aiohttp-msal 1.0.0__py3-none-any.whl → 1.0.2__py3-none-any.whl

aiohttp_msal/msal_async.py

@@ -8,9 +8,10 @@ Once you have the OAuth tokens store in the session, you are free to make reques
 import asyncio
 import json
 from collections.abc import Callable
-from functools import partial, partialmethod, wraps
+from functools import cached_property, partialmethod
 from typing import Any, ClassVar, Literal, Unpack
 
+import attrs
 from aiohttp import web
 from aiohttp.client import (
     ClientResponse,
@@ -35,30 +36,13 @@ HTTP_ALLOWED = [HTTP_GET, HTTP_POST, HTTP_PUT, HTTP_PATCH, HTTP_DELETE]
 DEFAULT_SCOPES = ["User.Read", "User.Read.All"]
 
 
-def async_wrap(func: Callable) -> Callable:
-    """Wrap a function doing I/O to run in an executor thread."""
-
-    @wraps(func)
-    async def run(
-        *args: Any,
-        loop: asyncio.AbstractEventLoop | None = None,
-        executor: Any = None,
-        **kwargs: dict[str, Any],
-    ) -> Callable:
-        if loop is None:
-            loop = asyncio.get_event_loop()
-        pfunc = partial(func, *args, **kwargs)
-        return await loop.run_in_executor(executor, pfunc)
-
-    return run
-
-
 # These keys will be used on the aiohttp session
 TOKEN_CACHE = "token_cache"
 FLOW_CACHE = "flow_cache"
 USER_EMAIL = "mail"
 
 
+@attrs.define()
 class AsyncMSAL:
     """AsycMSAL class.
 
@@ -70,52 +54,37 @@ class AsyncMSAL:
     Use until such time as MSAL Python gets a true async version.
     """
 
-    _token_cache: SerializableTokenCache
-    _app: ConfidentialClientApplication
-    client_session: ClassVar[ClientSession | None] = None
-
-    def __init__(
-        self,
-        session: Session | dict[str, Any],
-        save_callback: Callable[[Session | dict[str, Any]], None] | None = None,
-    ):
-        """Init the class.
+    session: Session | dict[str, Any]
+    save_callback: Callable[[Session | dict[str, Any]], None] | None = None
+    """Called if the token cache changes. Optional.
+    Not required when the session parameter is an aiohttp_session.Session.
+    """
+    app: ConfidentialClientApplication = attrs.field(init=False)
 
-        **save_callback** will be called if the token cache changes. Optional.
-          Not required when the session parameter is an aiohttp_session.Session.
-        """
-        self.session = session
-        self.save_callback = save_callback
-        if not isinstance(session, Session | dict):
-            raise ValueError(f"session or dict-like object required {session}")
+    app_kwargs: ClassVar[dict[str, Any] | None] = None
+    """ConfidentialClientApplication kwargs."""
+    client_session: ClassVar[ClientSession | None] = None
 
-    @property
+    def __attrs_post_init__(self) -> None:
+        """Init."""
+        kwargs = dict(self.app_kwargs) if self.app_kwargs else {}
+        for key, val in {
+            "client_id": ENV.SP_APP_ID,
+            "client_credential": ENV.SP_APP_PW,
+            "authority": ENV.SP_AUTHORITY,
+            "validate_authority": False,
+            "token_cache": self.token_cache,
+        }.items():
+            kwargs.setdefault(key, val)
+        self.app = ConfidentialClientApplication(**kwargs)
+
+    @cached_property
     def token_cache(self) -> SerializableTokenCache:
         """Get the token_cache."""
-        if not self._token_cache:
-            self._token_cache = SerializableTokenCache()
-            # _load_token_cache
-            if self.session and self.session.get(TOKEN_CACHE):
-                self._token_cache.deserialize(self.session[TOKEN_CACHE])
-
-        return self._token_cache
-
-    @property
-    def app(self) -> ConfidentialClientApplication:
-        """Create the application using the cache.
-
-        Based on: https://github.com/Azure-Samples/ms-identity-python-webapp/blob/master/app.py#L76
-        """
-        if not self._app:
-            token_cache = self.token_cache
-            self._app = ConfidentialClientApplication(
-                client_id=ENV.SP_APP_ID,
-                client_credential=ENV.SP_APP_PW,
-                authority=ENV.SP_AUTHORITY,  # common/oauth2/v2.0/token'
-                validate_authority=False,
-                token_cache=token_cache,
-            )
-        return self._app
+        res = SerializableTokenCache()
+        if self.session and self.session.get(TOKEN_CACHE):
+            res.deserialize(self.session[TOKEN_CACHE])
+        return res
 
     def save_token_cache(self) -> None:
         """Save the token cache if it changed."""
@@ -124,7 +93,7 @@ class AsyncMSAL:
             if self.save_callback:
                 self.save_callback(self.session)
 
-    def build_auth_code_flow(
+    def initiate_auth_code_flow(
         self,
         redirect_uri: str,
         scopes: list[str] | None = None,
@@ -146,12 +115,16 @@ class AsyncMSAL:
         # https://msal-python.readthedocs.io/en/latest/#msal.ClientApplication.initiate_auth_code_flow
         return str(res["auth_uri"])
 
-    def acquire_token_by_auth_code_flow(self, auth_response: Any) -> None:
+    def acquire_token_by_auth_code_flow(
+        self, auth_response: Any, scopes: list[str] | None = None
+    ) -> None:
         """Second step - Acquire token."""
         # Assume we have it in the cache (added by /login)
         # will raise keryerror if no cache
         auth_code_flow = self.session.pop(FLOW_CACHE)
-        result = self.app.acquire_token_by_auth_code_flow(auth_code_flow, auth_response)
+        result = self.app.acquire_token_by_auth_code_flow(
+            auth_code_flow, auth_response, scopes=scopes
+        )
         if "error" in result:
             raise web.HTTPBadRequest(text=str(result["error"]))
         if "id_token_claims" not in result:
@@ -227,18 +200,10 @@ class AsyncMSAL:
     get = partialmethod(request_ctx, HTTP_GET)
     post = partialmethod(request_ctx, HTTP_POST)
 
-    # def get(self, url: str, **kwargs: Any) -> _RequestContextManager:
-    #     """GET Request."""
-    #     return _RequestContextManager(self.request(HTTP_GET, url, **kwargs))
-
-    # def post(self, url: str, **kwargs: Any) -> _RequestContextManager:
-    #     """POST request."""
-    #     return _RequestContextManager(self.request(HTTP_POST, url, **kwargs))
-
     @property
     def mail(self) -> str:
         """User email."""
-        return self.session.get("mail", "")
+        return self.session.get(USER_EMAIL, "")
 
     @property
     def manager_mail(self) -> str:

aiohttp_msal/routes.py

@@ -44,7 +44,7 @@ async def user_login(request: web.Request) -> web.Response:
     session[SESSION_REDIRECT] = urljoin(_to, request.match_info.get("to", ""))
 
     msredirect = get_route(request, URI_USER_AUTHORIZED.lstrip("/"))
-    redir = AsyncMSAL(session).build_auth_code_flow(redirect_uri=msredirect)
+    redir = AsyncMSAL(session).initiate_auth_code_flow(redirect_uri=msredirect)
     return web.HTTPFound(redir)
 
 

aiohttp_msal/settings.py

@@ -9,8 +9,6 @@ from aiohttp_msal.settings_base import VAR_REQ, VAR_REQ_HIDE, SettingsBase
 
 if TYPE_CHECKING:
     from redis.asyncio import Redis
-else:
-    Redis = None
 
 
 @attrs.define
@@ -28,7 +26,7 @@ class MSALSettings(SettingsBase):
     "https://login.microsoftonline.com/common"  # For multi-tenant app
     "https://login.microsoftonline.com/Tenant_Name_or_UUID_Here"."""
 
-    DOMAIN: str = "mydomain.com"
+    DOMAIN: str = attrs.field(metadata=VAR_REQ, default="")
     """Your domain. Used by routes & Redis functions."""
 
     COOKIE_NAME: str = "AIOHTTP_SESSION"
@@ -41,7 +39,7 @@ class MSALSettings(SettingsBase):
 
     REDIS: str = "redis://redis1:6379"
     """OPTIONAL: Redis database connection used by app_init_redis_session()."""
-    database: Redis = None  # type: ignore[assignment]
+    database: "Redis" = attrs.field(init=False)
     """Store the Redis connection when using app_init_redis_session()."""
 
 

aiohttp_msal/settings_base.py

@@ -14,11 +14,6 @@ VAR_REQ = {KEY_REQ: True}
 VAR_HIDE = {KEY_HIDE: True}
 
 
-def _is_hidden(atr: attrs.Attribute) -> bool:
-    """Is this field hidden."""
-    return bool(atr.metadata.get(KEY_HIDE))
-
-
 @attrs.define
 class SettingsBase:
     """Retrieve Settings from environment variables.

aiohttp_msal/user_info.py

@@ -1,34 +1,7 @@
 """Graph User Info."""
 
-import asyncio
-from collections.abc import Awaitable, Callable
-from functools import wraps
-from typing import ParamSpec, TypeVar
-
 from aiohttp_msal.msal_async import AsyncMSAL
-
-_T = TypeVar("_T")
-_P = ParamSpec("_P")
-
-
-def retry(func: Callable[_P, Awaitable[_T]]) -> Callable[_P, Awaitable[_T]]:
-    """Retry if tenacity is installed."""
-
-    @wraps(func)
-    async def _retry(*args: _P.args, **kwargs: _P.kwargs) -> _T:
-        """Retry the request."""
-        retries = [2, 4, 8]
-        while True:
-            try:
-                res = await func(*args, **kwargs)
-                return res
-            except Exception as err:
-                if retries:
-                    await asyncio.sleep(retries.pop())
-                else:
-                    raise err
-
-    return _retry
+from aiohttp_msal.utils import retry
 
 
 @retry

aiohttp_msal/utils.py

@@ -0,0 +1,51 @@
+"""Graph User Info."""
+
+import asyncio
+from collections.abc import Awaitable, Callable
+from functools import wraps
+from typing import ParamSpec, TypeVar, Any
+from functools import partial
+
+
+T = TypeVar("T")
+P = ParamSpec("P")
+
+
+def async_wrap(
+    func: Callable[..., T],
+) -> Callable[..., Awaitable[T]]:
+    """Wrap a function doing I/O to run in an executor thread."""
+
+    @wraps(func)
+    async def run(
+        loop: asyncio.AbstractEventLoop | None = None,
+        executor: Any = None,
+        *args: Any,
+        **kwargs: Any,
+    ) -> T:
+        if loop is None:
+            loop = asyncio.get_event_loop()
+        pfunc = partial(func, *args, **kwargs)
+        return await loop.run_in_executor(executor, pfunc)
+
+    return run
+
+
+def retry(func: Callable[P, Awaitable[T]]) -> Callable[P, Awaitable[T]]:
+    """Retry if tenacity is installed."""
+
+    @wraps(func)
+    async def _retry(*args: P.args, **kwargs: P.kwargs) -> T:
+        """Retry the request."""
+        retries = [2, 4, 8]
+        while True:
+            try:
+                res = await func(*args, **kwargs)
+                return res
+            except Exception as err:
+                if retries:
+                    await asyncio.sleep(retries.pop())
+                else:
+                    raise err
+
+    return _retry

{aiohttp_msal-1.0.0.dist-info → aiohttp_msal-1.0.2.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.3
 Name: aiohttp-msal
-Version: 1.0.0
+Version: 1.0.2
 Summary: Helper Library to use the Microsoft Authentication Library (MSAL) with aiohttp
 Keywords: aiohttp,asyncio,msal,oauth
 Author: Johann Kellerman
@@ -23,7 +23,7 @@ Project-URL: Homepage, https://github.com/kellerza/aiohttp_msal
 Provides-Extra: aioredis
 Description-Content-Type: text/markdown
 
-# aiohttp_msal Python library
+# Async based MSAL helper for aiohttp - aiohttp_msal Python library
 
 Authorization Code Flow Helper. Learn more about auth-code-flow at
 <https://learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-auth-code-flow>
@@ -124,8 +124,8 @@ from aiohttp_msal.redis_tools import get_session
 def main()
     # Uses the redis.asyncio driver to retrieve the current token
     # Will update the token_cache if a RefreshToken was used
-    ases = asyncio.run(get_session(MYEMAIL))
-    client = GraphClient(ases.get_token)
+    ses = asyncio.run(get_session(MYEMAIL))
+    client = GraphClient(ses.get_token)
     # ...
     # use the Graphclient
 ```

aiohttp_msal-1.0.2.dist-info/RECORD

@@ -0,0 +1,11 @@
+aiohttp_msal/__init__.py,sha256=hnyifyJykI7NMvM93KrHIsTlrrfCVUrpKdbRKL6Gubw,4027
+aiohttp_msal/msal_async.py,sha256=JUtyTro57rLiHQYqgYq8LFv3keznyhISP1emgN3y31E,8232
+aiohttp_msal/redis_tools.py,sha256=6kCw0_zDQcvIcsJaPfG-zHUvT3vzkrNySNTV5y1tckE,6539
+aiohttp_msal/routes.py,sha256=WyLBuoPMkkG6Cx4gFUu_ER71FyJbeXKhOQRQu5ALG2M,8138
+aiohttp_msal/settings.py,sha256=sArlq9vBDMsikLf9sTRw-UXE2_QRK_G-kzmtHvZcbwA,1559
+aiohttp_msal/settings_base.py,sha256=WBI7HS780i9zKWUy1ZnztDbRsfoDMVr3K-otHZOhNCc,3026
+aiohttp_msal/user_info.py,sha256=lxjFxjm16rvC-0LS81y7SG5pCOa5Zl0s62uxi97yu_k,1171
+aiohttp_msal/utils.py,sha256=SgGpE1eFdVh48FaKvtbnQqJKTReXa9OPBKiYGY7SYq8,1303
+aiohttp_msal-1.0.2.dist-info/WHEEL,sha256=4n27za1eEkOnA7dNjN6C5-O2rUiw6iapszm14Uj-Qmk,79
+aiohttp_msal-1.0.2.dist-info/METADATA,sha256=b9HRcY4HaOKhXVhBQIuYK-h0Cia9g922FjOdTyOuPpw,4514
+aiohttp_msal-1.0.2.dist-info/RECORD,,

{aiohttp_msal-1.0.0.dist-info → aiohttp_msal-1.0.2.dist-info}/WHEEL

@@ -1,4 +1,4 @@
 Wheel-Version: 1.0
-Generator: uv 0.8.12
+Generator: uv 0.8.13
 Root-Is-Purelib: true
 Tag: py3-none-any

aiohttp_msal-1.0.0.dist-info/RECORD

@@ -1,10 +0,0 @@
-aiohttp_msal/__init__.py,sha256=867ca27f2272908ecd32f33ddcaac722c4e5aeb7c2554ae929d6d128be86b9bc,4027
-aiohttp_msal/msal_async.py,sha256=8efdf9608c55e41f99ed66294a18303192e921739f49986cf90a015b07a50c55,9470
-aiohttp_msal/redis_tools.py,sha256=ea40b0d3fcc341cbc872c25a3df1becc752f4f7bf392b37248d4d5e72d6d7241,6539
-aiohttp_msal/routes.py,sha256=f305368d4f6a4a5a87e5fabd92f901647020af141d981f83bed402f969576e1d,8135
-aiohttp_msal/settings.py,sha256=b6d6ea19bd97d6bec3b0bbca6f50250c32816195a32301cb1c8f926bef0afa52,1562
-aiohttp_msal/settings_base.py,sha256=b516e3829851d6dbc70ab14271f394868140c949eafd79c90553b834d88f74d8,3150
-aiohttp_msal/user_info.py,sha256=b4efaf03f9313ec787b1e5b136584673f3650df80919d7f538c09a1a6bc37fc4,1875
-aiohttp_msal-1.0.0.dist-info/WHEEL,sha256=76443c98c0efcfdd1191eac5fa1d8223dba1c474dbd47676674a255e7ca48770,79
-aiohttp_msal-1.0.0.dist-info/METADATA,sha256=dd4a69bc47da5e6c559fda12c41505fdc047c8edde36d498d25a93fc0b7b4ec8,4478
-aiohttp_msal-1.0.0.dist-info/RECORD,,