Update app.py

app.py

@@ -19,7 +19,8 @@ from cryptography.hazmat.primitives.asymmetric import utils
 import base64
 import json
 import datetime
-
+import pylru
+token_queue = pylru.lrucache(1000)
 def load_public_key_from_file(file_path):
     with open(file_path, "rb") as key_file:
         public_key = serialization.load_pem_public_key(
@@ -61,11 +62,17 @@ def swap_face(source_file, target_file, doFaceEnhancer, skey, key):
     signature = base64.b64decode(skey["s"])
     if not skey or not key or not verify_signature(public_key, skey["t"] + "_" + key, signature):
         raise Exception("verify authkey failed.")
-    timestamp_requested = int(skey["t"])
+    timestamp_requested = float(skey["t"])
     timestamp_now = int(datetime.datetime.utcnow().replace(tzinfo=datetime.timezone.utc).timestamp())
     if timestamp_now - timestamp_requested > 600:
         raise Exception(f"authkey timeout, {timestamp_now - timestamp_requested}")
     print(f"authkey pass, {timestamp_now - timestamp_requested}")
+
+    token = skey["t"]
+    token_cache = token_queue.get(token, None)
+    if token_cache:
+        raise Exception(f"duplicated token, {token_cache}")
+    token_queue[token] = True
     source_path = "input.jpg"
     target_path = "target.jpg"