auth0-ai-langchain 1.0.0b1__tar.gz → 1.0.0b3__tar.gz

auth0_ai_langchain-1.0.0b1/README.md → auth0_ai_langchain-1.0.0b3/PKG-INFO

@@ -1,3 +1,25 @@
+Metadata-Version: 2.3
+Name: auth0-ai-langchain
+Version: 1.0.0b3
+Summary: This package is an SDK for building secure AI-powered applications using Auth0, Okta FGA and LangChain.
+License: Apache-2.0
+Author: Auth0
+Author-email: support@auth0.com
+Requires-Python: >=3.11,<4.0
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Requires-Dist: auth0-ai (>=1.0.0b3,<2.0.0)
+Requires-Dist: langchain (>=0.3.26,<0.4.0)
+Requires-Dist: langchain-core (>=0.3.69,<0.4.0)
+Requires-Dist: langgraph (>=0.5.3,<0.6.0)
+Requires-Dist: langgraph-sdk (>=0.1.73,<0.2.0)
+Requires-Dist: openfga-sdk (>=0.9.5,<0.10.0)
+Project-URL: Homepage, https://auth0.com
+Description-Content-Type: text/markdown
+
 # Auth0 AI for LangChain
 
 `auth0-ai-langchain` is an SDK for building secure AI-powered applications using [Auth0](https://www.auth0.ai/), [Okta FGA](https://docs.fga.dev/) and [LangChain](https://python.langchain.com/docs/tutorials/).
@@ -30,7 +52,7 @@ from langchain_core.tools import StructuredTool
 auth0_ai = Auth0AI()
 
 with_async_user_confirmation = auth0_ai.with_async_user_confirmation(
-    scope="stock:trade",
+    scopes=["stock:trade"],
     audience=os.getenv("AUDIENCE"),
     binding_message=lambda ticker, qty: f"Authorize the purchase of {qty} {ticker}",
     user_id=lambda *_, **__: ensure_config().get("configurable", {}).get("user_id"),
@@ -58,6 +80,36 @@ trade_tool = with_async_user_confirmation(
 
 2. Handle interruptions properly. For example, if user is not enrolled to MFA, it will throw an interruption. See [Handling Interrupts](#handling-interrupts) section.
 
+### CIBA with RAR (Rich Authorization Requests)
+`Auth0AI` supports RAR (Rich Authorization Requests) for CIBA. This allows you to provide additional authorization parameters to be displayed during the user confirmation request.
+
+When defining the tool authorizer, you can specify the `authorization_details` parameter to include detailed information about the authorization being requested:
+
+```python
+with_async_user_confirmation = auth0_ai.with_async_user_confirmation(
+    scopes=["stock:trade"],
+    audience=os.getenv("AUDIENCE"),
+    binding_message=lambda ticker, qty: f"Authorize the purchase of {qty} {ticker}",
+    authorization_details=lambda ticker, qty: [
+        {
+            "type": "trade_authorization",
+            "qty": qty,
+            "ticker": ticker,
+            "action": "buy"
+        }
+    ],
+    user_id=lambda *_, **__: ensure_config().get("configurable", {}).get("user_id"),
+    # Optional:
+    # store=InMemoryStore()
+)
+```
+
+To use RAR with CIBA, you need to [set up authorization details](https://auth0.com/docs/get-started/apis/configure-rich-authorization-requests) in your Auth0 tenant. This includes defining the authorization request parameters and their types. Additionally, the [Guardian SDK](https://auth0.com/docs/secure/multi-factor-authentication/auth0-guardian) is required to handle these authorization details in your authorizer app.
+
+For more information on setting up RAR with CIBA, refer to:
+- [Configure Rich Authorization Requests (RAR)](https://auth0.com/docs/get-started/apis/configure-rich-authorization-requests)
+- [User Authorization with CIBA](https://auth0.com/docs/get-started/authentication-and-authorization-flow/client-initiated-backchannel-authentication-flow/user-authorization-with-ciba)
+
 ## Authorization for Tools
 
 The `FGAAuthorizer` can leverage Okta FGA to authorize tools executions. The `FGAAuthorizer.create` function can be used to create an authorizer that checks permissions before executing the tool.
@@ -297,3 +349,4 @@ resumer.start()
 <p align="center">Auth0 is an easy to implement, adaptable authentication and authorization platform. To learn more checkout <a href="https://auth0.com/why-auth0">Why Auth0?</a></p>
 <p align="center">
 This project is licensed under the Apache 2.0 license. See the <a href="https://github.com/auth0-lab/auth0-ai-python/blob/main/LICENSE"> LICENSE</a> file for more info.</p>
+

auth0_ai_langchain-1.0.0b1/PKG-INFO → auth0_ai_langchain-1.0.0b3/README.md

@@ -1,25 +1,3 @@
-Metadata-Version: 2.3
-Name: auth0-ai-langchain
-Version: 1.0.0b1
-Summary: This package is an SDK for building secure AI-powered applications using Auth0, Okta FGA and LangChain.
-License: Apache-2.0
-Author: Auth0
-Author-email: support@auth0.com
-Requires-Python: >=3.11,<4.0
-Classifier: License :: OSI Approved :: Apache Software License
-Classifier: Programming Language :: Python :: 3
-Classifier: Programming Language :: Python :: 3.11
-Classifier: Programming Language :: Python :: 3.12
-Classifier: Programming Language :: Python :: 3.13
-Requires-Dist: auth0-ai (>=1.0.0b1,<2.0.0)
-Requires-Dist: langchain (>=0.3.25,<0.4.0)
-Requires-Dist: langchain-core (>=0.3.59,<0.4.0)
-Requires-Dist: langgraph (>=0.4.3,<0.5.0)
-Requires-Dist: langgraph-sdk (>=0.1.66,<0.2.0)
-Requires-Dist: openfga-sdk (>=0.9.4,<0.10.0)
-Project-URL: Homepage, https://auth0.com
-Description-Content-Type: text/markdown
-
 # Auth0 AI for LangChain
 
 `auth0-ai-langchain` is an SDK for building secure AI-powered applications using [Auth0](https://www.auth0.ai/), [Okta FGA](https://docs.fga.dev/) and [LangChain](https://python.langchain.com/docs/tutorials/).
@@ -52,7 +30,7 @@ from langchain_core.tools import StructuredTool
 auth0_ai = Auth0AI()
 
 with_async_user_confirmation = auth0_ai.with_async_user_confirmation(
-    scope="stock:trade",
+    scopes=["stock:trade"],
     audience=os.getenv("AUDIENCE"),
     binding_message=lambda ticker, qty: f"Authorize the purchase of {qty} {ticker}",
     user_id=lambda *_, **__: ensure_config().get("configurable", {}).get("user_id"),
@@ -80,6 +58,36 @@ trade_tool = with_async_user_confirmation(
 
 2. Handle interruptions properly. For example, if user is not enrolled to MFA, it will throw an interruption. See [Handling Interrupts](#handling-interrupts) section.
 
+### CIBA with RAR (Rich Authorization Requests)
+`Auth0AI` supports RAR (Rich Authorization Requests) for CIBA. This allows you to provide additional authorization parameters to be displayed during the user confirmation request.
+
+When defining the tool authorizer, you can specify the `authorization_details` parameter to include detailed information about the authorization being requested:
+
+```python
+with_async_user_confirmation = auth0_ai.with_async_user_confirmation(
+    scopes=["stock:trade"],
+    audience=os.getenv("AUDIENCE"),
+    binding_message=lambda ticker, qty: f"Authorize the purchase of {qty} {ticker}",
+    authorization_details=lambda ticker, qty: [
+        {
+            "type": "trade_authorization",
+            "qty": qty,
+            "ticker": ticker,
+            "action": "buy"
+        }
+    ],
+    user_id=lambda *_, **__: ensure_config().get("configurable", {}).get("user_id"),
+    # Optional:
+    # store=InMemoryStore()
+)
+```
+
+To use RAR with CIBA, you need to [set up authorization details](https://auth0.com/docs/get-started/apis/configure-rich-authorization-requests) in your Auth0 tenant. This includes defining the authorization request parameters and their types. Additionally, the [Guardian SDK](https://auth0.com/docs/secure/multi-factor-authentication/auth0-guardian) is required to handle these authorization details in your authorizer app.
+
+For more information on setting up RAR with CIBA, refer to:
+- [Configure Rich Authorization Requests (RAR)](https://auth0.com/docs/get-started/apis/configure-rich-authorization-requests)
+- [User Authorization with CIBA](https://auth0.com/docs/get-started/authentication-and-authorization-flow/client-initiated-backchannel-authentication-flow/user-authorization-with-ciba)
+
 ## Authorization for Tools
 
 The `FGAAuthorizer` can leverage Okta FGA to authorize tools executions. The `FGAAuthorizer.create` function can be used to create an authorizer that checks permissions before executing the tool.
@@ -319,4 +327,3 @@ resumer.start()
 <p align="center">Auth0 is an easy to implement, adaptable authentication and authorization platform. To learn more checkout <a href="https://auth0.com/why-auth0">Why Auth0?</a></p>
 <p align="center">
 This project is licensed under the Apache 2.0 license. See the <a href="https://github.com/auth0-lab/auth0-ai-python/blob/main/LICENSE"> LICENSE</a> file for more info.</p>
-

{auth0_ai_langchain-1.0.0b1 → auth0_ai_langchain-1.0.0b3}/auth0_ai_langchain/auth0_ai.py

@@ -44,7 +44,7 @@ class Auth0AI:
             auth0_ai = Auth0AI()
 
             with_async_user_confirmation = auth0_ai.with_async_user_confirmation(
-                scope="stock:trade",
+                scopes=["stock:trade"],
                 audience=os.getenv("AUDIENCE"),
                 binding_message=lambda ticker, qty: f"Authorize the purchase of {qty} {ticker}",
                 user_id=lambda *_, **__: ensure_config().get("configurable", {}).get("user_id")
@@ -108,5 +108,6 @@ class Auth0AI:
             )
             ```
         """
-        authorizer = FederatedConnectionAuthorizer(FederatedConnectionAuthorizerParams(**params), self.auth0)
+        authorizer = FederatedConnectionAuthorizer(
+            FederatedConnectionAuthorizerParams(**params), self.auth0)
         return authorizer.authorizer()

{auth0_ai_langchain-1.0.0b1 → auth0_ai_langchain-1.0.0b3}/auth0_ai_langchain/federated_connections/__init__.py

@@ -3,5 +3,8 @@ from auth0_ai.interrupts.federated_connection_interrupt import (
     FederatedConnectionInterrupt as FederatedConnectionInterrupt
 )
 
-from auth0_ai.authorizers.federated_connection_authorizer import get_credentials_for_connection as get_credentials_for_connection
+from auth0_ai.authorizers.federated_connection_authorizer import (
+    get_credentials_for_connection as get_credentials_for_connection,
+    get_access_token_for_connection as get_access_token_for_connection
+)
 from .federated_connection_authorizer import FederatedConnectionAuthorizer as FederatedConnectionAuthorizer

{auth0_ai_langchain-1.0.0b1 → auth0_ai_langchain-1.0.0b3}/pyproject.toml

@@ -1,6 +1,6 @@
 [tool.poetry]
 name = "auth0-ai-langchain"
-version = "1.0.0b1"
+version = "1.0.0b3"
 description = "This package is an SDK for building secure AI-powered applications using Auth0, Okta FGA and LangChain."
 license = "apache-2.0"
 homepage = "https://auth0.com"
@@ -9,12 +9,12 @@ readme = "README.md"
 
 [tool.poetry.dependencies]
 python = "^3.11"
-openfga-sdk = "^0.9.4"
-langchain = "^0.3.25"
-langgraph-sdk = "^0.1.66"
-langchain-core = "^0.3.59"
-langgraph = "^0.4.3"
-auth0-ai = "^1.0.0b1"
+openfga-sdk = "^0.9.5"
+langchain = "^0.3.26"
+langgraph-sdk = "^0.1.73"
+langchain-core = "^0.3.69"
+langgraph = "^0.5.3"
+auth0-ai = "^1.0.0b3"
 # auth0-ai = { path = "../auth0-ai", develop = true }
 
 [tool.poetry.group.test.dependencies]