pluto/handler/revolut.py

# Twisted/Klein imports
from twisted.logger import Logger

# Other library imports
from json import dumps
from json.decoder import JSONDecodeError
import requests
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.backends import default_backend
import jwt

# Project imports
from settings import settings


class Revolut(object):
    """
    Class to handle Revolut API calls.
    """

    def __init__(self, irc):
        self.log = Logger("revolut")
        self.token = None
        self.irc = irc

    def setup_auth(self):
        self.create_new_jwt()
        self.get_access_token()

    def create_new_jwt(self):
        payload = {
            "iss": settings.Revolut.Domain,
            "sub": settings.Revolut.ClientID,
            "aud": "https://revolut.com",
            "exp": int(settings.Revolut.Expiry),
        }
        with open(settings.Revolut.PrivateKey, "rb") as f:
            pem_bytes = f.read()

        # payload = {jwt_header, jwt_body}
        private_key = serialization.load_pem_private_key(pem_bytes, password=None, backend=default_backend())
        encoded = jwt.encode(payload, private_key, algorithm="RS256")
        settings.Revolut.JWT = encoded
        settings.write()

    def get_access_token(self):
        headers = {"Content-Type": "application/x-www-form-urlencoded"}
        data = {
            "grant_type": "authorization_code",
            "code": settings.Revolut.AuthCode,
            "client_id": settings.Revolut.ClientID,
            "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
            "client_assertion": settings.Revolut.JWT,
        }
        r = requests.post(f"{settings.Revolut.Base}/auth/token", data=data, headers=headers)
        try:
            parsed = r.json()
        except JSONDecodeError:
            return False
        if r.status_code == 200:
            try:
                settings.Revolut.RefreshToken = parsed["refresh_token"]
                settings.Revolut.SetupToken = "0"
                settings.write()
                self.log.info("Refreshed refresh token: {refresh_token}", refresh_token=settings.Revolut.RefreshToken)
                self.token = parsed["access_token"]
                self.log.info("Refreshed access token: {access_token}", access_token=self.token)
            except KeyError:
                self.log.error(f"Token authorization didn't contain refresh or access token: {parsed}", parsed=parsed)
                return False
        else:
            self.log.error(f"Cannot refresh token: {parsed}", parsed=parsed)
            return False

    def get_new_token(self):
        headers = {"Content-Type": "application/x-www-form-urlencoded"}
        data = {
            "grant_type": "refresh_token",
            "refresh_token": settings.Revolut.RefreshToken,
            "client_id": settings.Revolut.ClientID,
            "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
            "client_assertion": settings.Revolut.JWT,
        }
        r = requests.post(f"{settings.Revolut.Base}/auth/token", data=data, headers=headers)
        try:
            parsed = r.json()
        except JSONDecodeError:
            return False
        if r.status_code == 200:
            if "access_token" in parsed.keys():
                self.token = parsed["access_token"]
                self.log.info("Refreshed access token: {access_token}", access_token=self.token)
                return True
            else:
                self.log.error(f"Token refresh didn't contain access token: {parsed}", parsed=parsed)
                return False
        else:
            self.log.error(f"Cannot refresh token: {parsed}", parsed=parsed)
            return False

    def setup_webhook(self):
        webhooks = self.get_webhooks()
        if "url" in webhooks.keys():
            if webhooks["url"] == settings.Revolut.WebhookURL:
                self.log.info("Webhook exists - skipping setup: {url}", url=webhooks["url"])
                return True  # Webhook already exists
        self.log.info("Setting up webhook: {url}", url=settings.Revolut.WebhookURL)
        headers = {"Authorization": f"Bearer {self.token}"}
        data = {"url": settings.Revolut.WebhookURL}
        r = requests.post(f"{settings.Revolut.Base}/webhook", data=dumps(data), headers=headers)
        if r.status_code == 204:
            self.log.info("Set up webhook: {url}", url=settings.Revolut.WebhookURL)
            return True
        else:
            parsed = r.json()
            self.log.info("Failed setting up webhook: {parsed}", parsed=parsed)

    def get_webhooks(self):
        headers = {"Authorization": f"Bearer {self.token}"}
        r = requests.get(f"{settings.Revolut.Base}/webhook", headers=headers)
        if r.status_code == 200:
            parsed = r.json()
            return parsed
Move code into classes 3 years ago			`# Twisted/Klein imports`
			`from twisted.logger import Logger`

			`# Other library imports`
			`from json import dumps`
Handle invalid JSON in Revolut 3 years ago			`from json.decoder import JSONDecodeError`
Move code into classes 3 years ago			`import requests`
Implement Revolut refresh token retrieval 3 years ago			`from cryptography.hazmat.primitives import serialization`
			`from cryptography.hazmat.backends import default_backend`
			`import jwt`
Move code into classes 3 years ago
			`# Project imports`
			`from settings import settings`


			`class Revolut(object):`
			`"""`
			`Class to handle Revolut API calls.`
			`"""`

Implement Revolut refresh token retrieval 3 years ago			`def __init__(self, irc):`
Move code into classes 3 years ago			`self.log = Logger("revolut")`
Handle invalid JSON in Revolut 3 years ago			`self.token = None`
Implement Revolut refresh token retrieval 3 years ago			`self.irc = irc`

			`def setup_auth(self):`
			`self.create_new_jwt()`
			`self.get_access_token()`

			`def create_new_jwt(self):`
			`payload = {`
			`"iss": settings.Revolut.Domain,`
			`"sub": settings.Revolut.ClientID,`
			`"aud": "https://revolut.com",`
			`"exp": int(settings.Revolut.Expiry),`
			`}`
			`with open(settings.Revolut.PrivateKey, "rb") as f:`
			`pem_bytes = f.read()`

			`# payload = {jwt_header, jwt_body}`
			`private_key = serialization.load_pem_private_key(pem_bytes, password=None, backend=default_backend())`
			`encoded = jwt.encode(payload, private_key, algorithm="RS256")`
			`settings.Revolut.JWT = encoded`
			`settings.write()`

			`def get_access_token(self):`
			`headers = {"Content-Type": "application/x-www-form-urlencoded"}`
			`data = {`
			`"grant_type": "authorization_code",`
			`"code": settings.Revolut.AuthCode,`
			`"client_id": settings.Revolut.ClientID,`
			`"client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",`
			`"client_assertion": settings.Revolut.JWT,`
			`}`
			`r = requests.post(f"{settings.Revolut.Base}/auth/token", data=data, headers=headers)`
			`try:`
			`parsed = r.json()`
			`except JSONDecodeError:`
			`return False`
			`if r.status_code == 200:`
			`try:`
			`settings.Revolut.RefreshToken = parsed["refresh_token"]`
			`settings.Revolut.SetupToken = "0"`
			`settings.write()`
			`self.log.info("Refreshed refresh token: {refresh_token}", refresh_token=settings.Revolut.RefreshToken)`
			`self.token = parsed["access_token"]`
			`self.log.info("Refreshed access token: {access_token}", access_token=self.token)`
			`except KeyError:`
			`self.log.error(f"Token authorization didn't contain refresh or access token: {parsed}", parsed=parsed)`
			`return False`
			`else:`
			`self.log.error(f"Cannot refresh token: {parsed}", parsed=parsed)`
			`return False`
Move code into classes 3 years ago
			`def get_new_token(self):`
			`headers = {"Content-Type": "application/x-www-form-urlencoded"}`
			`data = {`
			`"grant_type": "refresh_token",`
Handle invalid JSON in Revolut 3 years ago			`"refresh_token": settings.Revolut.RefreshToken,`
			`"client_id": settings.Revolut.ClientID,`
Move code into classes 3 years ago			`"client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",`
Handle invalid JSON in Revolut 3 years ago			`"client_assertion": settings.Revolut.JWT,`
Move code into classes 3 years ago			`}`
Handle invalid JSON in Revolut 3 years ago			`r = requests.post(f"{settings.Revolut.Base}/auth/token", data=data, headers=headers)`
			`try:`
			`parsed = r.json()`
			`except JSONDecodeError:`
			`return False`
Move code into classes 3 years ago			`if r.status_code == 200:`
			`if "access_token" in parsed.keys():`
Handle invalid JSON in Revolut 3 years ago			`self.token = parsed["access_token"]`
Implement Revolut refresh token retrieval 3 years ago			`self.log.info("Refreshed access token: {access_token}", access_token=self.token)`
			`return True`
Move code into classes 3 years ago			`else:`
			`self.log.error(f"Token refresh didn't contain access token: {parsed}", parsed=parsed)`
			`return False`
			`else:`
			`self.log.error(f"Cannot refresh token: {parsed}", parsed=parsed)`
			`return False`

			`def setup_webhook(self):`
Check before setting up Revolut callback URL 3 years ago			`webhooks = self.get_webhooks()`
			`if "url" in webhooks.keys():`
			`if webhooks["url"] == settings.Revolut.WebhookURL:`
			`self.log.info("Webhook exists - skipping setup: {url}", url=webhooks["url"])`
			`return True # Webhook already exists`
Handle invalid JSON in Revolut 3 years ago			`self.log.info("Setting up webhook: {url}", url=settings.Revolut.WebhookURL)`
			`headers = {"Authorization": f"Bearer {self.token}"}`
			`data = {"url": settings.Revolut.WebhookURL}`
			`r = requests.post(f"{settings.Revolut.Base}/webhook", data=dumps(data), headers=headers)`
Move code into classes 3 years ago			`if r.status_code == 204:`
Handle invalid JSON in Revolut 3 years ago			`self.log.info("Set up webhook: {url}", url=settings.Revolut.WebhookURL)`
Check before setting up Revolut callback URL 3 years ago			`return True`
Move code into classes 3 years ago			`else:`
			`parsed = r.json()`
			`self.log.info("Failed setting up webhook: {parsed}", parsed=parsed)`
Check before setting up Revolut callback URL 3 years ago
			`def get_webhooks(self):`
			`headers = {"Authorization": f"Bearer {self.token}"}`
			`r = requests.get(f"{settings.Revolut.Base}/webhook", headers=headers)`
			`if r.status_code == 200:`
			`parsed = r.json()`
			`return parsed`