apexauthlib 0.1.0__tar.gz

apexauthlib-0.1.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 Apex LTD
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

apexauthlib-0.1.0/PKG-INFO

@@ -0,0 +1,12 @@
+Metadata-Version: 2.4
+Name: apexauthlib
+Version: 0.1.0
+Summary: Apex authorization library for services
+Author-email: Apex Dev <dev@apex.ge>
+Requires-Python: >=3.12
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Dynamic: license-file
+
+# apexauthlib
+Authorization library for apex services

apexauthlib-0.1.0/README.md

@@ -0,0 +1,2 @@
+# apexauthlib
+Authorization library for apex services

apexauthlib-0.1.0/apexauthlib/fastapi/__init__.py

@@ -0,0 +1,6 @@
+from apexauthlib.fastapi.auth import auth_api, get_user
+
+__all__ = [
+    "auth_api",
+    "get_user",
+]

apexauthlib-0.1.0/apexauthlib/fastapi/auth.py

@@ -0,0 +1,60 @@
+from dataclasses import dataclass
+from typing import Annotated, Any
+
+from apexdevkit.fastapi import inject
+from fastapi import APIRouter, Depends, HTTPException
+from fastapi.security import OAuth2PasswordBearer, OAuth2PasswordRequestForm
+from starlette import status
+
+from apexauthlib.integration.api import AuthApiProvider
+
+auth_api = APIRouter(tags=["Auth"])
+AuthApiProviderDependable = Annotated[AuthApiProvider[Any], inject("auth")]
+
+
+def oauth2() -> OAuth2PasswordBearer:
+    return OAuth2PasswordBearer(tokenUrl="auth/login")
+
+
+TokenDependable = Annotated[str, Depends(oauth2())]
+
+
+def get_user(
+    token: TokenDependable,
+    auth: AuthApiProviderDependable,
+) -> Any:
+    try:
+        api = auth.for_token(token)
+        return api.metadata_for(api.user())
+    except Exception as e:
+        raise HTTPException(
+            status_code=status.HTTP_401_UNAUTHORIZED,
+            detail=str(e),
+            headers={"WWW-Authenticate": "Bearer"},
+        )
+
+
+@dataclass
+class TokenResponse:
+    access_token: str
+    token_type: str = "Bearer"
+
+
+@auth_api.post(
+    "/login",
+    status_code=200,
+    response_model=TokenResponse,
+)
+def login(
+    form_data: Annotated[OAuth2PasswordRequestForm, Depends()],
+    auth: AuthApiProviderDependable,
+) -> TokenResponse:
+    try:
+        return TokenResponse(
+            access_token=auth.login(form_data.username, form_data.password)
+        )
+    except Exception:
+        raise HTTPException(
+            status_code=status.HTTP_401_UNAUTHORIZED,
+            detail="Incorrect username or password",
+        )

apexauthlib-0.1.0/apexauthlib/integration/__init__.py

@@ -0,0 +1,3 @@
+from apexauthlib.integration.api import AuthApiProvider
+
+__all__ = ["AuthApiProvider"]

apexauthlib-0.1.0/apexauthlib/integration/api.py

@@ -0,0 +1,71 @@
+from __future__ import annotations
+
+from dataclasses import dataclass
+from typing import Any, Generic, Mapping, TypeVar
+
+from apexdevkit.formatter import Formatter
+from apexdevkit.http import FluentHttp, JsonDict
+
+ItemT = TypeVar("ItemT")
+
+
+@dataclass(frozen=True)
+class AuthApiProvider(Generic[ItemT]):
+    http: FluentHttp
+    service_name: str
+    formatter: Formatter[Mapping[str, Any], ItemT]
+
+    def login(self, username: str, password: str) -> str:
+        data = {
+            "grant_type": "password",
+            "username": username,
+            "password": password,
+            "scope": "",
+            "client_id": "string",
+            "client_secret": "string",
+        }
+
+        return str(
+            (
+                self.http.with_data(JsonDict(data))
+                .post()
+                .on_endpoint("/auth/login")
+                .on_failure(raises=RuntimeError)
+                .json()
+            )["access_token"]
+        )
+
+    def for_token(self, token: str) -> AuthApi[ItemT]:
+        return AuthApi(self.http, self.service_name, self.formatter, token)
+
+
+@dataclass(frozen=True)
+class AuthApi(Generic[ItemT]):
+    http: FluentHttp
+    service_name: str
+    formatter: Formatter[Mapping[str, Any], ItemT]
+    token: str
+
+    def user(self) -> str:
+        return str(
+            (
+                self.http.with_header("Authorization", f"Bearer {self.token}")
+                .get()
+                .on_endpoint("/auth/user")
+                .on_failure(raises=RuntimeError)
+                .json()
+            )["id"]
+        )
+
+    def metadata_for(self, user_id: str) -> ItemT:
+        result = JsonDict(
+            (
+                self.http.with_header("Authorization", f"Bearer {self.token}")
+                .get()
+                .on_endpoint(f"/services/{self.service_name}/metadata/{user_id}")
+                .on_failure(raises=RuntimeError)
+                .json()
+            )
+        )
+
+        return self.formatter.load(JsonDict(result["data"]["metadata"]["metadata"]))

apexauthlib-0.1.0/apexauthlib.egg-info/PKG-INFO

@@ -0,0 +1,12 @@
+Metadata-Version: 2.4
+Name: apexauthlib
+Version: 0.1.0
+Summary: Apex authorization library for services
+Author-email: Apex Dev <dev@apex.ge>
+Requires-Python: >=3.12
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Dynamic: license-file
+
+# apexauthlib
+Authorization library for apex services

apexauthlib-0.1.0/apexauthlib.egg-info/SOURCES.txt

@@ -0,0 +1,13 @@
+LICENSE
+README.md
+pyproject.toml
+apexauthlib/__init__.py
+apexauthlib.egg-info/PKG-INFO
+apexauthlib.egg-info/SOURCES.txt
+apexauthlib.egg-info/dependency_links.txt
+apexauthlib.egg-info/top_level.txt
+apexauthlib/fastapi/__init__.py
+apexauthlib/fastapi/auth.py
+apexauthlib/integration/__init__.py
+apexauthlib/integration/api.py
+tests/test_api.py

apexauthlib-0.1.0/apexauthlib.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

apexauthlib-0.1.0/apexauthlib.egg-info/top_level.txt

@@ -0,0 +1 @@
+apexauthlib

apexauthlib-0.1.0/pyproject.toml

@@ -0,0 +1,63 @@
+[project]
+name = "apexauthlib"
+version = "0.1.0"
+description = "Apex authorization library for services"
+authors = [{ name = "Apex Dev", email = "dev@apex.ge" }]
+readme = "README.md"
+requires-python = ">=3.12"
+
+[tool.poetry.dependencies]
+python = "^3.12"
+httpx = "*"
+fastapi = "*"
+uvicorn = "*"
+apexdevkit = "*"
+
+[tool.poetry.group.dev.dependencies]
+approvaltests = "*"
+pytest = "*"
+pytest-approvaltests = "*"
+pytest-cov = "*"
+pytest-recording = "*"
+coverage = "*"
+faker = "*"
+
+[tool.poetry.group.lint.dependencies]
+mypy = "*"
+ruff = "*"
+
+[tool.mypy]
+python_version = "3.12"
+ignore_missing_imports = true
+strict = true
+
+[tool.ruff]
+target-version = "py312"
+line-length = 88
+
+exclude = [
+    ".git",
+    ".mypy_cache",
+    ".ruff_cache",
+    "venv",
+]
+
+lint.select = ["E", "F", "I"]
+lint.ignore = []
+lint.fixable = ["A", "B", "C", "D", "E", "F", "I"]
+lint.unfixable = []
+
+[tool.ruff.lint.mccabe]
+max-complexity = 10
+
+[tool.coverage.run]
+branch = true
+source = [
+    "apexauthlib",
+    "tests",
+]
+
+[tool.coverage.report]
+skip_empty = true
+skip_covered = true
+show_missing = true

apexauthlib-0.1.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+

apexauthlib-0.1.0/tests/test_api.py

@@ -0,0 +1,86 @@
+from dataclasses import dataclass
+
+from apexdevkit.formatter import DataclassFormatter
+from apexdevkit.http import FakeHttp, FluentHttp, HttpMethod
+from apexdevkit.http.fake import FakeResponse
+from faker import Faker
+
+from apexauthlib.integration import AuthApiProvider
+from apexauthlib.integration.api import AuthApi
+
+
+@dataclass(frozen=True)
+class TestPermissions:
+    role: str
+    read: bool
+    write: bool
+
+
+def test_login() -> None:
+    http = FakeHttp(FakeResponse({"access_token": "token"}))
+    service_name = Faker().text()
+    api = AuthApiProvider[TestPermissions](
+        FluentHttp(http), service_name, DataclassFormatter(TestPermissions)
+    )
+
+    result = api.login("user", "9")
+
+    assert result == "token"
+
+    http.intercepted(HttpMethod.post).on_endpoint("/auth/login")
+
+    assert http.data == {
+        "grant_type": "password",
+        "username": "user",
+        "password": "9",
+        "scope": "",
+        "client_id": "string",
+        "client_secret": "string",
+    }
+
+
+def test_user() -> None:
+    http = FakeHttp(FakeResponse({"id": "1"}))
+    service_name = Faker().text()
+    api = AuthApi[TestPermissions](
+        FluentHttp(http), service_name, DataclassFormatter(TestPermissions), "token"
+    )
+
+    result = api.user()
+
+    assert result == "1"
+
+    http.intercepted(HttpMethod.get).on_endpoint("/auth/user")
+
+    assert http.headers == {
+        "Authorization": "Bearer token",
+    }
+
+
+def test_metadata() -> None:
+    http = FakeHttp(
+        FakeResponse(
+            {
+                "data": {
+                    "metadata": {
+                        "metadata": {"role": "admin", "read": True, "write": True}
+                    }
+                }
+            }
+        )
+    )
+
+    service_name = Faker().text()
+    api = AuthApi[TestPermissions](
+        FluentHttp(http), service_name, DataclassFormatter(TestPermissions), "token"
+    )
+
+    result = api.metadata_for("1")
+
+    assert result == TestPermissions("admin", True, True)
+
+    http.intercepted(HttpMethod.get).on_endpoint(f"/services/{service_name}/metadata/1")
+
+    assert http.headers == {
+        "Authorization": "Bearer token",
+    }