python - 将 Okta OIDC 与 Dash 应用程序集成
问题描述
我正在尝试将 Okta OIDC 身份验证和 Dash 集成到 Flask 应用程序中,这样用户只有在使用我们组织的 Okta SSO 登录后才能查看 Dash 应用程序
试:
from flask import Blueprint, Flask, jsonify, redirect, render_template_string, url_for
from flask_oidc import OpenIDConnect
from okta import UsersClient
import dash
oidc = OpenIDConnect()
okta_client = UsersClient("https://dev-XXXXXX.okta.com",
"somesecret")
app = Flask(__name__)
app.config.from_mapping(
SECRET_KEY="testkey",
OIDC_CLIENT_SECRETS="/app/appname/client_secrets.json",
OIDC_COOKIE_SECURE= False,
OIDC_CALLBACK_ROUTE="/oidc/callback",
OIDC_SCOPES=["openid", "email", "profile"],
OIDC_ID_TOKEN_COOKIE_NAME="oidc_token",
DEBUG_TB_INTERCEPT_REDIRECTS = False)
oidc.init_app(app)
dash_app.layout = layout.layout
callbacks.register_dash_callbacks(dash_app)
dash_app.run_server(debug=True)
@app.route("/" , methods=["GET"])
@oidc.require_login
def redirect_to_app():
return redirect(url_for(dash_app.config.requests_pathname_prefix))
给了我以下内容:
UnicodeDecodeError: 'utf-8' codec can't decode byte 0x8b in position 1: invalid start byte
该应用程序运行良好,并且可以很好地集成到 Flask 应用程序中。我试过研究,但找不到任何有用的东西。
我还可以通过将其分成如下蓝图来使其工作:
home_blueprint = Blueprint("home", __name__, url_prefix="/")
@home_blueprint.route("/" , methods=["GET"])
@oidc.require_login
def index():
return redirect(url_for('/dash/'))
但是,在localhost:5000/dash/未经授权的情况下,仍然可以直接通过该应用程序访问该应用程序。
预先感谢您的帮助。
编辑:这里是完整的追溯:
Traceback (most recent call last):
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask/app.py", line 2309, in __call__
return self.wsgi_app(environ, start_response)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/vendor/wrapt/wrappers.py", line 602, in __call__
return self._self_wrapper(self.__wrapped__, self._self_instance,
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/contrib/flask/helpers.py", line 20, in wrapper
return func(pin, wrapped, instance, args, kwargs)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/contrib/flask/patch.py", line 331, in traced_wsgi_app
return wrapped(environ, start_response)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask/app.py", line 2295, in wsgi_app
response = self.handle_exception(e)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/vendor/wrapt/wrappers.py", line 602, in __call__
return self._self_wrapper(self.__wrapped__, self._self_instance,
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/contrib/flask/helpers.py", line 20, in wrapper
return func(pin, wrapped, instance, args, kwargs)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/contrib/flask/helpers.py", line 29, in wrapper
return wrapped(*args, **kwargs)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask/app.py", line 1741, in handle_exception
reraise(exc_type, exc_value, tb)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask/_compat.py", line 35, in reraise
raise value
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask/app.py", line 2292, in wsgi_app
response = self.full_dispatch_request()
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask/app.py", line 1816, in full_dispatch_request
return self.finalize_request(rv)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask/app.py", line 1833, in finalize_request
response = self.process_response(response)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/vendor/wrapt/wrappers.py", line 602, in __call__
return self._self_wrapper(self.__wrapped__, self._self_instance,
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/contrib/flask/helpers.py", line 20, in wrapper
return func(pin, wrapped, instance, args, kwargs)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/contrib/flask/helpers.py", line 29, in wrapper
return wrapped(*args, **kwargs)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask/app.py", line 2112, in process_response
response = handler(response)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/vendor/wrapt/wrappers.py", line 554, in __call__
return self._self_wrapper(self.__wrapped__, instance,
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/ddtrace/contrib/flask/wrappers.py", line 23, in trace_func
return wrapped(*args, **kwargs)
File "/pyenv/versions/3.8.0/envs/customer-feedback-hub/lib/python3.8/site-packages/flask_debugtoolbar/__init__.py", line 202, in process_response
response_html = response.data.decode(response.charset)
UnicodeDecodeError: 'utf-8' codec can't decode byte 0x8b in position 1: invalid start byte
解决方案
好的,所以我找到了这篇文章,最终通过替换login_required为oidc.require_login. 原来无效的起始字节与我遇到的另一个错误有关。
app = Flask(__name__)
app.config.from_mapping(
SECRET_KEY="testkey",
OIDC_CLIENT_SECRETS="XXX",
OIDC_COOKIE_SECURE= False,
OIDC_CALLBACK_ROUTE="/oidc/callback",
OIDC_SCOPES=["openid", "email", "profile"],
OIDC_ID_TOKEN_COOKIE_NAME="oidc_token",
DEBUG_TB_INTERCEPT_REDIRECTS = False
)
oidc.init_app(app)
dash_app = dash.Dash(__name__,
server = app,
url_base_pathname='/dash/'
)
for view_func in app.view_functions:
if view_func.startswith(dash_app.config['url_base_pathname']):
app.view_functions[view_func] = oidc.require_login(app.view_functions[view_func])
dash_app.layout = html.Div([intro_div, navbar, exec_dashboard, body])
register_dash_callbacks(dash_app)
推荐阅读
- android - 将数据从我的应用程序发送到 Stm32 蓝牙设备 - Kotlin
- python - 循环中的“-1”是什么意思
- mongodb - 在 mongo 事务中保存许多实体会导致 WriteConflict
- android - notifyDataSetChanged 在使用套接字时使 viewpager 幻灯片滞后
- selenium - Python selenium 动作链
- python - 统计函数中的空数据框
- python - 图像上的openCV文本 - 背景图像不清晰
- python - 尝试使用 send_config_set 时无法在 Netmiko 中进入配置模式
- python - 排放概率表的最佳数据结构是什么?
- android - 在平面设计中使用国家国旗表情符号