PyPI - basic-memory - Versions diffs - 0.14.2__py3-none-any.whl → 0.14.3__py3-none-any.whl - Mend

basic-memory 0.14.2py3-none-any.whl → 0.14.3py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of basic-memory might be problematic. Click here for more details.

Files changed (51) hide show

basic_memory/__init__.py +1 -1
basic_memory/alembic/env.py +3 -1
basic_memory/api/app.py +4 -1
basic_memory/api/routers/management_router.py +3 -1
basic_memory/api/routers/project_router.py +21 -13
basic_memory/cli/app.py +3 -3
basic_memory/cli/commands/__init__.py +1 -2
basic_memory/cli/commands/db.py +5 -5
basic_memory/cli/commands/import_chatgpt.py +3 -2
basic_memory/cli/commands/import_claude_conversations.py +3 -1
basic_memory/cli/commands/import_claude_projects.py +3 -1
basic_memory/cli/commands/import_memory_json.py +5 -2
basic_memory/cli/commands/mcp.py +3 -15
basic_memory/cli/commands/project.py +41 -0
basic_memory/cli/commands/status.py +4 -1
basic_memory/cli/commands/sync.py +10 -2
basic_memory/cli/main.py +0 -1
basic_memory/config.py +46 -31
basic_memory/db.py +2 -6
basic_memory/deps.py +3 -2
basic_memory/importers/chatgpt_importer.py +19 -9
basic_memory/importers/memory_json_importer.py +22 -7
basic_memory/mcp/async_client.py +22 -2
basic_memory/mcp/project_session.py +6 -4
basic_memory/mcp/prompts/__init__.py +0 -2
basic_memory/mcp/server.py +8 -71
basic_memory/mcp/tools/move_note.py +24 -12
basic_memory/mcp/tools/read_content.py +16 -0
basic_memory/mcp/tools/read_note.py +12 -0
basic_memory/mcp/tools/sync_status.py +3 -2
basic_memory/mcp/tools/write_note.py +9 -1
basic_memory/models/project.py +3 -3
basic_memory/repository/project_repository.py +18 -0
basic_memory/schemas/importer.py +1 -0
basic_memory/services/entity_service.py +49 -3
basic_memory/services/initialization.py +0 -75
basic_memory/services/project_service.py +85 -28
basic_memory/sync/background_sync.py +4 -3
basic_memory/sync/sync_service.py +50 -1
basic_memory/utils.py +105 -4
{basic_memory-0.14.2.dist-info → basic_memory-0.14.3.dist-info}/METADATA +2 -2
{basic_memory-0.14.2.dist-info → basic_memory-0.14.3.dist-info}/RECORD +45 -51
basic_memory/cli/commands/auth.py +0 -136
basic_memory/mcp/auth_provider.py +0 -270
basic_memory/mcp/external_auth_provider.py +0 -321
basic_memory/mcp/prompts/sync_status.py +0 -112
basic_memory/mcp/supabase_auth_provider.py +0 -463
basic_memory/services/migration_service.py +0 -168
{basic_memory-0.14.2.dist-info → basic_memory-0.14.3.dist-info}/WHEEL +0 -0
{basic_memory-0.14.2.dist-info → basic_memory-0.14.3.dist-info}/entry_points.txt +0 -0
{basic_memory-0.14.2.dist-info → basic_memory-0.14.3.dist-info}/licenses/LICENSE +0 -0

basic_memory/mcp/auth_provider.py DELETED Viewed

@@ -1,270 +0,0 @@
-"""OAuth authentication provider for Basic Memory MCP server."""
-import secrets
-from datetime import datetime, timedelta, timezone
-from typing import Dict, Optional
-import jwt
-from mcp.server.auth.provider import (
-    OAuthAuthorizationServerProvider,
-    AuthorizationParams,
-    AuthorizationCode,
-    RefreshToken,
-    AccessToken,
-)
-from mcp.shared.auth import OAuthClientInformationFull, OAuthToken
-from loguru import logger
-class BasicMemoryAuthorizationCode(AuthorizationCode):
-    """Extended authorization code with additional metadata."""
-    issuer_state: Optional[str] = None
-class BasicMemoryRefreshToken(RefreshToken):
-    """Extended refresh token with additional metadata."""
-    pass
-class BasicMemoryAccessToken(AccessToken):
-    """Extended access token with additional metadata."""
-    pass
-class BasicMemoryOAuthProvider(
-    OAuthAuthorizationServerProvider[
-        BasicMemoryAuthorizationCode, BasicMemoryRefreshToken, BasicMemoryAccessToken
-    ]
-):
-    """OAuth provider for Basic Memory MCP server.
-    This is a simple in-memory implementation that can be extended
-    to integrate with external OAuth providers or use persistent storage.
-    """
-    def __init__(self, issuer_url: str = "http://localhost:8000", secret_key: Optional[str] = None):
-        self.issuer_url = issuer_url
-        # Use environment variable for secret key if available, otherwise generate
-        import os
-        self.secret_key = (
-            secret_key or os.getenv("FASTMCP_AUTH_SECRET_KEY") or secrets.token_urlsafe(32)
-        )
-        # In-memory storage - in production, use a proper database
-        self.clients: Dict[str, OAuthClientInformationFull] = {}
-        self.authorization_codes: Dict[str, BasicMemoryAuthorizationCode] = {}
-        self.refresh_tokens: Dict[str, BasicMemoryRefreshToken] = {}
-        self.access_tokens: Dict[str, BasicMemoryAccessToken] = {}
-    async def get_client(self, client_id: str) -> Optional[OAuthClientInformationFull]:
-        """Get a client by ID."""
-        return self.clients.get(client_id)
-    async def register_client(self, client_info: OAuthClientInformationFull) -> None:
-        """Register a new OAuth client."""
-        # Generate client ID if not provided
-        if not client_info.client_id:
-            client_info.client_id = secrets.token_urlsafe(16)
-        # Generate client secret if not provided
-        if not client_info.client_secret:
-            client_info.client_secret = secrets.token_urlsafe(32)
-        self.clients[client_info.client_id] = client_info
-        logger.info(f"Registered OAuth client: {client_info.client_id}")
-    async def authorize(
-        self, client: OAuthClientInformationFull, params: AuthorizationParams
-    ) -> str:
-        """Create an authorization URL for the OAuth flow.
-        For basic-memory, we'll implement a simple authorization flow.
-        In production, this might redirect to an external provider.
-        """
-        # Generate authorization code
-        auth_code = secrets.token_urlsafe(32)
-        # Store authorization code with metadata
-        self.authorization_codes[auth_code] = BasicMemoryAuthorizationCode(
-            code=auth_code,
-            scopes=params.scopes or [],
-            expires_at=(datetime.now(timezone.utc) + timedelta(minutes=10)).timestamp(),
-            client_id=client.client_id,
-            code_challenge=params.code_challenge,
-            redirect_uri=params.redirect_uri,
-            redirect_uri_provided_explicitly=params.redirect_uri_provided_explicitly,
-            issuer_state=params.state,
-        )
-        # In a real implementation, we'd redirect to an authorization page
-        # For now, we'll just return the redirect URL with the code
-        redirect_uri = str(params.redirect_uri)
-        separator = "&" if "?" in redirect_uri else "?"
-        auth_url = f"{redirect_uri}{separator}code={auth_code}"
-        if params.state:
-            auth_url += f"&state={params.state}"
-        return auth_url
-    async def load_authorization_code(
-        self, client: OAuthClientInformationFull, authorization_code: str
-    ) -> Optional[BasicMemoryAuthorizationCode]:
-        """Load an authorization code."""
-        code = self.authorization_codes.get(authorization_code)
-        if code and code.client_id == client.client_id:
-            # Check if expired
-            if datetime.now(timezone.utc).timestamp() > code.expires_at:
-                del self.authorization_codes[authorization_code]
-                return None
-            return code
-        return None
-    async def exchange_authorization_code(
-        self, client: OAuthClientInformationFull, authorization_code: BasicMemoryAuthorizationCode
-    ) -> OAuthToken:
-        """Exchange an authorization code for tokens."""
-        # Generate tokens
-        access_token = self._generate_access_token(client.client_id, authorization_code.scopes)
-        refresh_token = secrets.token_urlsafe(32)
-        # Store tokens
-        expires_at = (datetime.now(timezone.utc) + timedelta(hours=1)).timestamp()
-        self.access_tokens[access_token] = BasicMemoryAccessToken(
-            token=access_token,
-            client_id=client.client_id,
-            scopes=authorization_code.scopes,
-            expires_at=int(expires_at),
-        )
-        self.refresh_tokens[refresh_token] = BasicMemoryRefreshToken(
-            token=refresh_token,
-            client_id=client.client_id,
-            scopes=authorization_code.scopes,
-        )
-        # Remove used authorization code
-        del self.authorization_codes[authorization_code.code]
-        return OAuthToken(
-            access_token=access_token,
-            token_type="bearer",
-            expires_in=3600,  # 1 hour
-            refresh_token=refresh_token,
-            scope=" ".join(authorization_code.scopes) if authorization_code.scopes else None,
-        )
-    async def load_refresh_token(
-        self, client: OAuthClientInformationFull, refresh_token: str
-    ) -> Optional[BasicMemoryRefreshToken]:
-        """Load a refresh token."""
-        token = self.refresh_tokens.get(refresh_token)
-        if token and token.client_id == client.client_id:
-            return token
-        return None
-    async def exchange_refresh_token(
-        self,
-        client: OAuthClientInformationFull,
-        refresh_token: BasicMemoryRefreshToken,
-        scopes: list[str],
-    ) -> OAuthToken:
-        """Exchange a refresh token for new tokens."""
-        # Use requested scopes or original scopes
-        token_scopes = scopes if scopes else refresh_token.scopes
-        # Generate new tokens
-        new_access_token = self._generate_access_token(client.client_id, token_scopes)
-        new_refresh_token = secrets.token_urlsafe(32)
-        # Store new tokens
-        expires_at = (datetime.now(timezone.utc) + timedelta(hours=1)).timestamp()
-        self.access_tokens[new_access_token] = BasicMemoryAccessToken(
-            token=new_access_token,
-            client_id=client.client_id,
-            scopes=token_scopes,
-            expires_at=int(expires_at),
-        )
-        self.refresh_tokens[new_refresh_token] = BasicMemoryRefreshToken(
-            token=new_refresh_token,
-            client_id=client.client_id,
-            scopes=token_scopes,
-        )
-        # Remove old tokens
-        del self.refresh_tokens[refresh_token.token]
-        return OAuthToken(
-            access_token=new_access_token,
-            token_type="bearer",
-            expires_in=3600,  # 1 hour
-            refresh_token=new_refresh_token,
-            scope=" ".join(token_scopes) if token_scopes else None,
-        )
-    async def load_access_token(self, token: str) -> Optional[BasicMemoryAccessToken]:
-        """Load and validate an access token."""
-        logger.debug("Loading access token, checking in-memory store first")
-        access_token = self.access_tokens.get(token)
-        if access_token:
-            # Check if expired
-            if access_token.expires_at and datetime.now(timezone.utc).timestamp() > access_token.expires_at:
-                logger.debug("Token found in memory but expired, removing")
-                del self.access_tokens[token]
-                return None
-            logger.debug("Token found in memory and valid")
-            return access_token
-        # Try to decode as JWT
-        logger.debug("Token not in memory, attempting JWT decode with secret key")
-        try:
-            # Decode with audience verification - PyJWT expects the audience to match
-            payload = jwt.decode(
-                token,
-                self.secret_key,
-                algorithms=["HS256"],
-                audience="basic-memory",  # Expecting this audience
-                issuer=self.issuer_url,  # And this issuer
-            )
-            logger.debug(f"JWT decoded successfully: {payload}")
-            return BasicMemoryAccessToken(
-                token=token,
-                client_id=payload.get("sub", ""),
-                scopes=payload.get("scopes", []),
-                expires_at=payload.get("exp"),
-            )
-        except jwt.InvalidTokenError as e:
-            logger.error(f"JWT decode failed: {e}")
-            return None
-    async def revoke_token(self, token: BasicMemoryAccessToken | BasicMemoryRefreshToken) -> None:
-        """Revoke an access or refresh token."""
-        if isinstance(token, BasicMemoryAccessToken):
-            self.access_tokens.pop(token.token, None)
-        else:
-            self.refresh_tokens.pop(token.token, None)
-    def _generate_access_token(self, client_id: str, scopes: list[str]) -> str:
-        """Generate a JWT access token."""
-        payload = {
-            "iss": self.issuer_url,
-            "sub": client_id,
-            "aud": "basic-memory",
-            "exp": datetime.now(timezone.utc) + timedelta(hours=1),
-            "iat": datetime.now(timezone.utc),
-            "scopes": scopes,
-        }
-        return jwt.encode(payload, self.secret_key, algorithm="HS256")

basic_memory/mcp/external_auth_provider.py DELETED Viewed

@@ -1,321 +0,0 @@
-"""External OAuth provider integration for Basic Memory MCP server."""
-import os
-from typing import Optional, Dict, Any
-from dataclasses import dataclass
-import httpx
-from loguru import logger
-from mcp.server.auth.provider import (
-    OAuthAuthorizationServerProvider,
-    AuthorizationParams,
-    AuthorizationCode,
-    RefreshToken,
-    AccessToken,
-    construct_redirect_uri,
-)
-from mcp.shared.auth import OAuthClientInformationFull, OAuthToken
-@dataclass
-class ExternalAuthorizationCode(AuthorizationCode):
-    """Authorization code with external provider metadata."""
-    external_code: Optional[str] = None
-    state: Optional[str] = None
-@dataclass
-class ExternalRefreshToken(RefreshToken):
-    """Refresh token with external provider metadata."""
-    external_token: Optional[str] = None
-@dataclass
-class ExternalAccessToken(AccessToken):
-    """Access token with external provider metadata."""
-    external_token: Optional[str] = None
-class ExternalOAuthProvider(
-    OAuthAuthorizationServerProvider[
-        ExternalAuthorizationCode, ExternalRefreshToken, ExternalAccessToken
-    ]
-):
-    """OAuth provider that delegates to external OAuth providers.
-    This provider can integrate with services like:
-    - GitHub OAuth
-    - Google OAuth
-    - Auth0
-    - Okta
-    """
-    def __init__(
-        self,
-        issuer_url: str,
-        external_provider: str,
-        external_client_id: str,
-        external_client_secret: str,
-        external_authorize_url: str,
-        external_token_url: str,
-        external_userinfo_url: Optional[str] = None,
-    ):
-        self.issuer_url = issuer_url
-        self.external_provider = external_provider
-        self.external_client_id = external_client_id
-        self.external_client_secret = external_client_secret
-        self.external_authorize_url = external_authorize_url
-        self.external_token_url = external_token_url
-        self.external_userinfo_url = external_userinfo_url
-        # In-memory storage - in production, use a database
-        self.clients: Dict[str, OAuthClientInformationFull] = {}
-        self.codes: Dict[str, ExternalAuthorizationCode] = {}
-        self.tokens: Dict[str, Any] = {}
-        self.http_client = httpx.AsyncClient()
-    async def get_client(self, client_id: str) -> Optional[OAuthClientInformationFull]:
-        """Get a client by ID."""
-        return self.clients.get(client_id)
-    async def register_client(self, client_info: OAuthClientInformationFull) -> None:
-        """Register a new OAuth client."""
-        self.clients[client_info.client_id] = client_info
-        logger.info(f"Registered external OAuth client: {client_info.client_id}")
-    async def authorize(
-        self, client: OAuthClientInformationFull, params: AuthorizationParams
-    ) -> str:
-        """Create authorization URL redirecting to external provider."""
-        # Store authorization request
-        import secrets
-        state = secrets.token_urlsafe(32)
-        self.codes[state] = ExternalAuthorizationCode(
-            code=state,
-            scopes=params.scopes or [],
-            expires_at=0,  # Will be set by external provider
-            client_id=client.client_id,
-            code_challenge=params.code_challenge,
-            redirect_uri=params.redirect_uri,
-            redirect_uri_provided_explicitly=params.redirect_uri_provided_explicitly,
-            state=params.state,
-        )
-        # Build external provider URL
-        external_params = {
-            "client_id": self.external_client_id,
-            "redirect_uri": f"{self.issuer_url}/callback",
-            "response_type": "code",
-            "state": state,
-            "scope": " ".join(params.scopes or []),
-        }
-        return construct_redirect_uri(self.external_authorize_url, **external_params)
-    async def handle_callback(self, code: str, state: str) -> str:
-        """Handle callback from external provider."""
-        # Get original authorization request
-        auth_code = self.codes.get(state)
-        if not auth_code:
-            raise ValueError("Invalid state parameter")
-        # Exchange code with external provider
-        token_data = {
-            "grant_type": "authorization_code",
-            "code": code,
-            "redirect_uri": f"{self.issuer_url}/callback",
-            "client_id": self.external_client_id,
-            "client_secret": self.external_client_secret,
-        }
-        response = await self.http_client.post(
-            self.external_token_url,
-            data=token_data,
-        )
-        response.raise_for_status()
-        external_tokens = response.json()
-        # Store external tokens
-        import secrets
-        internal_code = secrets.token_urlsafe(32)
-        self.codes[internal_code] = ExternalAuthorizationCode(
-            code=internal_code,
-            scopes=auth_code.scopes,
-            expires_at=0,
-            client_id=auth_code.client_id,
-            code_challenge=auth_code.code_challenge,
-            redirect_uri=auth_code.redirect_uri,
-            redirect_uri_provided_explicitly=auth_code.redirect_uri_provided_explicitly,
-            external_code=code,
-            state=auth_code.state,
-        )
-        self.tokens[internal_code] = external_tokens
-        # Redirect to original client
-        return construct_redirect_uri(
-            str(auth_code.redirect_uri),
-            code=internal_code,
-            state=auth_code.state,
-        )
-    async def load_authorization_code(
-        self, client: OAuthClientInformationFull, authorization_code: str
-    ) -> Optional[ExternalAuthorizationCode]:
-        """Load an authorization code."""
-        code = self.codes.get(authorization_code)
-        if code and code.client_id == client.client_id:
-            return code
-        return None
-    async def exchange_authorization_code(
-        self, client: OAuthClientInformationFull, authorization_code: ExternalAuthorizationCode
-    ) -> OAuthToken:
-        """Exchange authorization code for tokens."""
-        # Get stored external tokens
-        external_tokens = self.tokens.get(authorization_code.code)
-        if not external_tokens:
-            raise ValueError("No tokens found for authorization code")
-        # Map external tokens to MCP tokens
-        access_token = external_tokens.get("access_token")
-        refresh_token = external_tokens.get("refresh_token")
-        expires_in = external_tokens.get("expires_in", 3600)
-        # Store the mapping
-        self.tokens[access_token] = {
-            "client_id": client.client_id,
-            "external_token": access_token,
-            "scopes": authorization_code.scopes,
-        }
-        if refresh_token:
-            self.tokens[refresh_token] = {
-                "client_id": client.client_id,
-                "external_token": refresh_token,
-                "scopes": authorization_code.scopes,
-            }
-        # Clean up authorization code
-        del self.codes[authorization_code.code]
-        return OAuthToken(
-            access_token=access_token,
-            token_type="bearer",
-            expires_in=expires_in,
-            refresh_token=refresh_token,
-            scope=" ".join(authorization_code.scopes) if authorization_code.scopes else None,
-        )
-    async def load_refresh_token(
-        self, client: OAuthClientInformationFull, refresh_token: str
-    ) -> Optional[ExternalRefreshToken]:
-        """Load a refresh token."""
-        token_info = self.tokens.get(refresh_token)
-        if token_info and token_info["client_id"] == client.client_id:
-            return ExternalRefreshToken(
-                token=refresh_token,
-                client_id=client.client_id,
-                scopes=token_info["scopes"],
-                external_token=token_info.get("external_token"),
-            )
-        return None
-    async def exchange_refresh_token(
-        self,
-        client: OAuthClientInformationFull,
-        refresh_token: ExternalRefreshToken,
-        scopes: list[str],
-    ) -> OAuthToken:
-        """Exchange refresh token for new tokens."""
-        # Exchange with external provider
-        token_data = {
-            "grant_type": "refresh_token",
-            "refresh_token": refresh_token.external_token or refresh_token.token,
-            "client_id": self.external_client_id,
-            "client_secret": self.external_client_secret,
-        }
-        response = await self.http_client.post(
-            self.external_token_url,
-            data=token_data,
-        )
-        response.raise_for_status()
-        external_tokens = response.json()
-        # Update stored tokens
-        new_access_token = external_tokens.get("access_token")
-        new_refresh_token = external_tokens.get("refresh_token", refresh_token.token)
-        expires_in = external_tokens.get("expires_in", 3600)
-        self.tokens[new_access_token] = {
-            "client_id": client.client_id,
-            "external_token": new_access_token,
-            "scopes": scopes or refresh_token.scopes,
-        }
-        if new_refresh_token != refresh_token.token:
-            self.tokens[new_refresh_token] = {
-                "client_id": client.client_id,
-                "external_token": new_refresh_token,
-                "scopes": scopes or refresh_token.scopes,
-            }
-            del self.tokens[refresh_token.token]
-        return OAuthToken(
-            access_token=new_access_token,
-            token_type="bearer",
-            expires_in=expires_in,
-            refresh_token=new_refresh_token,
-            scope=" ".join(scopes or refresh_token.scopes),
-        )
-    async def load_access_token(self, token: str) -> Optional[ExternalAccessToken]:
-        """Load and validate an access token."""
-        token_info = self.tokens.get(token)
-        if token_info:
-            return ExternalAccessToken(
-                token=token,
-                client_id=token_info["client_id"],
-                scopes=token_info["scopes"],
-                external_token=token_info.get("external_token"),
-            )
-        return None
-    async def revoke_token(self, token: ExternalAccessToken | ExternalRefreshToken) -> None:
-        """Revoke a token."""
-        self.tokens.pop(token.token, None)
-def create_github_provider() -> ExternalOAuthProvider:
-    """Create an OAuth provider for GitHub integration."""
-    return ExternalOAuthProvider(
-        issuer_url=os.getenv("FASTMCP_AUTH_ISSUER_URL", "http://localhost:8000"),
-        external_provider="github",
-        external_client_id=os.getenv("GITHUB_CLIENT_ID", ""),
-        external_client_secret=os.getenv("GITHUB_CLIENT_SECRET", ""),
-        external_authorize_url="https://github.com/login/oauth/authorize",
-        external_token_url="https://github.com/login/oauth/access_token",
-        external_userinfo_url="https://api.github.com/user",
-    )
-def create_google_provider() -> ExternalOAuthProvider:
-    """Create an OAuth provider for Google integration."""
-    return ExternalOAuthProvider(
-        issuer_url=os.getenv("FASTMCP_AUTH_ISSUER_URL", "http://localhost:8000"),
-        external_provider="google",
-        external_client_id=os.getenv("GOOGLE_CLIENT_ID", ""),
-        external_client_secret=os.getenv("GOOGLE_CLIENT_SECRET", ""),
-        external_authorize_url="https://accounts.google.com/o/oauth2/v2/auth",
-        external_token_url="https://oauth2.googleapis.com/token",
-        external_userinfo_url="https://www.googleapis.com/oauth2/v1/userinfo",
-    )

basic-memory 0.14.2__py3-none-any.whl → 0.14.3__py3-none-any.whl

Potentially problematic release.

basic-memory 0.14.2py3-none-any.whl → 0.14.3py3-none-any.whl