a2a-lite 0.2.1__tar.gz → 0.2.2__tar.gz

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: a2a-lite
-Version: 0.2.1
+Version: 0.2.2
 Summary: Simplified wrapper for Google's A2A Protocol SDK
 Author: A2A Lite Contributors
 License-Expression: Apache-2.0
@@ -27,6 +27,8 @@ Provides-Extra: dev
 Requires-Dist: httpx>=0.25; extra == 'dev'
 Requires-Dist: pytest-asyncio>=0.21; extra == 'dev'
 Requires-Dist: pytest>=7.0; extra == 'dev'
+Provides-Extra: oauth
+Requires-Dist: pyjwt[crypto]>=2.0; extra == 'oauth'
 Description-Content-Type: text/markdown
 
 # A2A Lite - Python

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/pyproject.toml

@@ -1,6 +1,6 @@
 [project]
 name = "a2a-lite"
-version = "0.2.1"
+version = "0.2.2"
 description = "Simplified wrapper for Google's A2A Protocol SDK"
 readme = "README.md"
 license = "Apache-2.0"
@@ -32,6 +32,9 @@ dependencies = [
 ]
 
 [project.optional-dependencies]
+oauth = [
+    "pyjwt[crypto]>=2.0",
+]
 dev = [
     "pytest>=7.0",
     "pytest-asyncio>=0.21",

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/__init__.py

@@ -102,7 +102,7 @@ from .auth import (
     require_auth,
 )
 
-__version__ = "0.2.1"
+__version__ = "0.2.2"
 
 __all__ = [
     # Core

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/agent.py

@@ -170,11 +170,14 @@ class Agent:
             import typing
             from .tasks import TaskContext as _TaskContext
             from .human_loop import InteractionContext as _InteractionContext
+            from .auth import AuthResult as _AuthResult
 
             needs_task_context = False
             needs_interaction = False
+            needs_auth = False
             task_context_param: str | None = None
             interaction_param: str | None = None
+            auth_param: str | None = None
 
             try:
                 resolved_hints = typing.get_type_hints(func)
@@ -190,6 +193,14 @@ class Agent:
                 elif _is_or_subclass(hint, _InteractionContext):
                     needs_interaction = True
                     interaction_param = param_name
+                elif _is_or_subclass(hint, _AuthResult):
+                    needs_auth = True
+                    auth_param = param_name
+
+            # Also detect require_auth decorator
+            if getattr(func, '__requires_auth__', False) and not needs_auth:
+                needs_auth = True
+                auth_param = auth_param or "auth"
 
             # Extract schemas
             input_schema, output_schema = extract_function_schemas(func)
@@ -205,8 +216,10 @@ class Agent:
                 is_streaming=is_streaming,
                 needs_task_context=needs_task_context,
                 needs_interaction=needs_interaction,
+                needs_auth=needs_auth,
                 task_context_param=task_context_param,
                 interaction_param=interaction_param,
+                auth_param=auth_param,
             )
 
             self._skills[skill_name] = skill_def
@@ -383,11 +396,14 @@ class Agent:
         ))
 
         # Run startup hooks
-        for hook in self._on_startup:
-            if asyncio.iscoroutinefunction(hook):
-                asyncio.get_event_loop().run_until_complete(hook())
-            else:
-                hook()
+        async def _run_startup():
+            for hook in self._on_startup:
+                if asyncio.iscoroutinefunction(hook):
+                    await hook()
+                else:
+                    hook()
+        if self._on_startup:
+            asyncio.run(_run_startup())
 
         # Enable discovery if requested
         if enable_discovery:
@@ -434,11 +450,14 @@ class Agent:
             )
         finally:
             # Run shutdown hooks
-            for hook in self._on_shutdown:
-                if asyncio.iscoroutinefunction(hook):
-                    asyncio.get_event_loop().run_until_complete(hook())
-                else:
-                    hook()
+            async def _run_shutdown():
+                for hook in self._on_shutdown:
+                    if asyncio.iscoroutinefunction(hook):
+                        await hook()
+                    else:
+                        hook()
+            if self._on_shutdown:
+                asyncio.run(_run_shutdown())
 
             # Unregister discovery
             if self._discovery:

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/auth.py

@@ -222,7 +222,7 @@ class OAuth2Auth(AuthProvider):
             audience="my-agent",
         )
 
-    Requires: pip install pyjwt[crypto]
+    Requires: pip install a2a-lite[oauth]
     """
 
     def __init__(
@@ -277,7 +277,7 @@ class OAuth2Auth(AuthProvider):
 
         except ImportError:
             return AuthResult.failure(
-                "OAuth2 requires pyjwt: pip install pyjwt[crypto]"
+                "OAuth2 requires pyjwt: pip install a2a-lite[oauth]"
             )
         except Exception as e:
             return AuthResult.failure(f"Token validation failed: {str(e)}")

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/cli.py

@@ -75,7 +75,7 @@ version = "0.1.0"
 description = "A2A Agent: {name}"
 requires-python = ">=3.10"
 dependencies = [
-    "a2a-lite>=0.2.1",
+    "a2a-lite>=0.2.2",
 ]
 '''
     (project_path / "pyproject.toml").write_text(pyproject)

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/decorators.py

@@ -18,8 +18,10 @@ class SkillDefinition:
     is_streaming: bool = False
     needs_task_context: bool = False
     needs_interaction: bool = False
+    needs_auth: bool = False
     task_context_param: Optional[str] = None
     interaction_param: Optional[str] = None
+    auth_param: Optional[str] = None
 
     def to_dict(self) -> Dict[str, Any]:
         """Convert to dictionary for serialization."""

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/executor.py

@@ -59,21 +59,22 @@ class LiteAgentExecutor(AgentExecutor):
         from a2a.utils import new_agent_text_message
 
         try:
-            # Authenticate the request
+            # Authenticate the request (always run to produce auth_result for injection)
+            auth_result = None
             if self.auth_provider:
                 from .auth import AuthRequest, NoAuth
-                if not isinstance(self.auth_provider, NoAuth):
-                    headers = {}
-                    if context.call_context and context.call_context.state:
-                        headers = context.call_context.state.get('headers', {})
-                    auth_request = AuthRequest(headers=headers)
-                    auth_result = await self.auth_provider.authenticate(auth_request)
-                    if not auth_result.authenticated:
-                        error_msg = json.dumps({
-                            "error": auth_result.error or "Authentication failed",
-                        })
-                        await event_queue.enqueue_event(new_agent_text_message(error_msg))
-                        return
+                headers = {}
+                if context.call_context and context.call_context.state:
+                    headers = context.call_context.state.get('headers', {})
+                auth_request = AuthRequest(headers=headers)
+                auth_result = await self.auth_provider.authenticate(auth_request)
+                # Reject unauthenticated requests (unless NoAuth)
+                if not isinstance(self.auth_provider, NoAuth) and not auth_result.authenticated:
+                    error_msg = json.dumps({
+                        "error": auth_result.error or "Authentication failed",
+                    })
+                    await event_queue.enqueue_event(new_agent_text_message(error_msg))
+                    return
 
             # Extract message and parts
             message, parts = self._extract_message_and_parts(context)
@@ -88,9 +89,10 @@ class LiteAgentExecutor(AgentExecutor):
                 message=message,
             )
 
-            # Store parts in metadata for skill access
+            # Store parts and auth result in metadata for skill access
             ctx.metadata["parts"] = parts
             ctx.metadata["event_queue"] = event_queue
+            ctx.metadata["auth_result"] = auth_result
 
             # Define final handler
             async def final_handler(ctx: MiddlewareContext) -> Any:
@@ -173,6 +175,10 @@ class LiteAgentExecutor(AgentExecutor):
             param_name = skill_def.interaction_param or "ctx"
             params[param_name] = interaction_ctx
 
+        if skill_def.needs_auth:
+            param_name = skill_def.auth_param or "auth"
+            params[param_name] = metadata.get("auth_result")
+
         # Call the handler
         handler = skill_def.handler
 
@@ -212,7 +218,8 @@ class LiteAgentExecutor(AgentExecutor):
             # Skip special context types
             from .tasks import TaskContext as _TaskContext
             from .human_loop import InteractionContext as _InteractionContext
-            if _is_or_subclass(param_type, _TaskContext) or _is_or_subclass(param_type, _InteractionContext):
+            from .auth import AuthResult as _AuthResult
+            if _is_or_subclass(param_type, _TaskContext) or _is_or_subclass(param_type, _InteractionContext) or _is_or_subclass(param_type, _AuthResult):
                 continue
 
             # Convert FilePart
@@ -345,7 +352,7 @@ class LiteAgentExecutor(AgentExecutor):
         if asyncio.iscoroutinefunction(handler):
             return await handler(*args, **kwargs)
         else:
-            loop = asyncio.get_event_loop()
+            loop = asyncio.get_running_loop()
             return await loop.run_in_executor(
                 None,
                 lambda: handler(*args, **kwargs)

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/testing.py

@@ -214,7 +214,16 @@ class AgentTestClient:
                 result = await gen
                 results.append(result)
 
-        asyncio.run(run_handler())
+        # Handle both sync and async calling contexts
+        try:
+            asyncio.get_running_loop()
+            # Already in an async context — run in a separate thread
+            import concurrent.futures
+            with concurrent.futures.ThreadPoolExecutor(1) as pool:
+                pool.submit(asyncio.run, run_handler()).result()
+        except RuntimeError:
+            # No running loop — safe to use asyncio.run()
+            asyncio.run(run_handler())
         return results
 
 

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/utils.py

@@ -1,6 +1,7 @@
 """
 Helper functions for A2A Lite.
 """
+import typing
 from typing import Any, Dict, Type, get_origin, get_args, Union
 import inspect
 
@@ -103,7 +104,10 @@ def extract_function_schemas(func) -> tuple[Dict[str, Any], Dict[str, Any]]:
         Tuple of (input_schema, output_schema)
     """
     sig = inspect.signature(func)
-    hints = getattr(func, '__annotations__', {})
+    try:
+        hints = typing.get_type_hints(func)
+    except Exception:
+        hints = getattr(func, '__annotations__', {})
 
     # Build input schema from parameters
     properties = {}

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/src/a2a_lite/webhooks.py

@@ -9,7 +9,7 @@ Simplifies sending notifications when tasks complete:
 """
 from __future__ import annotations
 
-from dataclasses import dataclass
+from dataclasses import dataclass, field
 from typing import Any, Callable, Dict, List, Optional
 import asyncio
 import json
@@ -19,15 +19,11 @@ import json
 class WebhookConfig:
     """Configuration for a webhook endpoint."""
     url: str
-    headers: Dict[str, str] = None
+    headers: Dict[str, str] = field(default_factory=dict)
     retry_count: int = 3
     retry_delay: float = 1.0
     timeout: float = 30.0
 
-    def __post_init__(self):
-        if self.headers is None:
-            self.headers = {}
-
 
 class WebhookClient:
     """

{a2a_lite-0.2.1 → a2a_lite-0.2.2}/tests/test_auth.py

@@ -9,6 +9,7 @@ from a2a_lite.auth import (
     APIKeyAuth,
     BearerAuth,
     CompositeAuth,
+    require_auth,
 )
 
 
@@ -290,3 +291,88 @@ class TestAuthIntegration:
 
         result_text = data.get("result", {}).get("parts", [{}])[0].get("text", "")
         assert "secret: hello" not in result_text
+
+
+class TestRequireAuth:
+    """Test that require_auth decorator receives AuthResult from executor."""
+
+    def test_require_auth_receives_auth_result(self):
+        """Skills decorated with require_auth should receive the AuthResult."""
+        from a2a_lite import Agent
+        from a2a_lite.testing import AgentTestClient
+        from starlette.testclient import TestClient
+        import json
+        from uuid import uuid4
+
+        agent = Agent(
+            name="AuthTest",
+            description="require_auth test",
+            auth=APIKeyAuth(keys=["my-key"]),
+        )
+
+        @agent.skill("admin")
+        @require_auth(scopes=["admin"])
+        async def admin_action(data: str, auth: AuthResult) -> str:
+            return f"admin:{auth.user_id}:{data}"
+
+        app = agent.get_app()
+        client = TestClient(app)
+
+        # Without auth — should be rejected at the gate
+        request_body = {
+            "jsonrpc": "2.0",
+            "method": "message/send",
+            "id": uuid4().hex,
+            "params": {
+                "message": {
+                    "role": "user",
+                    "parts": [{"type": "text", "text": json.dumps({"skill": "admin", "params": {"data": "hello"}})}],
+                    "messageId": uuid4().hex,
+                }
+            }
+        }
+        response = client.post("/", json=request_body)
+        result_text = response.json().get("result", {}).get("parts", [{}])[0].get("text", "")
+        assert "admin:" not in result_text
+
+        # With valid auth — require_auth checks scopes (no admin scope, so should fail)
+        response = client.post("/", json=request_body, headers={"X-API-Key": "my-key"})
+        result_text = response.json().get("result", {}).get("parts", [{}])[0].get("text", "")
+        assert "Insufficient permissions" in result_text or "error" in result_text.lower()
+
+    def test_auth_param_injected_without_decorator(self):
+        """Skills with auth: AuthResult parameter should receive it directly."""
+        from a2a_lite import Agent
+        from starlette.testclient import TestClient
+        import json
+        from uuid import uuid4
+
+        agent = Agent(
+            name="AuthTest2",
+            description="auth param test",
+            auth=APIKeyAuth(keys=["my-key"]),
+        )
+
+        @agent.skill("whoami")
+        async def whoami(auth: AuthResult) -> str:
+            return f"user:{auth.user_id}"
+
+        app = agent.get_app()
+        client = TestClient(app)
+
+        request_body = {
+            "jsonrpc": "2.0",
+            "method": "message/send",
+            "id": uuid4().hex,
+            "params": {
+                "message": {
+                    "role": "user",
+                    "parts": [{"type": "text", "text": json.dumps({"skill": "whoami", "params": {}})}],
+                    "messageId": uuid4().hex,
+                }
+            }
+        }
+
+        response = client.post("/", json=request_body, headers={"X-API-Key": "my-key"})
+        result_text = response.json().get("result", {}).get("parts", [{}])[0].get("text", "")
+        assert result_text.startswith("user:")