By default to use access_token if hass.auth.active (#15212)

* Force to use access_token if hass.auth.active * Not allow Basic auth with api_password if hass.auth.active * Block websocket api_password auth when hass.auth.active * Add legacy_api_password auth provider * lint * lint
2025-11-09 02:49:40 +00:00 · 2018-06-30 19:31:36 -07:00
parent 279fd39677
commit 63b28aa39d
8 changed files with 468 additions and 83 deletions
--- a/homeassistant/auth.py
+++ b/homeassistant/auth.py
@@ -279,6 +279,18 @@ class AuthManager:
        """Return if any auth providers are registered."""
        return bool(self._providers)

+    @property
+    def support_legacy(self):
+        """
+        Return if legacy_api_password auth providers are registered.
+
+        Should be removed when we removed legacy_api_password auth providers.
+        """
+        for provider_type, _ in self._providers:
+            if provider_type == 'legacy_api_password':
+                return True
+        return False
+
    @property
    def async_auth_providers(self):
        """Return a list of available auth providers."""
@@ -565,7 +577,7 @@ class AuthStore:
                client_id=rt_dict['client_id'],
                created_at=dt_util.parse_datetime(rt_dict['created_at']),
                access_token_expiration=timedelta(
-                    rt_dict['access_token_expiration']),
+                    seconds=rt_dict['access_token_expiration']),
                token=rt_dict['token'],
            )
            refresh_tokens[token.id] = token