Made demo-client.py to make tests with kraken_fetch.py. Started work on authentication with ecdsa public/private keys to kraken_fetch.py:s api part.

This commit is contained in:
kalzu 2022-12-28 22:49:37 +02:00
parent dd86cecec2
commit ab3327464c

View File

@ -1,15 +1,20 @@
#!/usr/bin/python3 #!/usr/bin/python3
import krakenex, math import krakenex, math
import json, sqlite3 import json, sqlite3, binascii
import requests, os, time import requests, os, time
import threading import threading, ecdsa
from hashlib import sha256 from hashlib import sha256
from flask import Flask, request from flask import Flask, request
database = "btc_ohlc.db" database = "btc_ohlc.db"
app = Flask(__name__) app = Flask(__name__)
## Add your public key here
user_publickeys = {
"kalzu": 'f1debc13fb21fe0eee54525aa4f8aae5733b201c755edaa55f8893c90aa375b261a62eaa3110651ac5d7705d402581256a37508b0a1ca28bd919ea44710d9c88'
}
database_lock = threading.Lock() database_lock = threading.Lock()
# Empty response json # Empty response json
@ -18,7 +23,7 @@ empty_json = json.dumps(empty_dict)
def Checkthedatabase(): def Checkthedatabase():
## Some sanity for the database ## Some sanity for the database
# check if btc_timeseries.db database file exists # check if the database file exists
if not os.path.exists(database): if not os.path.exists(database):
db = sqlite3.connect(database) db = sqlite3.connect(database)
@ -226,12 +231,36 @@ def get_the_data():
print("fetches done at", time.time(), "sleeping now for 290") print("fetches done at", time.time(), "sleeping now for 290")
time.sleep(290) time.sleep(290)
def check_auth(text, signature):
print(text)
print(signature)
sig_bytes = bytes.fromhex(signature)
access_granted = 0
## We will iterate over all user keys to determ who is we are talking to and should they have access
for key, value in user_publickeys.items():
## What f*ck even is this?
vk = ecdsa.VerifyingKey.from_string(sig_bytes.fromhex(value), curve=ecdsa.SECP256k1)
if vk.verify(sig_bytes, text):
print('user is', key)
access_granted = 1
if access_granted != 0:
return True
else:
return False
@app.route('/') @app.route('/')
def get_data(): def get_data():
# Get the time (t) argument from the url" # Get the time (t) argument from the url"
query_timestamp = request.args.get('t') query_timestamp = request.args.get('t')
# Should we make output pretty for curl users?
query_pretty = request.args.get('pretty') query_pretty = request.args.get('pretty')
# Authentication header, signatured the query with private key of a user
signature = request.headers.get('auth')
get_url = request.url
if not check_auth(get_url, signature):
return 'Error with Authentication', 403
database_lock.acquire() database_lock.acquire()
db = sqlite3.connect(database) db = sqlite3.connect(database)
if query_timestamp: if query_timestamp: