Accessing authenticated user from Bokeh app


I am trying to access the identify of the authenticated user within a Bokeh app. I have setup OAuth authentication by implementing the get_user, LoginHandler and login_url and the authentication process works, but I want to get access to the authenticated user within the context of the Bokeh app as it is used in data request.

Looking at the curdoc().session_context only the logout_url information is available and the request_handler that is used in get_user() I cannot find available in the context of the Bokeh app.

Is there a way to get the access to the user provided by the auth module in the Bokeh app?

cc @Philipp_Rudiger

AFAIK it would be up to your auth handler to add headers or cookies to the request, which would then be made available in curdoc().session_context.request Bokeh does not enforce any particular policy or scheme here because different users want different things.

Yes, the cookies are there and I could probably get the user info info from that, but it appears a bit cumbersome as I would have to copy the get_secure_cookie() implementation from Tornado to get it out.

If there isn’t a recommended way of doing this I am fine with that, I just didn’t want to hack something in if there was an built-in way of getting the result of get_user() inside of the Bokeh app.

@Oystein_Torget There’s not currently. Finding a way to expose get_secure_cookie seems reasonable to look into though, so please feel free to open a GitHub Issue about it.

Adding the following to file of the Bokeh app works to get the user given that the BOKEH_COOKIE_SECRET is set in the environment, the user cookie is name “user” and set using set_secure_cookie in the LoginHandler.

from tornado.web import decode_signed_value
def get_user():
    user = decode_signed_value(
    return user
1 Like

@Oystein_Torget This would probably be a nice note to add to the docs in case you want to make a GitHub Issue with that information.

I added an issue here: [FEATURE] Add standard way for LoginHandler to add user information available to the Bokeh app · Issue #11229 · bokeh/bokeh · GitHub

If would be interesting to see how it could be combined with some kind of Bokeh auth provider package similar to what the Panel project provides for different OAuth providers.

1 Like