-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathaccount_service.py
203 lines (178 loc) · 7.59 KB
/
account_service.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
from __future__ import print_function # Python 2/3 compatibility
import boto3
import botocore
from boto3.dynamodb.conditions import Key
from bitcoinlib.wallet import P2PKHBitcoinAddress
from datetime import datetime
import hashlib
import os
import log_handlers
import random
import time
from bitcoinlib.core.key import CPubKey
import configuration
import resource_factory
config = configuration.NotaryConfiguration('./notaryconfig.ini')
def to_bytes(x): return x if bytes == str else x.encode()
i2b = chr if bytes == str else lambda x: bytes([x])
b2i = ord if bytes == str else lambda x: x
NONCE_LEN = 16
# Expiration delay (in seconds)
EXPIRATION_DELAY = 600
def has_expired(created):
delta = datetime.now() - created
return delta.total_seconds() > EXPIRATION_DELAY
def generate_nonce():
entropy = str(os.urandom(32)) + str(random.randrange(2**256)) + str(int(time.time())**7)
return hashlib.sha256(to_bytes(entropy)).hexdigest()[:NONCE_LEN]
def check_account(account):
if (account is None) or (not account['public_key']) or (not account['email']):
return False
else:
return True
class AccountService(object):
def __init__(self, wallet, logger):
# Initializes some dictionaries to store accounts
self.wallet = wallet
self.logger = logger
self.dynamodb = resource_factory.get_dynamodb(config)
try:
self.account_table = self.dynamodb.Table('Account')
self.logger.debug("Account Table is %s" % self.account_table.table_status)
except botocore.exceptions.ClientError as e:
self.logger.exception("Problem accessing account table %s " % e.response)
if e.response['Error']['Code'] == 'ResourceNotFoundException':
self.create_account_table()
def create_account_table(self):
try:
self.account_table = self.dynamodb.create_table(
TableName='Account',
KeySchema=[
{
'AttributeName': 'address',
'KeyType': 'HASH'
}
],
AttributeDefinitions=[
{
'AttributeName': 'address',
'AttributeType': 'S'
},
],
ProvisionedThroughput={
'ReadCapacityUnits': 10,
'WriteCapacityUnits': 10
}
)
self.logger.debug("Account Table is %s" % self.account_table.table_status)
except botocore.exceptions.ClientError as e:
self.logger.exception("Houston, we have a problem: %s " % e.response)
def create_account(self, address, account):
if not check_account(account):
return False
if self.get_account_by_address(address) is None:
client_public_key = account['public_key']
decoded = client_public_key.decode("hex")
pubkey = CPubKey(decoded)
raw_address = P2PKHBitcoinAddress.from_pubkey(pubkey)
derived_address = str(raw_address)
if derived_address == address:
account['nonce'] = generate_nonce()
account['date_created'] = datetime.now().isoformat(' ')
account['account_status'] = 'PENDING'
account['address'] = str(address)
try:
account['file_encryption_key'] = self.wallet.generate_encrypted_private_key()
self.account_table.put_item(Item=account)
except botocore.exceptions.ClientError as e:
self.logger.exception("Houston, we have a problem: %s " % e.response)
return self.send_confirmation_email(account)
else:
return None
else:
return None
def send_confirmation_email(self, account):
server_url = config.get_server_url()
confirmation_url = server_url+'/api/v1/account/'+account['address']+'/'+account['nonce']
try:
client = boto3.client('ses', region_name='us-east-1')
response = client.send_email(
Source=config.get_sender_email(),
Destination={
'ToAddresses': [account['email']
]
},
Message={
'Subject': {
'Data': 'Please confirm your govern8r account',
'Charset': 'iso-8859-1'
},
'Body': {
'Text': {
'Data': 'To complete your registration with govern8r please click the link',
'Charset': 'iso-8859-1'
},
'Html': {
'Data': confirmation_url,
'Charset': 'iso-8859-1'
}
}
}
)
except botocore.exceptions.ClientError as e:
self.logger.exception("Failed send confirmation email %s" % e.response)
self.logger.debug("Confirmation URL %s " % confirmation_url)
return response
def update_account_status(self, account, new_status):
try:
self.account_table.update_item(
Key={
'address': account['address']
},
UpdateExpression="set account_status = :_status",
ExpressionAttributeValues={
':_status': new_status
},
ReturnValues="UPDATED_NEW"
)
except botocore.exceptions.ClientError as e:
self.logger.exception("Failed to update account status %s" % e.response)
def update_account_nonce(self, account, new_nonce):
try:
self.account_table.update_item(
Key={
'address': account['address']
},
UpdateExpression="set nonce = :_nonce",
ExpressionAttributeValues={
':_nonce': new_nonce
},
ReturnValues="UPDATED_NEW"
)
except botocore.exceptions.ClientError as e:
self.logger.exception("Failed to update account nonce %s" % e.response)
def get_challenge(self, address):
account = self.get_account_by_address(address)
if account is None or account['account_status'] != 'CONFIRMED':
return None
else:
new_nonce = generate_nonce()
account['nonce'] = new_nonce
self.update_account_nonce(account, new_nonce)
return account
def confirm_account(self, address, nonce):
account = self.get_account_by_address(address)
if account is not None and account['nonce'] == nonce and account['account_status'] != 'CONFIRMED':
self.update_account_status(account, 'CONFIRMED')
return True
else:
return False
def get_account_by_address(self, address):
try:
response = self.account_table.query(KeyConditionExpression=Key('address').eq(address))
except botocore.exceptions.ClientError as e:
self.logger.exception("Failed read account table %s" % e.response)
if len(response['Items']) == 0:
return None
else:
return response['Items'][0]