auth0-oauth-client 0.2.0__tar.gz

auth0_oauth_client-0.2.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 tinuvi
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

auth0_oauth_client-0.2.0/PKG-INFO

@@ -0,0 +1,48 @@
+Metadata-Version: 2.3
+Name: auth0-oauth-client
+Version: 0.2.0
+Summary: A Django-focused Auth0 integration providing automated OIDC flows, account linking, and so on.
+Home-page: https://github.com/tinuvi/auth0-oauth-client
+License: MIT
+Author: Tinuvi
+Author-email: no-reply@tinuvi.com
+Requires-Python: >=3.14,<4.0
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Programming Language :: Python :: 3
+Requires-Dist: auth0-python (>=4.13.0,<5.0.0)
+Requires-Dist: django (>=5.2.9,<6.0.0)
+Requires-Dist: pyjwt (>=2.7.0,<3.0.0)
+Requires-Dist: requests (>=2.32.5,<3.0.0)
+Project-URL: Bug Tracker, https://github.com/tinuvi/auth0-oauth-client/issues
+Project-URL: Repository, https://github.com/tinuvi/auth0-oauth-client
+Description-Content-Type: text/markdown
+
+# Auth0 OAuth Client
+
+A Django-focused Auth0 integration providing automated OIDC flows, account linking, and connected account (My Account API). It's been created to support the [Auth0 Token Vault](https://auth0.com/docs/secure/call-apis-on-users-behalf/token-vault) feature, which requires Connected Accounts flow.
+
+It's an opinionated library focused on the needs of our own products. Feel free to fork it and adapt it to your needs.
+
+## Rules
+
+The [`sample_app`](./samples) demonstrates how to use the library. It implements the following rules:
+
+- Only required scopes are requested for social connections.
+- Additional scopes are requested during the [connected account request flow](https://auth0.com/docs/api/myaccount/create-connected-account-request) (progressive consent).
+- When the user creates a connected account, that connected account is eligible for automatic account linking.
+  - Consider the following scenario:
+    - If a user logs in with `xpto@acme.com` and adds `qwerty@gmail.com` as a connected account, logging in later with the Gmail address will link both, with `xpto@acme.com` remaining the primary account. No confirmation is required.
+    - The same is true when the connected account matches the primary account.
+- If a user signs up with an email/password, logs out, and later logs back in using a social connection with that same email, the accounts are automatically linked. The original email/password account is used as the primary account.
+- If a user signs up via social, logs out, and later tries to log in with a password using the same email, they'll need to re-authenticate with the original social provider to link the accounts. The primary account is the social one.
+
+## Why did we build this?
+
+Auth0 used to be the 'Stripe of Identity' sort of thing, known for its great developer experience. Lately, I’m not so sure. I almost gave up on it, but after finding some workarounds, I decided to build this library. I’m sharing it because seeing these issues go unaddressed hurts my software developer soul. 😬
+
+Read the following Auth0 Community Questions for more details:
+
+- [Auth0 Fails to Store Refresh Tokens for Linked Accounts](https://community.auth0.com/t/auth0-fails-to-store-refresh-tokens-for-linked-accounts/196953?u=tinuvi.solutions).
+- [I had built an integration using Token Vault, and it stopped. Understand why](https://community.auth0.com/t/ms-agent-framework-and-python-use-the-auth0-token-vault-to-call-third-party-apis/193959/4?u=tinuvi.solutions).
+
+At the time of writing this README (2026-02-13), [My Account API is not GA yet](https://auth0.com/docs/api/myaccount/). It means this library might eventually break if Auth0 changes its API, again. 😐 

auth0_oauth_client-0.2.0/README.md

@@ -0,0 +1,29 @@
+# Auth0 OAuth Client
+
+A Django-focused Auth0 integration providing automated OIDC flows, account linking, and connected account (My Account API). It's been created to support the [Auth0 Token Vault](https://auth0.com/docs/secure/call-apis-on-users-behalf/token-vault) feature, which requires Connected Accounts flow.
+
+It's an opinionated library focused on the needs of our own products. Feel free to fork it and adapt it to your needs.
+
+## Rules
+
+The [`sample_app`](./samples) demonstrates how to use the library. It implements the following rules:
+
+- Only required scopes are requested for social connections.
+- Additional scopes are requested during the [connected account request flow](https://auth0.com/docs/api/myaccount/create-connected-account-request) (progressive consent).
+- When the user creates a connected account, that connected account is eligible for automatic account linking.
+  - Consider the following scenario:
+    - If a user logs in with `xpto@acme.com` and adds `qwerty@gmail.com` as a connected account, logging in later with the Gmail address will link both, with `xpto@acme.com` remaining the primary account. No confirmation is required.
+    - The same is true when the connected account matches the primary account.
+- If a user signs up with an email/password, logs out, and later logs back in using a social connection with that same email, the accounts are automatically linked. The original email/password account is used as the primary account.
+- If a user signs up via social, logs out, and later tries to log in with a password using the same email, they'll need to re-authenticate with the original social provider to link the accounts. The primary account is the social one.
+
+## Why did we build this?
+
+Auth0 used to be the 'Stripe of Identity' sort of thing, known for its great developer experience. Lately, I’m not so sure. I almost gave up on it, but after finding some workarounds, I decided to build this library. I’m sharing it because seeing these issues go unaddressed hurts my software developer soul. 😬
+
+Read the following Auth0 Community Questions for more details:
+
+- [Auth0 Fails to Store Refresh Tokens for Linked Accounts](https://community.auth0.com/t/auth0-fails-to-store-refresh-tokens-for-linked-accounts/196953?u=tinuvi.solutions).
+- [I had built an integration using Token Vault, and it stopped. Understand why](https://community.auth0.com/t/ms-agent-framework-and-python-use-the-auth0-token-vault-to-call-third-party-apis/193959/4?u=tinuvi.solutions).
+
+At the time of writing this README (2026-02-13), [My Account API is not GA yet](https://auth0.com/docs/api/myaccount/). It means this library might eventually break if Auth0 changes its API, again. 😐 

auth0_oauth_client-0.2.0/auth0_oauth_client/__init__.py

@@ -0,0 +1 @@
+from .client import auth_client

auth0_oauth_client-0.2.0/auth0_oauth_client/admin.py

@@ -0,0 +1,56 @@
+from django.contrib import admin
+
+from auth0_oauth_client.models import AccountLinking
+from auth0_oauth_client.models import AccountToken
+from auth0_oauth_client.models import ConnectedAccount
+
+
+@admin.register(ConnectedAccount)
+class ConnectedAccountAdmin(admin.ModelAdmin):
+    list_display = (
+        "id",
+        "connected_account_id",
+        "email",
+        "provider",
+        "user_id_owner",
+        "is_account_linked",
+        "created_at",
+        "updated_at",
+    )
+    list_filter = (
+        "provider",
+        "is_account_linked",
+    )
+    search_fields = (
+        "email",
+        "user_id_owner",
+    )
+
+
+@admin.register(AccountToken)
+class AccountTokenAdmin(admin.ModelAdmin):
+    list_display = (
+        "id",
+        "user_id",
+        "refresh_token",
+        "created_at",
+        "updated_at",
+    )
+    search_fields = ("user_id",)
+
+
+@admin.register(AccountLinking)
+class AccountLinkingAdmin(admin.ModelAdmin):
+    list_display = (
+        "id",
+        "primary_user_id",
+        "secondary_provider",
+        "secondary_user_id",
+        "created_at",
+        "updated_at",
+    )
+    list_filter = ("secondary_provider",)
+    search_fields = (
+        "primary_user_id",
+        "secondary_user_id",
+    )

auth0_oauth_client-0.2.0/auth0_oauth_client/apps.py

@@ -0,0 +1,6 @@
+from django.apps import AppConfig
+
+
+class Auth0OauthClientConfig(AppConfig):
+    default_auto_field = "django.db.models.BigAutoField"
+    name = "auth0_oauth_client"