PyPI - apppy-sb - Versions diffs - 0.1.0__tar.gz - Mend

apppy-sb 0.1.0__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

apppy_sb-0.1.0/.gitignore +28 -0
apppy_sb-0.1.0/PKG-INFO +22 -0
apppy_sb-0.1.0/README.md +0 -0
apppy_sb-0.1.0/pyproject.toml +36 -0
apppy_sb-0.1.0/sb.mk +23 -0
apppy_sb-0.1.0/src/apppy/sb/__init__.py +0 -0
apppy_sb-0.1.0/src/apppy/sb/auth.py +334 -0
apppy_sb-0.1.0/src/apppy/sb/db.py +46 -0
apppy_sb-0.1.0/src/apppy/sb/fs.py +762 -0
apppy_sb-0.1.0/src/apppy/sb/fs_unit_test.py +268 -0
apppy_sb-0.1.0/src/apppy/sb/identity/__init__.py +43 -0
apppy_sb-0.1.0/src/apppy/sb/identity/errors.py +18 -0
apppy_sb-0.1.0/src/apppy/sb/logflare.py +214 -0
apppy_sb-0.1.0/src/apppy/sb/migrations.py +31 -0

apppy_sb-0.1.0/.gitignore ADDED Viewed

@@ -0,0 +1,28 @@
+__generated__/
+dist/
+*.egg-info
+.env
+.env.*
+*.env
+!.env.ci
+.file_store/
+*.pid
+.python-version
+*.secrets
+.secrets
+*.tar.gz
+*.test_output/
+.test_output/
+uv.lock
+*.whl
+# System files
+__pycache__
+.DS_Store
+# Editor files
+*.sublime-project
+*.sublime-workspace
+.vscode/*
+!.vscode/settings.json

apppy_sb-0.1.0/PKG-INFO ADDED Viewed

@@ -0,0 +1,22 @@
+Metadata-Version: 2.4
+Name: apppy-sb
+Version: 0.1.0
+Summary: Supabase integrations for server development
+Project-URL: Homepage, https://github.com/spals/apppy
+Author: Tim Kral
+License: MIT
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Programming Language :: Python :: 3
+Requires-Python: >=3.11
+Requires-Dist: apppy-auth>=0.1.0
+Requires-Dist: apppy-db>=0.1.0
+Requires-Dist: apppy-env>=0.1.0
+Requires-Dist: apppy-fs>=0.1.0
+Requires-Dist: apppy-generic>=0.1.0
+Requires-Dist: apppy-logger>=0.1.0
+Requires-Dist: apppy-queues>=0.1.0
+Requires-Dist: argon2-cffi==25.1.0
+Requires-Dist: fastapi-lifespan-manager==0.1.4
+Requires-Dist: requests==2.32.3
+Requires-Dist: supabase==2.15.3
+Requires-Dist: tuspy==1.1.0

apppy_sb-0.1.0/README.md ADDED Viewed

File without changes

apppy_sb-0.1.0/pyproject.toml ADDED Viewed

@@ -0,0 +1,36 @@
+[build-system]
+requires = ["hatchling>=1.25"]
+build-backend = "hatchling.build"
+[project]
+name = "apppy-sb"
+version = "0.1.0"
+description = "Supabase integrations for server development"
+readme = "README.md"
+requires-python = ">=3.11"
+license = {text = "MIT"}
+authors = [{ name = "Tim Kral" }]
+classifiers = [
+  "Programming Language :: Python :: 3",
+  "License :: OSI Approved :: MIT License",
+]
+dependencies = [
+    "apppy-auth>=0.1.0",
+    "apppy-env>=0.1.0",
+    "apppy-db>=0.1.0",
+    "apppy-fs>=0.1.0",
+    "apppy-generic>=0.1.0",
+    "apppy-logger>=0.1.0",
+    "apppy-queues>=0.1.0",
+    "argon2-cffi==25.1.0",
+    "fastapi-lifespan-manager==0.1.4",
+    "requests==2.32.3",
+    "supabase==2.15.3",
+    "tuspy==1.1.0"
+]
+[project.urls]
+Homepage = "https://github.com/spals/apppy"
+[tool.hatch.build.targets.wheel]
+packages = ["src/apppy"]

apppy_sb-0.1.0/sb.mk ADDED Viewed

@@ -0,0 +1,23 @@
+ifndef APPPY_SB_MK_INCLUDED
+APPPY_SB_MK_INCLUDED := 1
+SB_PKG_DIR := $(dir $(abspath $(lastword $(MAKEFILE_LIST))))
+.PHONY: sb sb-dev sb/build sb/clean sb/install sb/install-dev
+sb: sb/clean sb/install
+sb-dev: sb/clean sb/install-dev
+sb/build:
+	cd $(SB_PKG_DIR) && uvx --from build pyproject-build
+sb/clean:
+	cd $(SB_PKG_DIR) && rm -rf dist/ *.egg-info .venv
+sb/install: sb/build
+	cd $(SB_PKG_DIR) && uv pip install dist/*.whl
+sb/install-dev:
+	cd $(SB_PKG_DIR) && uv pip install -e .
+endif # APPPY_SB_MK_INCLUDED

apppy_sb-0.1.0/src/apppy/sb/__init__.py ADDED Viewed

File without changes

apppy_sb-0.1.0/src/apppy/sb/auth.py ADDED Viewed

@@ -0,0 +1,334 @@
+import asyncio
+import datetime
+import uuid
+from typing import Any, get_args
+import gotrue
+import gotrue.errors
+import gotrue.helpers
+import psycopg
+from argon2 import PasswordHasher
+from fastapi_lifespan_manager import LifespanManager
+from pydantic import Field
+from supabase.client import AsyncClient as NativeSupabaseAsyncClient
+from supabase.client import AsyncSupabaseAuthClient as NativeSupabaseAuthAsyncClient
+# AsyncAuthClient as NativeSupabaseAuthAsyncClient,
+from supabase.client import (
+    create_async_client,
+)
+from supabase.lib.client_options import AsyncClientOptions as NativeSupabaseAsyncClientOptions
+from apppy.auth.errors.user import (
+    UserSessionRefreshMissingSessionError,
+    UserSignInInvalidCredentialsError,
+    UserSignInServerError,
+    UserSignOutServerError,
+    UserSignUpInvalidCredentialsError,
+    UserSignUpServerError,
+    UserSignUpTooManyRetriesError,
+)
+from apppy.db.postgres import PostgresClient
+from apppy.env import EnvSettings
+from apppy.logger import WithLogger
+class SupabaseAuthSessionStorage(gotrue.AsyncSupportedStorage, WithLogger):
+    """
+    A storage implementation for Supabase Auth that uses the FastAPI session storage.
+    This allows us to persist state across requests, which is required for OAuth flows.
+    """
+    def __init__(self, session):
+        self._session = session
+    async def get_item(self, key: str) -> str | None:
+        return self._session.get(key)
+    async def set_item(self, key: str, value: str) -> None:
+        self._session[key] = value
+    async def remove_item(self, key: str) -> None:
+        self._session.pop(key, None)
+class SupabaseAuthSettings(EnvSettings):
+    api_anon_key: str = Field(alias="APP_SUPABASE_AUTH_API_ANON_KEY")
+    api_key: str = Field(alias="APP_SUPABASE_AUTH_API_KEY", exclude=True)
+    api_url: str = Field(alias="APP_SUPABASE_AUTH_API_URL")
+    max_user_signup_retries: int = Field(
+        alias="APP_SUPABASE_AUTH_MAX_USER_SIGNUP_RETRIES", default=2
+    )
+class SupabaseAuthAdmin(WithLogger):
+    def __init__(
+        self,
+        settings: SupabaseAuthSettings,
+        lifespan: LifespanManager,
+        postgres_client: PostgresClient,
+    ):
+        self._settings = settings
+        self._postgres_client = postgres_client
+        lifespan.add(self._auth_admin_async_client)
+    async def _auth_admin_async_client(self):
+        native_anon_async_client = await create_async_client(
+            supabase_url=self._settings.api_url,
+            supabase_key=self._settings.api_key,
+        )
+        self._supabase_auth_admin = native_anon_async_client.auth.admin
+        yield {"supbase_auth_admin": self._supabase_auth_admin}
+        self._logger.info("Closing Supabase Auth Admin client")
+        await self._supabase_auth_admin.close()
+    def _normalize_result_row(self, row: dict) -> dict:
+        def _normalize_key(key: str):
+            if key == "raw_app_meta_data":
+                return "app_metadata"
+            elif key == "raw_user_meta_data":
+                return "user_metadata"
+            return key
+        return {
+            _normalize_key(k): str(v) if isinstance(v, uuid.UUID | datetime.datetime) else v
+            for k, v in row.items()
+        }
+    async def create_user(self, attributes: gotrue.AdminUserAttributes) -> gotrue.User:
+        auth_user_query = """
+            SELECT *
+            FROM auth.users
+            WHERE email = %(email)s
+            LIMIT 1
+        """
+        try:
+            result_set = await self._postgres_client.db_query_async(
+                auth_user_query, {"email": attributes["email"]}
+            )
+            if result_set is None or len(result_set) != 1:
+                user_resp = await self._supabase_auth_admin.create_user(attributes)
+                return user_resp.user
+            else:
+                user_dict = self._normalize_result_row(result_set[0])
+                user_resp = gotrue.helpers.parse_user_response(user_dict)
+                return user_resp.user
+        except psycopg.DatabaseError as e:
+            self._logger.exception("Lookup during create user encountered an api error")
+            raise UserSignUpServerError("auth_user_lookup_error") from e
+        except gotrue.errors.AuthApiError as e:
+            self._logger.exception(
+                "Create user encountered an auth api error",
+                extra={"error_name": e.name},
+            )
+            raise UserSignUpServerError(e.code) from e
+class SupabaseAuth(WithLogger):
+    def __init__(
+        self,
+        settings: SupabaseAuthSettings,
+        supabase_auth_admin: SupabaseAuthAdmin,
+    ) -> None:
+        self._settings = settings
+        self._password_hasher = PasswordHasher()
+        self._supabase_auth_admin = supabase_auth_admin
+    async def auth_async_client(
+        self, session: dict[str, Any] | None = None
+    ) -> NativeSupabaseAuthAsyncClient:
+        if session is not None:
+            client_options = NativeSupabaseAsyncClientOptions(
+                storage=SupabaseAuthSessionStorage(session)
+            )
+        else:
+            client_options = NativeSupabaseAsyncClientOptions()
+        native_anon_async_client: NativeSupabaseAsyncClient = await create_async_client(
+            supabase_url=self._settings.api_url,
+            supabase_key=self._settings.api_anon_key,
+            options=client_options,
+        )
+        return native_anon_async_client.auth
+    def is_native_supabase_provider(self, provider: str) -> bool:
+        return provider in get_args(gotrue.Provider)
+    async def user_session_login_id_token(
+        self,
+        credentials: gotrue.SignInWithIdTokenCredentials,
+    ) -> gotrue.AuthResponse:
+        try:
+            auth_async_client: NativeSupabaseAuthAsyncClient = await self.auth_async_client()
+            auth_resp: gotrue.AuthResponse = await auth_async_client.sign_in_with_id_token(
+                credentials
+            )
+            return auth_resp
+        except gotrue.errors.AuthApiError as e:
+            self._logger.exception(
+                "Login with id token encountered an auth api error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignInServerError(e.code) from e
+        except gotrue.errors.CustomAuthError as e:
+            self._logger.exception(
+                "Login with id token encountered an auth custom error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignInServerError(e.code) from e
+    async def user_session_login_oauth_finalize(
+        self,
+        session: dict[str, Any],
+        params: gotrue.CodeExchangeParams,
+    ) -> gotrue.AuthResponse:
+        try:
+            auth_async_client: NativeSupabaseAuthAsyncClient = await self.auth_async_client(session)
+            auth_resp: gotrue.AuthResponse = await auth_async_client.exchange_code_for_session(
+                params
+            )
+            return auth_resp
+        except gotrue.errors.AuthApiError as e:
+            self._logger.exception(
+                "Oauth login finalize encountered an auth api error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignInServerError(e.code) from e
+        except gotrue.errors.CustomAuthError as e:
+            self._logger.exception(
+                "OAuth login finalize encountered an auth custom error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignInServerError(e.code) from e
+    async def user_session_login_oauth(
+        self,
+        session: dict[str, Any],
+        credentials: gotrue.SignInWithOAuthCredentials,
+    ) -> gotrue.OAuthResponse:
+        try:
+            auth_async_client: NativeSupabaseAuthAsyncClient = await self.auth_async_client(session)
+            oauth_resp: gotrue.OAuthResponse = await auth_async_client.sign_in_with_oauth(
+                credentials
+            )
+            return oauth_resp
+        except gotrue.errors.AuthApiError as e:
+            self._logger.exception(
+                "Login with oauth encountered an auth api error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignInServerError(e.code) from e
+        except gotrue.errors.CustomAuthError as e:
+            self._logger.exception(
+                "Login with oauth encountered an auth custom error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignInServerError(e.code) from e
+    async def user_session_login_password(
+        self, credentials: gotrue.SignInWithPasswordCredentials
+    ) -> gotrue.AuthResponse:
+        try:
+            auth_async_client: NativeSupabaseAuthAsyncClient = await self.auth_async_client()
+            auth_resp: gotrue.AuthResponse = await auth_async_client.sign_in_with_password(
+                credentials
+            )
+            return auth_resp
+        except gotrue.errors.AuthApiError as e:
+            if e.message == "Invalid login credentials":
+                raise UserSignInInvalidCredentialsError() from e
+            self._logger.exception(
+                "Login with password encountered an auth api error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignInServerError(e.code) from e
+        except gotrue.errors.CustomAuthError as e:
+            self._logger.exception(
+                "Login with password encountered an auth custom error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignInServerError(e.code) from e
+    async def user_session_logout(self, options: gotrue.SignOutOptions) -> None:
+        auth_async_client: NativeSupabaseAuthAsyncClient = await self.auth_async_client()
+        try:
+            await auth_async_client.sign_out(options)
+        except gotrue.errors.AuthError as e:
+            self._logger.exception(
+                "Logout encountered an auth error",
+                extra={"error_name": e.name, "error_code": e.code, "error_message": e.message},
+            )
+            raise UserSignOutServerError(e.code) from e
+    async def user_session_refresh(self, refresh_token: str) -> gotrue.AuthResponse:
+        try:
+            auth_async_client: NativeSupabaseAuthAsyncClient = await self.auth_async_client()
+            auth_resp: gotrue.AuthResponse = await auth_async_client.refresh_session(refresh_token)
+            return auth_resp
+        except gotrue.errors.AuthSessionMissingError as e:
+            raise UserSessionRefreshMissingSessionError() from e
+    async def user_sign_up(
+        self, credentials: gotrue.SignUpWithPasswordCredentials
+    ) -> gotrue.AuthResponse:
+        attempt = 0
+        while attempt < self._settings.max_user_signup_retries:
+            try:
+                auth_async_client = await self.auth_async_client()
+                auth_resp: gotrue.AuthResponse = await auth_async_client.sign_up(credentials)
+                return auth_resp
+            except gotrue.errors.AuthRetryableError:
+                self._logger.warning(
+                    "Encountered an AuthRetryableError with signing up a Supabase user. Retrying.",
+                    extra={
+                        "attempt": attempt,
+                        "email": credentials.get("email"),
+                        "phone": credentials.get("phone"),
+                    },
+                )
+                attempt += 1
+                await asyncio.sleep(0.5)
+            except gotrue.errors.AuthInvalidCredentialsError as e:
+                self._logger.exception(
+                    e.message,
+                    extra={"email": credentials.get("email"), "phone": credentials.get("phone")},
+                )
+                raise UserSignUpInvalidCredentialsError() from e
+            except gotrue.errors.AuthApiError as e:
+                self._logger.exception(
+                    "Sign up encountered an auth api error",
+                    extra={"email": credentials.get("email"), "phone": credentials.get("phone")},
+                )
+                raise UserSignUpServerError(e.code) from e
+        self._logger.error(
+            "Too many retry attempts to sign up a Supabase user",
+            extra={
+                "attempts": attempt,
+                "email": credentials.get("email"),
+                "phone": credentials.get("phone"),
+            },
+        )
+        raise UserSignUpTooManyRetriesError()
+    async def user_sign_up_id_token(
+        self,
+        provider: str,
+        attributes: gotrue.AdminUserAttributes,
+    ) -> None:
+        user: gotrue.User = await self._supabase_auth_admin.create_user(attributes)
+        if user is None:
+            raise UserSignUpServerError("user_creation_failed_in_sign_up_id_token")

apppy_sb-0.1.0/src/apppy/sb/db.py ADDED Viewed

@@ -0,0 +1,46 @@
+from fastapi_lifespan_manager import LifespanManager
+from pydantic import Field
+from supabase import AsyncClient as NativeSupabaseAsyncClient
+from supabase import Client as NativeSupabaseClient
+from supabase.client import create_async_client, create_client
+from apppy.env import EnvSettings
+from apppy.logger import WithLogger
+_SUPABASE_MICRO_MAX_CONNS = 200
+_SUPABASE_SMALL_MAX_CONNS = 400
+class SupabaseClientSettings(EnvSettings):
+    api_anon_key: str = Field(alias="APP_SUPABASE_API_ANON_KEY")
+    api_key: str = Field(alias="APP_SUPABASE_API_KEY", exclude=True)
+    api_url: str = Field(alias="APP_SUPABASE_API_URL")
+class SupabaseClient(WithLogger):
+    def __init__(self, settings: SupabaseClientSettings, lifespan: LifespanManager) -> None:
+        self._settings = settings
+        self._native_internal_client: NativeSupabaseClient = create_client(
+            supabase_url=settings.api_url, supabase_key=settings.api_key
+        )
+        lifespan.add(self.__create_async_client)
+    async def __create_async_client(self):
+        self._logger.info("Creating native_internal_async_client")
+        self._native_internal_async_client = await create_async_client(
+            supabase_url=self._settings.api_url,
+            supabase_key=self._settings.api_key,
+        )
+        yield {"native_internal_async_client": self._native_internal_async_client}
+        self._logger.info("Closing native_internal_async_client")
+    @property
+    def internal_client(self) -> NativeSupabaseClient:
+        return self._native_internal_client
+    @property
+    def internal_async_client(self) -> NativeSupabaseAsyncClient:
+        return self._native_internal_async_client