def auth_token(request, extra_headers=None):
headers = []
if 'origin' in request.headers:
headers.extend([
(_ac + 'Allow-Origin', request.headers['origin']),
(_ac + 'Allow-Credentials', 'true'),
(_ac + 'Expose-Headers', 'Location, Content-Type, Content-Length'),
])
if extra_headers:
headers.extend(extra_headers)
user_id = authenticated_userid(request)
payload = {
'consumerKey': 'assembl', 'userId': (user_id or Everyone), 'ttl': 86400
}
token = encode_token(payload, request.registry.settings['session.secret'])
return Response(token, 200, headers, content_type='text/plain', charset="ascii")
评论列表
文章目录
