clear-skies 2.0.13__py3-none-any.whl → 2.0.15__py3-none-any.whl

{clear_skies-2.0.13.dist-info → clear_skies-2.0.15.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: clear-skies
-Version: 2.0.13
+Version: 2.0.15
 Summary: A framework for building backends in the cloud
 Project-URL: Documentation, https://clearskies.io/
 Project-URL: Repository, https://github.com/clearskies-py/clearskies

{clear_skies-2.0.13.dist-info → clear_skies-2.0.15.dist-info}/RECORD

@@ -5,10 +5,10 @@ clearskies/configurable.py,sha256=gfX9o5qgMqc8lSzrdcUyR3b6zdOvg9ccYBQ0VvZjXkk,30
 clearskies/decorators.py,sha256=lcXJC4xI-hRyKDSH8yklcWjOrIL9k2Qks1xP2lmyDm0,1024
 clearskies/decorators.pyi,sha256=qSRzPJYYoV9trEsh_V1BxP2HdMz0G2gOs4FV8f5hvyU,388
 clearskies/end.py,sha256=mEPdBB4lh9zmAKTbsffCh-mQMZGIVohriWjm-952EzA,10629
-clearskies/endpoint.py,sha256=z4ys46jZC1rFSAfwdc-eScUDThcJ4mILRCQMcqvAX68,47960
+clearskies/endpoint.py,sha256=Q_ovFPRB_8dRm2bU-yDHtXqeAVRVenILMD4f2wrtaKU,47947
 clearskies/endpoint_group.py,sha256=qsxQpt1i6IRvQqhQkt_udoVj0TMdoIOccvKyEBaeaEg,12343
 clearskies/environment.py,sha256=BbNgQH3uuCTxoHeLB9O1_HsPTaJL5aiXqY6hZ9aj-jo,3739
-clearskies/model.py,sha256=1cCx1KcAOK6_MHBdgtWdu4lZMYuPQaWHSrXsdW4v7V8,77545
+clearskies/model.py,sha256=OBPIatlGpyoiIG0krdUy10icmouz6jLhdr81FtyH9Zo,77535
 clearskies/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 clearskies/schema.py,sha256=9S0RuFBiydsDy4kATy2BBsXJ9aWHILW0ja_q9F4kxb0,2872
 clearskies/security_header.py,sha256=_RsQEJahVTIB8m8IIgQgYk8NhX_6QJqRJpQDh2NETNo,467
@@ -19,7 +19,7 @@ clearskies/authentication/__init__.py,sha256=MxXNCWhKbha7TPu_MAyssfTdOCEDSNBwzsh
 clearskies/authentication/authentication.py,sha256=B1I8udvtGfEdiUrqUM8V3YT_Cxema9eDOSlnXjgC35s,1230
 clearskies/authentication/authorization.py,sha256=87eRORyR7RpyB5YnLm6zqn4JQjTUIA4psfTjTE-oSSg,805
 clearskies/authentication/authorization_pass_through.py,sha256=EEQ-JJbBVLAoRefrNFAWBicoJO5k3B4gZQc2rQAwIBk,556
-clearskies/authentication/jwks.py,sha256=_-peGZC9vDcIxuPXFObvIGX_GA04aOfewVNngrdbCDA,4857
+clearskies/authentication/jwks.py,sha256=slAx3xbTDiIWx0Cp7fn4z7_iDfGMWZZ-YAHHX5Imae0,4852
 clearskies/authentication/public.py,sha256=GSNl4X4fnB25BZoXSo8nqL0iZCa9rzfvPfIsJ2Y34B4,84
 clearskies/authentication/secret_bearer.py,sha256=OVLi9kJNIGF1Cyl4nOxDxuuctZCVBP2L-bT2Og8qCHE,17377
 clearskies/autodoc/__init__.py,sha256=JRUAmd0he8iGlgiZvxewLMIXJqnOFEdvlaKAtHpC2lo,124
@@ -29,7 +29,7 @@ clearskies/autodoc/formats/oai3_json/__init__.py,sha256=tbbOZWkX9ZWj4BM3arHrlmqy
 clearskies/autodoc/formats/oai3_json/oai3_json.py,sha256=-LViw86zpPAgAEnC42KuobccvFATRg-j8ZEd8BiTYFA,2964
 clearskies/autodoc/formats/oai3_json/oai3_schema_resolver.py,sha256=5gifJ36dyWEeYtfjHVbbTpPBo0BB1Gqxt0Y3sxTiHJA,509
 clearskies/autodoc/formats/oai3_json/parameter.py,sha256=h9bHXxqJhUc7NRQCZF6RnIPuaY9BA6V_xzYNnsplXlc,1110
-clearskies/autodoc/formats/oai3_json/request.py,sha256=WHEWQvhuhkw82V4YS6GwDN4y8Qy7QDSn9awJEhwLmWU,2939
+clearskies/autodoc/formats/oai3_json/request.py,sha256=RM6PgdZNHVP6iH9oeOfSPwyp-v0k3MhUEOT8SLxORd0,2932
 clearskies/autodoc/formats/oai3_json/response.py,sha256=ou06oFQtaAR70qIvIoAe4QzohWiACzhCwlW73oM5Dvg,778
 clearskies/autodoc/formats/oai3_json/test.json,sha256=DdMvSUbaTEAyWtX_RDxEFR82kK9pCCTeFUghQwHjB3s,59848
 clearskies/autodoc/formats/oai3_json/schema/__init__.py,sha256=VJiDueMdGfJoVQVt9SXIE_-uPghSXtCzpTXuqPaaiRw,173
@@ -66,7 +66,7 @@ clearskies/backends/api_backend.py,sha256=4xcAymjkAgIA_9H68owe2Y9D4omxRnq6tnp_0R
 clearskies/backends/backend.py,sha256=XzFBsUP4lwX2c2_zeK4Hch1MlT3YJS1ffxolUHoJXqA,5797
 clearskies/backends/cursor_backend.py,sha256=5YBO0EwxU_1YKIL3_fIbA93sh7NG4Qg8jpAMoIA5qiU,14139
 clearskies/backends/memory_backend.py,sha256=H_2fib9EFdXsg3ZMMpC20DMHnrnYDbPgZnmiarbOhiM,33963
-clearskies/backends/secrets_backend.py,sha256=6YVx154vhFLt_Fz0dz8wjQiVbaqBzPoUlfsYXU-9h7s,4044
+clearskies/backends/secrets_backend.py,sha256=f_C5oAAr3tgM4UqioYPWcASPe9DhySC_uLWYGgMEPpY,3987
 clearskies/columns/__init__.py,sha256=a__-1hv-aMV3RU0Sd-BEkfItSJaG51EF2VeRQoTdka8,1990
 clearskies/columns/audit.py,sha256=KABjKk3YdV6G_43OdkhFA_iGkmjP9Sb-m0Beh2_aXU4,7624
 clearskies/columns/belongs_to_id.py,sha256=Ga3IpWlMy2_m8e5OK_iortNjHdMbF1RQF2tglWAzBVc,17575
@@ -100,10 +100,10 @@ clearskies/columns/phone.py,sha256=AVNeNXm_A_CjD4W-QeJtsKHMIlMQc_DbpKFDxJKw9H4,5
 clearskies/columns/select.py,sha256=Huef3sp9JP2DRzXgNBurZfY4lsKn0RU4WmAj689HlWw,2714
 clearskies/columns/string.py,sha256=Vyl1eb6RjW8q0a4AMqHI01vBLao9f7fkowNUumNoPqU,2594
 clearskies/columns/timestamp.py,sha256=nIEbvg1YqKPjtEeFyYRnPPPSYB_lYIIUUm8zNoE8dE8,5810
-clearskies/columns/updated.py,sha256=BFan3JnO2IEbryTGC2rR_RD1ruDcev49owPBYyjjSVI,3340
+clearskies/columns/updated.py,sha256=qE9CGwTwURGp9hr4zQAW8inpp-Xz2leWsIiHHcG1Ao4,3324
 clearskies/columns/uuid.py,sha256=QE1UKHA9zt7bYd59rYRmzIHSonq9-sZeQbAIQtoJC54,2265
 clearskies/configs/README.md,sha256=4-r2FvkrBTrKkcKgJ5O3Qj1RZ7nnkknenKze4XYlQDs,4827
-clearskies/configs/__init__.py,sha256=dCuGWN6eI7r9hW8d33R4nCehEMdgEpvJU1TQ-NWVK6M,5401
+clearskies/configs/__init__.py,sha256=DwpoecIXXFzQMHCi38pohYHSbw7KIb6z0hSkus2HKGg,5385
 clearskies/configs/actions.py,sha256=5OwrokU8uTSSQ_6SvL94SOP5JVkvRRFGAXNcCdMt8aQ,1388
 clearskies/configs/any.py,sha256=QSLOO955Lbg8NqYeyxdQGXTTyfFc5P036LORUa7avHc,388
 clearskies/configs/any_dict.py,sha256=LECTIcCF22JXbAaZdWSmKh9UShRuRt8PydNCuj05ijI,907
@@ -120,13 +120,13 @@ clearskies/configs/datetime.py,sha256=QJxqRyFkb0YByHmaH_Rd_geUiyvBpk5xdBdRDj2827
 clearskies/configs/datetime_or_callable.py,sha256=hp6ay-958DWoPy8Ryf1VS4R5NPKoF9LceiUhSB7I_wg,835
 clearskies/configs/email.py,sha256=BbXGvZnO9wwT8LHexAq0ibwDNLVvv_8yUJEOThzJVE4,317
 clearskies/configs/email_list.py,sha256=cTgdQTz4HYkqbdTEHPy8LcLjPGqFWY5TOIH8cHbfXXI,582
-clearskies/configs/email_list_or_callable.py,sha256=jowDly4ZKLOYJ73aJ8VoNX338jzqTZyIcY91ANvrgt0,679
+clearskies/configs/email_list_or_callable.py,sha256=iApQZzHEy6Pn5XiZzRn2gbHkRipIdLVqXzmwkjiMdmI,650
 clearskies/configs/email_or_email_list_or_callable.py,sha256=tFdAsI1sTDMOheb3h8nQhIVxnl9xzZPwZtKjYEHjkKM,2470
 clearskies/configs/endpoint.py,sha256=NEDthtdPzejAot7yzUjC01PvQJR9BIyk5YnWXCi1w9I,759
 clearskies/configs/endpoint_list.py,sha256=HS1IO2HX8Y0W5ZZU7_Yk_6p5a8mo93an5Q2KAkOl9ZU,1202
 clearskies/configs/float.py,sha256=7HwDMf-3VfrZxTmXwpnwDgXyzujUBpz1xPi1StdjB1Q,621
 clearskies/configs/float_or_callable.py,sha256=9IiylL4Gg9_7HJOrYxbUPuLGE03TwKsAMsxfB7Lh2yY,744
-clearskies/configs/headers.py,sha256=D3bo3jE8x5DA1vLeo9ewnfIBHcRbr0JavOY-SQyFeVQ,986
+clearskies/configs/headers.py,sha256=MY_oYm4tI5_9h635E8Yo_hj2id5IqfztqtwRZVdYaYo,976
 clearskies/configs/integer.py,sha256=lw05RhD8ZkHO_tYJLtCUHZ_Ucz2Mf7C0Z5wVOsMqgq0,620
 clearskies/configs/integer_or_callable.py,sha256=acCUP2ZSfSMPyID2LzIOQ-dlgARpxEktgr7KFWMtGbk,739
 clearskies/configs/joins.py,sha256=i1QmxFwkpL-pnzVPh3mrHpwrvzsjt9nH5pMSj4J1TT4,944
@@ -157,28 +157,29 @@ clearskies/configs/writeable_model_column.py,sha256=22pMoOAwYjvhHBcFrBb6Imtuoahb
 clearskies/configs/writeable_model_columns.py,sha256=vQFh5w6ToC8SDi_GaEvy33csp2CTFIroAfOLigHjFKo,359
 clearskies/contexts/__init__.py,sha256=f7XVUq2UKlDH6fjmcUWk6lbe9p_OaGpZ5ZjM6CuwTGQ,247
 clearskies/contexts/cli.py,sha256=cuGWoyRhHlO_Ba6Dozg3sGob1VZoI4TBFOLu-2Udabk,2838
-clearskies/contexts/context.py,sha256=rT-d0v5wiVqRNz_bsitTBXYEy0555-H2xr9TpETf-og,3676
-clearskies/contexts/wsgi.py,sha256=Wrf0B9WxoMPe71jn2fATsSYyS_Ego3VKFGjuI6KliWs,3165
-clearskies/contexts/wsgi_ref.py,sha256=q78gyeQS3KJ80NsozJkKb0ag00_6uwPK1yj5wxUM3JA,2818
+clearskies/contexts/context.py,sha256=RFIJbpP32iv0NuvepCNldrFRYMWTbGssM_nduBDJLh8,3640
+clearskies/contexts/wsgi.py,sha256=gS6eJxtDsae2sFNP3v7lhFqK5KfVTHjs9uGYqKS63Mw,3131
+clearskies/contexts/wsgi_ref.py,sha256=aFJ40hqAwvYcftXESMvJz5W58c2qWK3BUYeksEMi5KU,2770
 clearskies/di/__init__.py,sha256=Ab8GNv9ZksnCABq8n2gCcyLEAXD-5-kX4O8PweTJIFs,474
 clearskies/di/additional_config.py,sha256=65INxw8aqTZQsyaKPj-aQmd6FBe4_4DwibXGgWYBy14,5139
 clearskies/di/additional_config_auto_import.py,sha256=XYw0Kcnp6hp-ee-c0YjiATwJvRb2E82xk9PuoX9dGRY,758
-clearskies/di/di.py,sha256=mW7Tk6-9pI5khq9h_A2kXJ3XDytwC6JdLX3TcLxU2q0,46348
+clearskies/di/di.py,sha256=gjyj5fudA9M2JB1_kl_GTn2yH4SaF6M32kR7Lz5Hfz4,46395
 clearskies/di/injectable.py,sha256=TTgqhx494470I61-88BUQmHmevfat-wXVseKl8pQOEk,852
 clearskies/di/injectable_properties.py,sha256=yJP0J7l7tjG2soyXtrfDgktE7M8tQHaP-55Cmtq0b7M,6466
 clearskies/di/inject/__init__.py,sha256=plEkWId-VyhvqX5KM2HhdCqi7_ZJzPmFz69cPAo812Y,643
+clearskies/di/inject/akeyless_sdk.py,sha256=eCV5KkALAAwNnHVMdAQ0hlYGA2U_sJfHn3vBxkngZh8,417
 clearskies/di/inject/by_class.py,sha256=1wn08Ahne1nJ-ddRRE4i70U2XwCvU_khG2U0iEGoaVE,832
 clearskies/di/inject/by_name.py,sha256=Vgt_4NdptIVNrpVawGz-ZZfqp1MQLnvlqAZmjsX0WqI,675
 clearskies/di/inject/di.py,sha256=wuJU7u3AKPYoymQVcIR8m7t4pVIEtMvsN1RzujMqGfk,311
 clearskies/di/inject/environment.py,sha256=gQ1Tf2OVpcBNB3ciTv44rc7sKZM3pIOkbCFsCj0ELEI,469
-clearskies/di/inject/input_output.py,sha256=URb2qt8F-0QJ1zQpGdkrJxrZVNyF7S21EhhE5x2Irys,517
+clearskies/di/inject/input_output.py,sha256=bpHuqomGmpHzQwgekbX8kYxeUfEPEaOCX4xp4ryXOa8,500
 clearskies/di/inject/now.py,sha256=Kp4xkRfOKAf4vl0hwo0PspKbfDxbhfptMm1rrXgc__0,395
 clearskies/di/inject/requests.py,sha256=ZXeEihj76dli4sf-WfW-sEZ30Y63eUqnP4OPChbovt4,403
 clearskies/di/inject/secrets.py,sha256=WDcu2Fg9QuBkIbl1lhT1j7L1JxOfl4oipJPLD3H_wyM,445
 clearskies/di/inject/utcnow.py,sha256=ugXgCerskwM9Pmc9OsdUKG4shbsYE-5c0YebUFx7ngQ,401
 clearskies/di/inject/uuid.py,sha256=GwMKqY-k7iDgc3QuOOe80aUejoU9PfFFyxZjl6Vinjc,408
-clearskies/di/test_module/__init__.py,sha256=7YHQF7JHP0FdI7GdEGANSZ_t1EISQYhUNm1wqOg0NKw,88
-clearskies/di/test_module/module_class.py,sha256=I_-wnMuHfbsvti-7d2Z4bXnr6deo__uvww9nds9qrlE,46
+clearskies/di/test_module/__init__.py,sha256=UiuP3b8dbatcqOsVGyZ9vEPiNpr-IKJkp6PDXetHTvM,140
+clearskies/di/test_module/module_class.py,sha256=cBF95A9616CTSx3P5GhR8-3201ttxIudYaWjxZD6apE,28
 clearskies/di/test_module/another_module/__init__.py,sha256=8SRmHPDepLKGWTUSc1ucDF6U8mJPsNDsBDmBQCpzPWo,35
 clearskies/endpoints/__init__.py,sha256=payWNEivwmxsT-pWqNkzHisSbyNjB7oq7_I5QIQL_XA,750
 clearskies/endpoints/advanced_search.py,sha256=FXbY1-VBf9qtsYAvXaqxLpR1FNUFhfB5EhhIx6fVDHk,21397
@@ -208,11 +209,11 @@ clearskies/functional/validations.py,sha256=cPYOTwWomlQrPvqPP_Jdlds7zZ5H9GABCP5p
 clearskies/input_outputs/__init__.py,sha256=9qeKJULw3MQ3zqkgBZice5d7qqRgsP3y-wkhWO2Y9vM,362
 clearskies/input_outputs/cli.py,sha256=t7uWqLi6VI3i_zuyoKLdIq3vUwr19lQZoJmuAxVEvgg,5741
 clearskies/input_outputs/headers.py,sha256=AnyqI64kploPX7qiBfQCD9w8b2FYWVIuwaXVafbpIiM,2085
-clearskies/input_outputs/input_output.py,sha256=tJQVN3U3MX_jpwsXJ-g-K1cdqQwyuSarTjo3JOp7zQQ,5154
+clearskies/input_outputs/input_output.py,sha256=iaWi6B4o2hvNqL6CmXIc1Fv4UJNfLVLn9uNDuqmnDA0,5120
 clearskies/input_outputs/programmatic.py,sha256=OCRq0M42cKZKgk4YAfJyTWo3T4jNRmnGmVr7zCTovpg,1658
 clearskies/input_outputs/py.typed,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-clearskies/input_outputs/wsgi.py,sha256=wcqZUu8zuKj9V1ur2oNlYqgcI_sC5LJEieZxvDVMMFU,2783
-clearskies/input_outputs/exceptions/__init__.py,sha256=3KiM3KaMYEKoToqCCQ4_no2n0W5ROqeBC0sI2Ix4P6w,82
+clearskies/input_outputs/wsgi.py,sha256=qqU_3KeVt5oeZvqygQ2lSxkcmTCsGX7z0R8Zx1DVhag,2783
+clearskies/input_outputs/exceptions/__init__.py,sha256=ONAtr46SecnF96TJkjWWJfVfSXWbJrOaAnkN-f6fKs4,137
 clearskies/input_outputs/exceptions/cli_input_error.py,sha256=kOFU8aLTLmeTL_AKDshxMu8_ufildg6p8ndhE1xHfb0,41
 clearskies/input_outputs/exceptions/cli_not_found.py,sha256=JBBuZA9ZwdkPhd3a0qaGgEPQrxh1fehy4R3ZaV2gWXU,39
 clearskies/query/__init__.py,sha256=ISF80_cG3rd574sRTdKKPxAdlSjtQh_ClXKKs_MSSSo,277
@@ -221,13 +222,14 @@ clearskies/query/join.py,sha256=4lrDUQzck7klKY_VYkc4SVK95SVwyy3SVTvasnsAEyc,4713
 clearskies/query/query.py,sha256=0XR3fNhOpDNJY0US2oseAS3p3Y0jxxVs86P6vWEvUcA,6063
 clearskies/query/sort.py,sha256=c-EtIkjg3kLjwSTdXD7sfyx-mNUhAepUV-2izprh3iY,754
 clearskies/secrets/__init__.py,sha256=G-A8YhCMlS_OdboSeKzCZp6iwfqwU4BPEnB5HvD88wY,142
-clearskies/secrets/akeyless.py,sha256=4SwnVNzMAijZtzR0Q25dizEw-q7nbS4G5s0CoGyc-G0,7219
-clearskies/secrets/secrets.py,sha256=9sYrI0PmxXAzyDCfylOmb8svXqPc9IefaWKaBPHrjxE,1815
+clearskies/secrets/akeyless.py,sha256=k9j-GbAGo67J4cH6VQDVYLZJodRcJfNmwLRaBOE2vgg,20335
+clearskies/secrets/secrets.py,sha256=z9ouvwTwdyyOFmaCCWMRR6T9capRWFHswz563OA-JzE,1566
 clearskies/secrets/additional_configs/__init__.py,sha256=cFCrbtKF5nuR061S2y1iKZp349x-y8Srdwe3VZbfSFU,1119
 clearskies/secrets/additional_configs/mysql_connection_dynamic_producer.py,sha256=CnIiXLVQdUnUey3dbCTXuNNP7Mmw1gjjNjZiBtfgGto,2757
 clearskies/secrets/additional_configs/mysql_connection_dynamic_producer_via_ssh_cert_bastion.py,sha256=N8ruxrTNhvYlp3cYXq6V78KPPr4n40LM7QoXHvD8IZg,6235
-clearskies/secrets/exceptions/__init__.py,sha256=j-SLHD-DL0CT4cZXibD9kXHk63JEl_UKX6xL_nq1EfE,32
-clearskies/secrets/exceptions/not_found.py,sha256=_lZwovDrd18dUHDop5pF4mhexBPNr126xF2gOLA2-EA,36
+clearskies/secrets/exceptions/__init__.py,sha256=HtcwEuKzu3tRLq3FeXUN0UhaEGqukL5vntuBbX47DzM,209
+clearskies/secrets/exceptions/not_found_error.py,sha256=9NT1g4Q94PRteYl9coiLVbqbHTlkrd-C-KQKG5clz9Q,41
+clearskies/secrets/exceptions/permissions_error.py,sha256=6oxKMDLZLmoZZFB9PMZxWQgsaQXoX2V6qWn-LAckHt0,44
 clearskies/security_headers/__init__.py,sha256=JUpc4Y8dNBinDQAkP7OOABR7N787-lRR23boSWmY6Us,285
 clearskies/security_headers/cache_control.py,sha256=gD1070vxwDJXQi8R3qIIR6hsOpVaaEV3-I52Up1DfM4,2143
 clearskies/security_headers/cors.py,sha256=RqqakKH13JXCp0ybkf7YFGEKDR5Xg7a1lfk47AAI7CU,1778
@@ -235,7 +237,7 @@ clearskies/security_headers/csp.py,sha256=hms81Jw9VWzDRWdk5P7o3oq7LOOElpuGwhnIpw
 clearskies/security_headers/hsts.py,sha256=BeNrxxxrIWNxbF2Rb1fmOgmbF3rp1i5ve7iXh3Qr7q4,723
 clearskies/security_headers/x_content_type_options.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 clearskies/security_headers/x_frame_options.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-clearskies/validators/__init__.py,sha256=Hz0L5Y7EkeK4Px6WcdQ3ku6VqUGpLHX0ZWwCpT1ts1U,1248
+clearskies/validators/__init__.py,sha256=v7TK6PlSjJxIuhx_aCoocBUCF-8DxNWWpYmoR7uOe6I,1247
 clearskies/validators/after_column.py,sha256=GqZTdwNlkkLYD5_UJExih5aOksMBKJ4Trvr56PhBPsk,2309
 clearskies/validators/before_column.py,sha256=jv5sUCeTwkkn-d1AFGaJccZdthc0o6rQASBT_vLHZbE,564
 clearskies/validators/in_the_future.py,sha256=xx2Du7iTsXWth5KWdyjnYb7iOYpFjjPxSZ1p69Ay54A,901
@@ -245,13 +247,13 @@ clearskies/validators/in_the_past.py,sha256=8eb79Q9feHL5rLsQdoOYIEsHegUiXI4zkH5S
 clearskies/validators/in_the_past_at_least.py,sha256=FT8rfs2-5Sd933Uql6-pwFRvvcPPXWq8hpobtkGr2z0,395
 clearskies/validators/in_the_past_at_most.py,sha256=AFJoIlA3xeoJtWKh-2-PG6A97_FMHwt4Yk3G9TRNLzA,393
 clearskies/validators/maximum_length.py,sha256=VxKvonpF58ng5icGt2d2BC2dWjXtNfnynjr95LZVYHg,843
-clearskies/validators/maximum_value.py,sha256=gqWRESL7rfPa4XYY2iDwjAu8NuVrtEwMXXMlY6rV_uk,871
-clearskies/validators/minimum_length.py,sha256=j-LHWLKXf3gF7yD9-RgNLXNm2gHj_-ZvGUxyCdRKPrw,860
-clearskies/validators/minimum_value.py,sha256=NDLcG6xCemlv3kfr-RiUaM3x2INS1GJGMB9RoOezZ7k,872
+clearskies/validators/maximum_value.py,sha256=icdUN1AbT5c5SXpxDRks3954GRIUqu0FdpT6TeZFT2Q,855
+clearskies/validators/minimum_length.py,sha256=2ukRKH35gdnjz9VezclIFCf3JtbN7iCbLSjlPNdaOyY,844
+clearskies/validators/minimum_value.py,sha256=ZyG2S_-4lbbMbf7PUemEyAT-r4-gjJMUdEWccMam9H0,856
 clearskies/validators/required.py,sha256=GWxyexwj-K6DunZWNEnZxW6tQGAFd4oOCvQrW1s1K9k,1308
 clearskies/validators/timedelta.py,sha256=DJ0pTm-SSUtjZ7phGoD6vjb086vXPzvLLijkU-jQlOs,1892
-clearskies/validators/unique.py,sha256=GFEQOMYRIO9pSGHHj6zf1GdnJ0UM7Dm4ZO4uGn19BZo,991
-clear_skies-2.0.13.dist-info/METADATA,sha256=-vCQH5UBp10JkiJslrdn99Gg4FAvuEjusoEU-lypGkY,2114
-clear_skies-2.0.13.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-clear_skies-2.0.13.dist-info/licenses/LICENSE,sha256=3Ehd0g3YOpCj8sqj0Xjq5qbOtjjgk9qzhhD9YjRQgOA,1053
-clear_skies-2.0.13.dist-info/RECORD,,
+clearskies/validators/unique.py,sha256=X7qGv_BfskNJWnYCt6vDHbvpBiHym58yLjXk5ZnhAlg,975
+clear_skies-2.0.15.dist-info/METADATA,sha256=iKhiL7xgkQDyCY83fzUEE9iUSOBIRLCH83nPoKUHOgo,2114
+clear_skies-2.0.15.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+clear_skies-2.0.15.dist-info/licenses/LICENSE,sha256=3Ehd0g3YOpCj8sqj0Xjq5qbOtjjgk9qzhhD9YjRQgOA,1053
+clear_skies-2.0.15.dist-info/RECORD,,

clearskies/authentication/jwks.py

@@ -106,7 +106,7 @@ class Jwks(Authentication, di.InjectableProperties):
 
     def validate_jwt(self, raw_jwt):
         try:
-            from jwcrypto import jwk, jws, jwt  # type: ignore
+            from jwcrypto import jwk, jwt  # type: ignore
             from jwcrypto.common import JWException  # type: ignore
         except:
             raise ValueError(

clearskies/autodoc/formats/oai3_json/request.py

@@ -1,6 +1,6 @@
 from typing import Any
 
-from ...schema import Array, Object
+from ...schema import Object
 from .parameter import Parameter
 from .response import Response
 

clearskies/backends/secrets_backend.py

@@ -7,7 +7,6 @@ from clearskies.query import Condition, Query
 
 if TYPE_CHECKING:
     from clearskies import Model
-    from clearskies.authentication import Authentication
 
 
 class SecretsBackend(Backend):

clearskies/columns/updated.py

@@ -1,6 +1,5 @@
 from __future__ import annotations
 
-import datetime
 from typing import TYPE_CHECKING, Any
 
 from clearskies import configs, decorators

clearskies/configs/__init__.py

@@ -63,8 +63,6 @@ class MyConfigurableClass(configs.Configurable):
 
 """
 
-import inspect
-
 from .actions import Actions
 from .any import Any
 from .any_dict import AnyDict

clearskies/configs/email_list_or_callable.py

@@ -1,7 +1,5 @@
 from __future__ import annotations
 
-from typing import Callable
-
 from clearskies.configs import string_list_or_callable
 
 

clearskies/configs/headers.py

@@ -9,9 +9,7 @@ if TYPE_CHECKING:
 
 
 class Headers(config.Config):
-    """
-    This is for a configuration that should be an instance of type clearskies.input_outputs.Headers.
-    """
+    """This is for a configuration that should be an instance of type clearskies.input_outputs.Headers."""
 
     def __set__(self, instance, value: headers.Headers):
         if value is None:

clearskies/contexts/context.py

@@ -7,8 +7,7 @@ from typing import TYPE_CHECKING, Any, Callable
 from clearskies import exceptions
 from clearskies.di import Di
 from clearskies.di.additional_config import AdditionalConfig
-from clearskies.input_outputs import InputOutput
-from clearskies.input_outputs import Programmatic
+from clearskies.input_outputs import InputOutput, Programmatic
 
 if TYPE_CHECKING:
     from clearskies.endpoint import Endpoint

clearskies/contexts/wsgi.py

@@ -1,7 +1,5 @@
 from __future__ import annotations
 
-from typing import TYPE_CHECKING
-
 from clearskies.contexts.context import Context
 from clearskies.input_outputs import Wsgi as WsgiInputOutput
 

clearskies/contexts/wsgi_ref.py

@@ -4,7 +4,6 @@ import datetime
 from types import ModuleType
 from typing import TYPE_CHECKING, Any, Callable
 from wsgiref.simple_server import make_server
-from wsgiref.util import setup_testing_defaults
 
 from clearskies.contexts.context import Context
 from clearskies.input_outputs import Wsgi as WsgiInputOutput

clearskies/di/di.py

@@ -1,8 +1,6 @@
 import datetime
 import inspect
 import os
-import re
-import sys
 from types import ModuleType
 from typing import Any, Callable
 
@@ -591,6 +589,7 @@ class Di:
           4. The Di class itself if it has a matching `provide_[name]` function (aka the builtins)
         """
         if name in self._prepared and cache:
+            self.inject_properties(self._prepared[name].__class__)
             return self._prepared[name]
 
         if name in self._bindings:
@@ -985,7 +984,7 @@ class Di:
     def provide_global_table_prefix(self):
         return ""
 
-    def provide_akeyles_sdk(self):
+    def provide_akeyless_sdk(self):
         import akeyless  # type: ignore[import-untyped]
 
         return akeyless

clearskies/di/inject/akeyless_sdk.py

@@ -0,0 +1,15 @@
+from __future__ import annotations
+
+from types import ModuleType
+
+from clearskies.di.injectable import Injectable
+
+
+class AkeylessSDK(Injectable):
+    def __init__(self, cache: bool = True):
+        self.cache = cache
+
+    def __get__(self, instance, parent) -> ModuleType:
+        if instance is None:
+            return self  # type: ignore
+        return self._di.build_from_name("akeyless_sdk", cache=self.cache)

clearskies/di/inject/input_output.py

@@ -2,8 +2,6 @@ from __future__ import annotations
 
 from typing import TYPE_CHECKING
 
-import requests
-
 from clearskies.di.injectable import Injectable
 
 if TYPE_CHECKING:

clearskies/di/test_module/__init__.py

@@ -4,3 +4,6 @@ from .module_class import ModuleClass
 
 class Hi:
     pass
+
+
+__all__ = ["another_module", "ModuleClass", "Hi"]

clearskies/di/test_module/module_class.py

@@ -1,5 +1,2 @@
-import datetime
-
-
 class ModuleClass:
     pass

clearskies/endpoint.py

@@ -10,7 +10,7 @@ from clearskies.authentication import Authentication, Authorization, Public
 from clearskies.autodoc import schema
 from clearskies.autodoc.request import Parameter, Request
 from clearskies.autodoc.response import Response
-from clearskies.functional import routing, string, validations
+from clearskies.functional import routing, string
 
 if TYPE_CHECKING:
     from clearskies import Column, Model, SecurityHeader

clearskies/input_outputs/exceptions/__init__.py

@@ -1,2 +1,7 @@
 from .cli_input_error import CLIInputError
 from .cli_not_found import CLINotFound
+
+__all__ = [
+    "CLIInputError",
+    "CLINotFound",
+]

clearskies/input_outputs/input_output.py

@@ -3,7 +3,6 @@ from __future__ import annotations
 import json
 from abc import ABC, abstractmethod
 from typing import TYPE_CHECKING, Any
-from urllib.parse import parse_qs
 
 from clearskies import configs, configurable
 

clearskies/input_outputs/wsgi.py

@@ -1,8 +1,8 @@
 from __future__ import annotations
-from urllib.parse import parse_qs
 
 import json
 from typing import Callable
+from urllib.parse import parse_qs
 
 from clearskies.input_outputs.headers import Headers
 from clearskies.input_outputs.input_output import InputOutput

clearskies/model.py

@@ -1,6 +1,5 @@
 from __future__ import annotations
 
-import re
 from abc import abstractmethod
 from typing import TYPE_CHECKING, Any, Callable, Iterator, Self
 

clearskies/secrets/akeyless.py

@@ -1,111 +1,370 @@
 from __future__ import annotations
 
 import datetime
-from typing import Any
+import json
+import logging
+from types import ModuleType
+from typing import TYPE_CHECKING, Any
 
 from clearskies import configs, secrets
+from clearskies.decorators import parameters_to_properties
 from clearskies.di import inject
+from clearskies.secrets.exceptions import PermissionsError
+
+if TYPE_CHECKING:
+    from akeyless import ListItemsOutput, V2Api
 
 
 class Akeyless(secrets.Secrets):
+    """
+    Backend for managing secrets using the Akeyless Vault.
+
+    This class provides integration with Akeyless vault services, allowing you to store, retrieve,
+    and manage secrets. It supports different types of secrets (static, dynamic, rotated) and
+    includes authentication mechanisms for AWS IAM, SAML, and JWT.
+    """
+
+    """
+    HTTP client for making API requests
+    """
     requests = inject.Requests()
+
+    """
+    Environment configuration for retrieving environment variables
+    """
     environment = inject.Environment()
-    akeyless = inject.ByName("akeyless_sdk")
 
+    """
+    The Akeyless SDK module injected by the dependency injection system
+    """
+    akeyless: ModuleType = inject.ByName("akeyless_sdk")  # type: ignore
+
+    """
+    The access ID for the Akeyless service
+
+    This must match the pattern p-[0-9a-zA-Z]+ (e.g., "p-abc123")
+    """
     access_id = configs.String(required=True, regexp=r"^p-[\d\w]+$")
+
+    """
+    The authentication method to use
+
+    Must be one of "aws_iam", "saml", or "jwt"
+    """
     access_type = configs.Select(["aws_iam", "saml", "jwt"], required=True)
+
+    """
+    The Akeyless API host to connect to
+
+    Defaults to "https://api.akeyless.io"
+    """
     api_host = configs.String(default="https://api.akeyless.io")
-    profile = configs.String(regexp=r"^[\d\w\-]+$")
-
-    _token_refresh: datetime.datetime = None  # type: ignore
-    _token: str = ""
-    _api: Any = None
-
-    def __init__(self, access_id: str, access_type: str, jwt_env_key: str = "", api_host: str = "", profile: str = ""):
-        self.access_id = access_id
-        self.access_type = access_type
-        self.jwt_env_key = jwt_env_key
-        self.api_host = api_host
-        self.profile = profile
-        if self.access_type == "jwt" and not self.jwt_env_key:
-            raise ValueError("When using the JWT access type for Akeyless you must provide jwt_env_key")
 
+    """
+    The environment variable key that contains the JWT when using JWT authentication
+
+    This is required when access_type is "jwt"
+    """
+    jwt_env_key = configs.String(required=False)
+
+    """
+    The SAML profile name when using SAML authentication
+
+    Must match the pattern [0-9a-zA-Z-]+ if provided
+    """
+    profile = configs.String(regexp=r"^[\d\w-]+$")
+
+    """
+    Whether to automatically guess the secret type
+
+    When enabled, the system will check the secret type (static, dynamic, rotated)
+    and call the appropriate method to retrieve it.
+    """
+    auto_guess_type = configs.Boolean(default=False)
+
+    """
+    When the current token expires
+    """
+    _token_refresh: datetime.datetime  # type: ignore
+
+    """
+    The current authentication token
+    """
+    _token: str
+
+    """
+    The configured V2Api client
+    """
+    _api: V2Api
+
+    @parameters_to_properties
+    def __init__(
+        self,
+        access_id: str,
+        access_type: str,
+        jwt_env_key: str | None = None,
+        api_host: str | None = None,
+        profile: str | None = None,
+        auto_guess_type: bool = False,
+    ):
+        """
+        Initialize the Akeyless backend with the specified configuration.
+
+        The access_id must be provided and follow the format p-[0-9a-zA-Z]+. The access_type must be
+        one of "aws_iam", "saml", or "jwt". If using JWT authentication, jwt_env_key must be provided.
+        """
         self.finalize_and_validate_configuration()
+        self.logger = logging.getLogger(self.__class__.__name__)
+
+    def configure(self) -> None:
+        """
+        Perform additional configuration validation.
+
+        Ensures that when using JWT authentication, the jwt_env_key is provided. Raises ValueError
+        if access_type is "jwt" and jwt_env_key is not provided.
+        """
+        if self.access_type == "jwt" and not self.jwt_env_key:
+            raise ValueError("When using the JWT access type for Akeyless you must provide jwt_env_key")
 
     @property
-    def api(self) -> Any:
-        if self._api is None:
+    def api(self) -> V2Api:
+        """
+        Get the configured V2Api client.
+
+        Creates a new API client if one doesn't exist yet, using the configured api_host.
+        """
+        if not hasattr(self, "_api"):
             configuration = self.akeyless.Configuration(host=self.api_host)
             self._api = self.akeyless.V2Api(self.akeyless.ApiClient(configuration))
         return self._api
 
     def create(self, path: str, value: Any) -> bool:
+        """
+        Create a new secret at the given path.
+
+        Checks permissions before creating the secret and raises PermissionsError if the user doesn't
+        have write permission for the path. The value is converted to a string before storage.
+        """
+        if not "write" in self.describe_permissions(path):
+            raise PermissionsError(f"You do not have permission the secret '{path}'")
+
         res = self.api.create_secret(self.akeyless.CreateSecret(name=path, value=str(value), token=self._get_token()))
         return True
 
-    def get(self, path: str, silent_if_not_found: bool = False) -> str:
+    def get(
+        self,
+        path: str,
+        silent_if_not_found: bool = False,
+        json_attribute: str | None = None,
+        args: dict[str, Any] | None = None,
+    ) -> str:
+        """
+        Get the secret at the given path.
+
+        When auto_guess_type is enabled, this method automatically determines if the secret is static,
+        dynamic, or rotated and calls the appropriate method to retrieve it. If silent_if_not_found is
+        True, returns an empty string when the secret is not found. If json_attribute is provided,
+        treats the secret as JSON and returns the specified attribute.
+        """
+        if not self.auto_guess_type:
+            return self.get_static_secret(path, silent_if_not_found=silent_if_not_found, json_attribute=json_attribute)
+
         try:
-            res = self._api.get_secret_value(self.akeyless.GetSecretValue(names=[path], token=self._get_token()))
+            secret = self.describe_secret(path)
+        except Exception as e:
+            if e.status == 404:  # type: ignore
+                if silent_if_not_found:
+                    return ""
+                raise e
+            else:
+                raise ValueError(
+                    f"describe-secret call failed for path {path}: perhaps a permissions issue?  Akeless says {e}"
+                )
+
+        self.logger.debug(f"Auto-detected secret type '{secret.item_type}' for secret '{path}'")
+        match secret.item_type.lower():
+            case "dynamic_secret":
+                return str(
+                    self.get_dynamic_secret(
+                        path,
+                        json_attribute=json_attribute,
+                        args=args,
+                    )
+                )
+            case "rotated_secret":
+                return str(self.get_rotated_secret(path, json_attribute=json_attribute, args=args))
+            case "static_secret":
+                return self.get_static_secret(
+                    path, json_attribute=json_attribute, silent_if_not_found=silent_if_not_found
+                )
+            case _:
+                raise ValueError(f"Unsupported secret type for auto-detection: '{secret.item_type}'")
+
+    def get_static_secret(self, path: str, silent_if_not_found: bool = False, json_attribute: str | None = None) -> str:
+        """
+        Get a static secret from the given path.
+
+        Checks permissions before retrieving the secret and raises PermissionsError if the user doesn't
+        have read permission. If silent_if_not_found is True, returns an empty string when the secret
+        is not found. If json_attribute is provided, treats the secret as JSON and returns the specified attribute.
+        """
+        if not "read" in self.describe_permissions(path):
+            raise PermissionsError(f"You do not have permission the secret '{path}'")
+
+        try:
+            res: dict[str, object] = self.api.get_secret_value(  # type: ignore
+                self.akeyless.GetSecretValue(
+                    names=[path], token=self._get_token(), json=True if json_attribute else False
+                )
+            )
         except Exception as e:
             if e.status == 404:  # type: ignore
                 if silent_if_not_found:
                     return ""
                 raise KeyError(f"Secret '{path}' not found")
             raise e
-        return res[path]
+        if json_attribute:
+            return self._get_nested_attribute(res[path], json_attribute)  # type: ignore
+        return str(res[path])
+
+    def get_dynamic_secret(
+        self, path: str, json_attribute: str | None = None, args: dict[str, Any] | None = None
+    ) -> Any:
+        """
+        Get a dynamic secret from the given path.
+
+        Dynamic secrets are generated on-demand, such as database credentials. Checks permissions
+        before retrieving the secret and raises PermissionsError if the user doesn't have read
+        permission. If json_attribute is provided, treats the result as JSON and returns the
+        specified attribute.
+        """
+        if not "read" in self.describe_permissions(path):
+            raise PermissionsError(f"You do not have permission the secret '{path}'")
 
-    def get_dynamic_secret(self, path: str, args: dict[str, Any] | None = None) -> Any:
         kwargs = {
             "name": path,
             "token": self._get_token(),
         }
         if args:
             kwargs["args"] = args  # type: ignore
+        res: dict[str, Any] = self.api.get_dynamic_secret_value(self.akeyless.GetDynamicSecretValue(**kwargs))  # type: ignore
+        if json_attribute:
+            return self._get_nested_attribute(res, json_attribute)
+        return res
 
-        return self._api.get_dynamic_secret_value(self.akeyless.GetDynamicSecretValue(**kwargs))
+    def get_rotated_secret(
+        self, path: str, json_attribute: str | None = None, args: dict[str, Any] | None = None
+    ) -> Any:
+        """
+        Get a rotated secret from the given path.
+
+        Rotated secrets are automatically replaced on a schedule. Checks permissions before
+        retrieving the secret and raises PermissionsError if the user doesn't have read
+        permission. If json_attribute is provided, treats the result as JSON and returns the
+        specified attribute.
+        """
+        if not "read" in self.describe_permissions(path):
+            raise PermissionsError(f"You do not have permission the secret '{path}'")
 
-    def get_rotated_secret(self, path: str, args: dict[str, Any] | None = None) -> Any:
         kwargs = {
             "names": path,
             "token": self._get_token(),
+            "json": True if json_attribute else False,
         }
         if args:
             kwargs["args"] = args  # type: ignore
 
-        res = self._api.get_rotated_secret_value(self.akeyless.GetRotatedSecretValue(**kwargs))
+        res: dict[str, str] = self._api.get_rotated_secret_value(self.akeyless.GetRotatedSecretValue(**kwargs))["value"]  # type: ignore
+        if json_attribute:
+            return self._get_nested_attribute(res, json_attribute)
         return res
 
+    def describe_secret(self, path: str) -> Any:
+        """
+        Get metadata about a secret.
+
+        Checks permissions before retrieving metadata and raises PermissionsError if the user
+        doesn't have read permission for the path.
+        """
+        if not "read" in self.describe_permissions(path):
+            raise PermissionsError(f"You do not have permission the secret '{path}'")
+
+        return self.api.describe_item(self.akeyless.DescribeItem(name=path, token=self._get_token()))
+
     def list_secrets(self, path: str) -> list[Any]:
-        res = self._api.list_items(self.akeyless.ListItems(path=path, token=self._get_token()))
+        """
+        List all secrets at the given path.
+
+        Checks permissions before listing secrets and raises PermissionsError if the user doesn't
+        have list permission for the path. Returns an empty list if no secrets are found.
+        """
+        if not "list" in self.describe_permissions(path):
+            raise PermissionsError(f"You do not have permission the secrets in '{path}'")
+
+        res: ListItemsOutput = self.api.list_items(  # type: ignore
+            self.akeyless.ListItems(
+                path=path,
+                token=self._get_token(),
+            )
+        )
         if not res.items:
             return []
 
         return [item.item_name for item in res.items]
 
     def update(self, path: str, value: Any) -> None:
-        res = self._api.update_secret_val(
+        """
+        Update an existing secret.
+
+        Checks permissions before updating the secret and raises PermissionsError if the user
+        doesn't have write permission for the path. The value is converted to a string before storage.
+        """
+        if not "write" in self.describe_permissions(path):
+            raise PermissionsError(f"You do not have permission the secret '{path}'")
+
+        res = self.api.update_secret_val(
             self.akeyless.UpdateSecretVal(name=path, value=str(value), token=self._get_token())
         )
 
     def upsert(self, path: str, value: Any) -> None:
+        """
+        Create or update a secret.
+
+        This method attempts to update an existing secret, and if that fails, it tries to create
+        a new one. The value is converted to a string before storage.
+        """
         try:
             self.update(path, value)
         except Exception as e:
             self.create(path, value)
 
     def list_sub_folders(self, main_folder: str) -> list[str]:
-        """Return the list of secrets/sub folders in the given folder."""
-        items = self._api.list_items(self.akeyless.ListItems(path=main_folder, token=self._get_token()))
+        """
+        Return the list of secrets/sub folders in the given folder.
+
+        Checks permissions before listing subfolders and raises PermissionsError if the user doesn't
+        have list permission for the path. Returns the relative subfolder names without the parent path.
+        """
+        if not "list" in self.describe_permissions(main_folder):
+            raise PermissionsError(f"You do not have permission to list sub folders in '{main_folder}'")
+
+        items = self.api.list_items(self.akeyless.ListItems(path=main_folder, token=self._get_token()))
 
         # akeyless will return the absolute path and end in a slash but we only want the folder name
         main_folder_string_len = len(main_folder)
-        return [sub_folder[main_folder_string_len:-1] for sub_folder in items.folders]
+        return [sub_folder[main_folder_string_len:-1] for sub_folder in items.folders]  # type: ignore
 
     def get_ssh_certificate(self, cert_issuer: str, cert_username: str, path_to_public_file: str) -> Any:
+        """
+        Get an SSH certificate from Akeyless.
+
+        Reads the public key from the specified file path and requests a certificate for the given
+        username and issuer from Akeyless.
+        """
         with open(path_to_public_file, "r") as fp:
             public_key = fp.read()
 
-        res = self._api.get_ssh_certificate(
+        res = self.api.get_ssh_certificate(
             self.akeyless.GetSSHCertificate(
                 cert_username=cert_username,
                 cert_issuer_name=cert_issuer,
@@ -114,11 +373,22 @@ class Akeyless(secrets.Secrets):
             )
         )
 
-        return res.data
+        return res.data  # type: ignore
 
     def _get_token(self) -> str:
+        """
+        Get an authentication token for Akeyless API calls.
+
+        Returns a cached token if available and not expired (within 10 seconds), otherwise obtains
+        a new one using the configured authentication method. Tokens are valid for about an hour,
+        but we set the refresh time to 30 minutes to be safe.
+        """
         # AKeyless tokens live for an hour
-        if self._token is not None and (self._token_refresh - datetime.datetime.now()).total_seconds() > 10:
+        if (
+            hasattr(self, "_token_refresh")
+            and hasattr(self, "_token")
+            and (self._token_refresh - datetime.datetime.now()).total_seconds() > 10
+        ):
             return self._token
 
         auth_method_name = f"auth_{self.access_type}"
@@ -130,14 +400,26 @@ class Akeyless(secrets.Secrets):
         return self._token
 
     def auth_aws_iam(self):
+        """
+        Authenticate using AWS IAM.
+
+        Uses the akeyless_cloud_id package to generate a cloud ID and authenticates with Akeyless
+        using the configured access_id.
+        """
         from akeyless_cloud_id import CloudId  # type: ignore
 
-        res = self._api.auth(
+        res = self.api.auth(
             self.akeyless.Auth(access_id=self.access_id, access_type="aws_iam", cloud_id=CloudId().generate())
         )
-        return res.token
+        return res.token  # type: ignore
 
     def auth_saml(self):
+        """
+        Authenticate using SAML.
+
+        Uses the akeyless CLI to generate credentials and then retrieves a token either directly
+        from the credentials file or by making an API call to convert the credentials to a token.
+        """
         import json
         import os
         from pathlib import Path
@@ -161,27 +443,85 @@ class Akeyless(secrets.Secrets):
         return response.json()["token"]
 
     def auth_jwt(self):
+        """
+        Authenticate using JWT.
+
+        Retrieves the JWT from the environment variable specified by jwt_env_key and authenticates
+        with Akeyless. Raises ValueError if jwt_env_key is not specified.
+        """
         if not self.jwt_env_key:
             raise ValueError(
                 "To use AKeyless JWT Auth, "
                 "you must specify the name of the ENV key to load the JWT from when configuring AKeyless"
             )
-        res = self._api.auth(
+        res = self.api.auth(
             self.akeyless.Auth(access_id=self.access_id, access_type="jwt", jwt=self.environment.get(self.jwt_env_key))
         )
-        return res.token
+        return res.token  # type: ignore
+
+    def describe_permissions(self, path: str, type: str = "item") -> list[str]:
+        """
+        List permissions for a path.
+
+        Returns a list of permission strings (e.g., "read", "write", "list") that the current
+        authentication token has for the specified path.
+        """
+        return self.api.describe_permissions(
+            self.akeyless.DescribePermissions(token=self._get_token(), path=path, type=type)
+        ).client_permissions  # type: ignore
+
+    def _get_nested_attribute(self, data: dict[str, Any] | str, attr_path: str) -> Any:
+        """
+        Extract a nested attribute from JSON data.
+
+        Parses the provided data as JSON if it's a string. Traverses the nested structure using
+        the dot-separated path (e.g., "database.username"). Raises ValueError if the data cannot
+        be parsed as JSON, or KeyError if the attribute path doesn't exist in the data.
+        """
+        keys = attr_path.split(".", 1)
+        if not isinstance(data, dict):
+            try:
+                data = json.loads(data)
+            except Exception:
+                raise ValueError(f"Could not parse secret as JSON to get attribute '{attr_path}'")
+        if len(keys) == 1:
+            if not isinstance(data, dict) or keys[0] not in data:
+                raise KeyError(f"Secret does not contain attribute '{attr_path}'")
+            return data[keys[0]]  # type: ignore
+        return self._get_nested_attribute(data[keys[0]], keys[1])  # type: ignore
 
 
 class AkeylessSaml(Akeyless):
+    """Convenience class for SAML authentication with Akeyless."""
+
     def __init__(self, access_id: str, api_host: str = "", profile: str = ""):
+        """
+        Initialize with SAML authentication.
+
+        Sets access_type to "saml" and passes the remaining parameters to the parent class.
+        """
         return super().__init__(access_id, "saml", api_host=api_host, profile=profile)
 
 
 class AkeylessJwt(Akeyless):
+    """Convenience class for JWT authentication with Akeyless."""
+
     def __init__(self, access_id: str, jwt_env_key: str = "", api_host: str = "", profile: str = ""):
+        """
+        Initialize with JWT authentication.
+
+        Sets access_type to "jwt" and passes the remaining parameters to the parent class.
+        """
         return super().__init__(access_id, "jwt", jwt_env_key=jwt_env_key, api_host=api_host, profile=profile)
 
 
 class AkeylessAwsIam(Akeyless):
+    """Convenience class for AWS IAM authentication with Akeyless."""
+
     def __init__(self, access_id: str, api_host: str = ""):
+        """
+        Initialize with AWS IAM authentication.
+
+        Sets access_type to "aws_iam" and passes the remaining parameters to the parent class.
+        """
         return super().__init__(access_id, "aws_iam", api_host=api_host)

clearskies/secrets/exceptions/__init__.py

@@ -1 +1,7 @@
-from .not_found import NotFound
+from clearskies.secrets.exceptions.not_found_error import NotFoundError
+from clearskies.secrets.exceptions.permissions_error import PermissionsError
+
+__all__ = [
+    "NotFoundError",
+    "PermissionsError",
+]

clearskies/secrets/exceptions/not_found_error.py

@@ -0,0 +1,2 @@
+class NotFoundError(Exception):
+    pass

clearskies/secrets/exceptions/permissions_error.py

@@ -0,0 +1,2 @@
+class PermissionsError(Exception):
+    pass

clearskies/secrets/secrets.py

@@ -18,11 +18,6 @@ class Secrets(ABC, clearskies.configurable.Configurable, InjectableProperties):
             "It looks like you tried to use the secret system in clearskies, but didn't specify a secret manager."
         )
 
-    def get_dynamic_secret(self, path: str, args: dict[str, Any] | None = None) -> Any:
-        raise NotImplementedError(
-            "It looks like you tried to use the secret system in clearskies, but didn't specify a secret manager."
-        )
-
     def list_secrets(self, path: str) -> list[Any]:
         raise NotImplementedError(
             "It looks like you tried to use the secret system in clearskies, but didn't specify a secret manager."

clearskies/validators/__init__.py

@@ -25,8 +25,8 @@ __all__ = [
     "InThePastAtMost",
     "MaximumLength",
     "MaximumValue",
+    "MinimumValue",
     "MinimumLength",
-    "MaximumLength",
     "Required",
     "Timedelta",
     "Unique",

clearskies/validators/maximum_value.py

@@ -1,6 +1,5 @@
 from __future__ import annotations
 
-import datetime
 from typing import TYPE_CHECKING, Any
 
 from clearskies import configs

clearskies/validators/minimum_length.py

@@ -1,6 +1,5 @@
 from __future__ import annotations
 
-import datetime
 from typing import TYPE_CHECKING, Any
 
 from clearskies import configs

clearskies/validators/minimum_value.py

@@ -1,6 +1,5 @@
 from __future__ import annotations
 
-import datetime
 from typing import TYPE_CHECKING, Any
 
 from clearskies import configs

clearskies/validators/unique.py

@@ -1,6 +1,5 @@
 from __future__ import annotations
 
-import datetime
 from typing import TYPE_CHECKING, Any
 
 from clearskies.validator import Validator

clearskies/secrets/exceptions/not_found.py

@@ -1,2 +0,0 @@
-class NotFound(Exception):
-    pass