:
            user = self._telegram_authenticator.verify_token(auth_cred)
        except InvalidInitDataError:
            # TODO: handle error
            pass

        current_user = User.objects.filter(tg_id=user.id).first()
        if not current_user:
            # TODO: handle error
            pass

        request.user = current_user  # Associate current user with requests object

        response = self.get_response(request)

        # Code to be executed for each request/response after
        # the view is called.

        return response

To use TWAAuthorizationMiddleware, add it to your MIDDLEWARE setting in settings.py: 

MIDDLEWARE = [
    # other middleware classes
    'path.to.TWAAuthorizationMiddleware',
]