bstein-dev-home/backend/atlas_portal/routes/auth_config.py

from __future__ import annotations

from typing import Any
from urllib.parse import quote

from flask import jsonify, request

from .. import settings


def register(app) -> None:
    @app.route("/api/auth/config", methods=["GET"])
    def auth_config() -> Any:
        if not settings.KEYCLOAK_ENABLED:
            return jsonify({"enabled": False})

        issuer = settings.KEYCLOAK_ISSUER
        public_origin = request.host_url.rstrip("/")
        redirect_uri = quote(f"{public_origin}/", safe="")
        login_url = (
            f"{issuer}/protocol/openid-connect/auth"
            f"?client_id={quote(settings.KEYCLOAK_CLIENT_ID, safe='')}"
            f"&redirect_uri={redirect_uri}"
            f"&response_type=code"
            f"&scope=openid"
        )
        reset_url = (
            f"{issuer}/login-actions/reset-credentials"
            f"?client_id={quote(settings.KEYCLOAK_CLIENT_ID, safe='')}"
            f"&redirect_uri={redirect_uri}"
        )
        account_url = f"{issuer}/account"
        account_password_url = f"{account_url}/#/security/signingin"

        return jsonify(
            {
                "enabled": True,
                "url": settings.KEYCLOAK_URL,
                "realm": settings.KEYCLOAK_REALM,
                "client_id": settings.KEYCLOAK_CLIENT_ID,
                "login_url": login_url,
                "reset_url": reset_url,
                "account_url": account_url,
                "account_password_url": account_password_url,
            }
        )
portal: modularize backend and add request code status 2026-01-01 23:17:19 -03:00			`from __future__ import annotations`

			`from typing import Any`
			`from urllib.parse import quote`

			`from flask import jsonify, request`

			`from .. import settings`


			`def register(app) -> None:`
			`@app.route("/api/auth/config", methods=["GET"])`
			`def auth_config() -> Any:`
			`if not settings.KEYCLOAK_ENABLED:`
			`return jsonify({"enabled": False})`

			`issuer = settings.KEYCLOAK_ISSUER`
			`public_origin = request.host_url.rstrip("/")`
			`redirect_uri = quote(f"{public_origin}/", safe="")`
			`login_url = (`
			`f"{issuer}/protocol/openid-connect/auth"`
			`f"?client_id={quote(settings.KEYCLOAK_CLIENT_ID, safe='')}"`
			`f"&redirect_uri={redirect_uri}"`
			`f"&response_type=code"`
			`f"&scope=openid"`
			`)`
portal: link Keycloak reset-credentials 2026-01-01 23:40:21 -03:00			`reset_url = (`
			`f"{issuer}/login-actions/reset-credentials"`
			`f"?client_id={quote(settings.KEYCLOAK_CLIENT_ID, safe='')}"`
			`f"&redirect_uri={redirect_uri}"`
			`)`
portal: polish password links and request copy 2026-01-02 13:06:52 -03:00			`account_url = f"{issuer}/account"`
			`account_password_url = f"{account_url}/#/security/signingin"`
portal: modularize backend and add request code status 2026-01-01 23:17:19 -03:00
			`return jsonify(`
			`{`
			`"enabled": True,`
			`"url": settings.KEYCLOAK_URL,`
			`"realm": settings.KEYCLOAK_REALM,`
			`"client_id": settings.KEYCLOAK_CLIENT_ID,`
			`"login_url": login_url,`
portal: link Keycloak reset-credentials 2026-01-01 23:40:21 -03:00			`"reset_url": reset_url,`
portal: polish password links and request copy 2026-01-02 13:06:52 -03:00			`"account_url": account_url,`
			`"account_password_url": account_password_url,`
portal: modularize backend and add request code status 2026-01-01 23:17:19 -03:00			`}`
			`)`