PyPI - maleo-foundation - Versions diffs - 0.2.78__tar.gz → 0.2.81__tar.gz - Mend

maleo-foundation 0.2.78tar.gz → 0.2.81tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (133) hide show

{maleo_foundation-0.2.78 → maleo_foundation-0.2.81}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: maleo_foundation
-Version: 0.2.78
+Version: 0.2.81
 Summary: Foundation package for Maleo
 Author-email: Agra Bima Yuda <agra@nexmedis.com>
 License: MIT

{maleo_foundation-0.2.78 → maleo_foundation-0.2.81}/maleo_foundation/managers/service.py RENAMED Viewed

@@ -90,6 +90,7 @@ class MaleoClientConfiguration(BaseModel):
     url:str = Field(..., description="Client's URL")
 class MaleoClientConfigurations(BaseModel):
+    telemetry:MaleoClientConfiguration = Field(..., description="MaleoTelemetry client's configuration")
     metadata:MaleoClientConfiguration = Field(..., description="MaleoMetadata client's configuration")
     identity:MaleoClientConfiguration = Field(..., description="MaleoIdentity client's configuration")
     access:MaleoClientConfiguration = Field(..., description="MaleoAccess client's configuration")
@@ -415,7 +416,7 @@ class ServiceManager:
             maleo_foundation=self._foundation
         )
         self._middleware.add_all()
-        self._loggers.application.info("Middlewares addedd successfully")
+        self._loggers.application.info("Middlewares added successfully")
         #* Add exception handler(s)
         self._loggers.application.info("Adding exception handlers")
@@ -427,7 +428,7 @@ class ServiceManager:
             exc_class_or_status_code=HTTPException,
             handler=BaseExceptions.http_exception_handler
         )
-        self._loggers.application.info("Exception handlers addedd successfully")
+        self._loggers.application.info("Exception handlers added successfully")
         #* Include router
         self._loggers.application.info("Including routers")

maleo_foundation-0.2.81/maleo_foundation/middlewares/base.py ADDED Viewed

@@ -0,0 +1,457 @@
+import json
+import threading
+import time
+import traceback
+from collections import defaultdict
+from datetime import datetime, timedelta, timezone
+from typing import Awaitable, Callable, Optional, Sequence, Dict, List
+from fastapi import FastAPI, Request, Response, status
+from fastapi.responses import JSONResponse
+from starlette.middleware.base import BaseHTTPMiddleware, RequestResponseEndpoint
+from maleo_foundation.authentication import Authentication
+from maleo_foundation.enums import BaseEnums
+from maleo_foundation.client.manager import MaleoFoundationClientManager
+from maleo_foundation.models.schemas import BaseGeneralSchemas
+from maleo_foundation.models.responses import BaseResponses
+from maleo_foundation.models.transfers.general.token import MaleoFoundationTokenGeneralTransfers
+from maleo_foundation.models.transfers.parameters.token import MaleoFoundationTokenParametersTransfers
+from maleo_foundation.models.transfers.parameters.signature import MaleoFoundationSignatureParametersTransfers
+from maleo_foundation.models.transfers.general import RequestContextTransfers
+from maleo_foundation.utils.extractor import extract_request_context
+from maleo_foundation.utils.logging import MiddlewareLogger
+RequestProcessor = Callable[[Request], Awaitable[Optional[Response]]]
+ResponseProcessor = Callable[[Response], Awaitable[Response]]
+class RateLimiter:
+    """Thread-safe rate limiter with automatic cleanup."""
+    def __init__(
+        self,
+        limit:int,
+        window:timedelta,
+        ip_timeout:timedelta,
+        cleanup_interval:timedelta
+    ):
+        self.limit = limit
+        self.window = window
+        self.ip_timeout = ip_timeout
+        self.cleanup_interval = cleanup_interval
+        self._requests:Dict[str, List[datetime]] = defaultdict(list)
+        self._last_seen:Dict[str, datetime] = {}
+        self._last_cleanup = datetime.now()
+        self._lock = threading.RLock()
+    def is_rate_limited(
+        self,
+        request_context:RequestContextTransfers
+    ) -> bool:
+        """Check if client IP is rate limited and record the request."""
+        with self._lock:
+            now = datetime.now()
+            client_ip = request_context.ip_address
+            self._last_seen[client_ip] = now
+            # Remove old requests outside the window
+            self._requests[client_ip] = [
+                timestamp for timestamp in self._requests[client_ip]
+                if now - timestamp <= self.window
+            ]
+            # Check rate limit
+            if len(self._requests[client_ip]) >= self.limit:
+                return True
+            # Record this request
+            self._requests[client_ip].append(now)
+            return False
+    def cleanup_old_data(
+        self,
+        logger:MiddlewareLogger
+    ) -> None:
+        """Clean up old request data to prevent memory growth."""
+        now = datetime.now()
+        if now - self._last_cleanup <= self.cleanup_interval:
+            return
+        with self._lock:
+            inactive_ips = []
+            for ip in list(self._requests.keys()):
+                # Remove IPs with empty request lists
+                if not self._requests[ip]:
+                    inactive_ips.append(ip)
+                    continue
+                # Remove IPs that haven't been active recently
+                last_active = self._last_seen.get(ip, datetime.min)
+                if now - last_active > self.ip_timeout:
+                    inactive_ips.append(ip)
+            # Clean up inactive IPs
+            for ip in inactive_ips:
+                self._requests.pop(ip, None)
+                self._last_seen.pop(ip, None)
+            self._last_cleanup = now
+            logger.debug(
+                f"Cleaned up request cache. Removed {len(inactive_ips)} inactive IPs. "
+                f"Current tracked IPs: {len(self._requests)}"
+            )
+class ResponseBuilder:
+    """Handles response building and header management."""
+    def __init__(
+        self,
+        keys:BaseGeneralSchemas.RSAKeys,
+        maleo_foundation:MaleoFoundationClientManager
+    ):
+        self.keys = keys
+        self.maleo_foundation = maleo_foundation
+    def add_response_headers(
+        self,
+        authentication:Authentication,
+        response:Response,
+        request_context:RequestContextTransfers,
+        responded_at:datetime,
+        process_time:float
+    ) -> Response:
+        """Add custom headers to response."""
+        # Basic headers
+        response.headers["X-Request-ID"] = str(request_context.request_id)
+        response.headers["X-Process-Time"] = str(process_time)
+        response.headers["X-Requested-At"] = request_context.requested_at.isoformat()
+        response.headers["X-Responded-At"] = responded_at.isoformat()
+        # Add signature header
+        self._add_signature_header(response, request_context, responded_at, process_time)
+        # Add new authorization header if needed
+        self._add_new_authorization_header(request_context, authentication, response)
+        return response
+    def _add_signature_header(
+        self,
+        response:Response,
+        request_context:RequestContextTransfers,
+        responded_at:datetime,
+        process_time:float
+    ) -> None:
+        """Generate and add signature header."""
+        message = (
+            f"{request_context.method}|{request_context.url}|{request_context.requested_at.isoformat()}|"
+            f"{responded_at.isoformat()}|{str(process_time)}|{str(request_context.request_id)}"
+        )
+        sign_parameters = MaleoFoundationSignatureParametersTransfers.Sign(
+            key=self.keys.private,
+            password=self.keys.password,
+            message=message
+        )
+        sign_result = self.maleo_foundation.services.signature.sign(parameters=sign_parameters)
+        if sign_result.success:
+            response.headers["X-Signature"] = sign_result.data.signature
+    def _add_new_authorization_header(
+        self,
+        request_context:RequestContextTransfers,
+        authentication:Authentication,
+        response:Response
+    ) -> None:
+        """Add new authorization header for refresh tokens."""
+        if not self._should_regenerate_auth(request_context, authentication, response):
+            return
+        payload = MaleoFoundationTokenGeneralTransfers.BaseEncodePayload.model_validate(
+            authentication.credentials.token.payload.model_dump()
+        )
+        parameters = MaleoFoundationTokenParametersTransfers.Encode(
+            key=self.keys.private,
+            password=self.keys.password,
+            payload=payload
+        )
+        result = self.maleo_foundation.services.token.encode(parameters=parameters)
+        if result.success:
+            response.headers["X-New-Authorization"] = result.data.token
+    def _should_regenerate_auth(
+        self,
+        request_context:RequestContextTransfers,
+        authentication:Authentication,
+        response:Response
+    ) -> bool:
+        """Check if authorization should be regenerated."""
+        return (
+            authentication.user.is_authenticated
+            and authentication.credentials.token.type == BaseEnums.TokenType.REFRESH
+            and 200 <= response.status_code < 300
+            and "logout" not in request_context.url
+        )
+class RequestLogger:
+    """Handles request/response logging."""
+    def __init__(self, logger:MiddlewareLogger):
+        self.logger = logger
+    def log_request_response(
+        self,
+        authentication:Authentication,
+        response:Response,
+        request_context:RequestContextTransfers,
+        log_level:str = "info"
+    ) -> None:
+        """Log request and response details."""
+        authentication_info = self._get_authentication_info(authentication)
+        log_func = getattr(self.logger, log_level)
+        log_func(
+            f"Request | ID: {request_context.request_id} {authentication_info} | "
+            f"IP: {request_context.ip_address} | Host: {request_context.host} | "
+            f"Method: {request_context.method} | URL: {request_context.url} - "
+            f"Response | Status: {response.status_code}"
+        )
+    def log_exception(
+        self,
+        authentication:Authentication,
+        error:Exception,
+        request_context:RequestContextTransfers
+    ) -> None:
+        """Log exception details."""
+        authentication_info = self._get_authentication_info(authentication)
+        error_details = {
+            "request_context": request_context.model_dump(mode="json"),
+            "error": str(error),
+            "traceback": traceback.format_exc().split("\n")
+        }
+        self.logger.error(
+            f"Request | ID: {request_context.request_id} {authentication_info} | "
+            f"IP: {request_context.ip_address} | Host: {request_context.host} | "
+            f"Method: {request_context.method} | URL: {request_context.url} - "
+            f"Response | Status: 500 | Exception:\n{json.dumps(error_details, indent=4)}"
+        )
+    def _get_authentication_info(self, authentication:Authentication) -> str:
+        """Get authentication info string."""
+        if not authentication.user.is_authenticated:
+            return "| Unauthenticated"
+        return (
+            f"| Token type: {authentication.credentials.token.type} | "
+            f"Username: {authentication.user.display_name} | "
+            f"Email: {authentication.user.identity}"
+        )
+class BaseMiddleware(BaseHTTPMiddleware):
+    """Base middleware with rate limiting, logging, and response enhancement."""
+    def __init__(
+        self,
+        app:FastAPI,
+        keys:BaseGeneralSchemas.RSAKeys,
+        logger:MiddlewareLogger,
+        maleo_foundation:MaleoFoundationClientManager,
+        allow_origins:Sequence[str] = (),
+        allow_methods:Sequence[str] = ("GET",),
+        allow_headers:Sequence[str] = (),
+        allow_credentials:bool = False,
+        limit:int = 10,
+        window:int = 1,
+        cleanup_interval:int = 60,
+        ip_timeout:int = 300
+    ):
+        super().__init__(app)
+        # Core components
+        self.rate_limiter = RateLimiter(
+            limit=limit,
+            window=timedelta(seconds=window),
+            ip_timeout=timedelta(seconds=ip_timeout),
+            cleanup_interval=timedelta(seconds=cleanup_interval)
+        )
+        self.response_builder = ResponseBuilder(keys, maleo_foundation)
+        self.request_logger = RequestLogger(logger)
+        # CORS settings (if needed)
+        self.cors_config = {
+            'allow_origins': allow_origins,
+            'allow_methods': allow_methods,
+            'allow_headers': allow_headers,
+            'allow_credentials': allow_credentials,
+        }
+    async def dispatch(self, request:Request, call_next:RequestResponseEndpoint) -> Response:
+        """Main middleware dispatch method."""
+        # Setup
+        self.rate_limiter.cleanup_old_data(self.request_logger.logger)
+        request_context = extract_request_context(request)
+        request.state.request_context = request_context
+        start_time = time.perf_counter()
+        authentication = Authentication(credentials=request.auth, user=request.user)
+        try:
+            # Rate limiting check
+            if self.rate_limiter.is_rate_limited(request_context):
+                return self._create_rate_limit_response(
+                    authentication, request_context, start_time
+                )
+            # Optional preprocessing
+            pre_response = await self._request_processor(request)
+            if pre_response is not None:
+                return self._build_final_response(
+                    authentication, pre_response, request_context, start_time
+                )
+            # Main request processing
+            response = await call_next(request)
+            return self._build_final_response(
+                authentication, response, request_context, start_time
+            )
+        except Exception as e:
+            return self._handle_exception(
+                request, authentication, e, request_context, start_time
+            )
+    async def _request_processor(self, request:Request) -> Optional[Response]:
+        """Override this method for custom request preprocessing."""
+        return None
+    def _create_rate_limit_response(
+        self,
+        authentication:Authentication,
+        request_context:RequestContextTransfers,
+        start_time:float
+    ) -> Response:
+        """Create rate limit exceeded response."""
+        response = JSONResponse(
+            content=BaseResponses.RateLimitExceeded().model_dump(),
+            status_code=status.HTTP_429_TOO_MANY_REQUESTS,
+        )
+        return self._build_final_response(
+            authentication, response, request_context, start_time, log_level="warning"
+        )
+    def _build_final_response(
+        self,
+        authentication:Authentication,
+        response:Response,
+        request_context:RequestContextTransfers,
+        start_time:float,
+        log_level:str = "info"
+    ) -> Response:
+        """Build final response with headers and logging."""
+        responded_at = datetime.now(tz=timezone.utc)
+        process_time = time.perf_counter() - start_time
+        # Add headers
+        response = self.response_builder.add_response_headers(
+            authentication, response, request_context, responded_at, process_time
+        )
+        # Log request/response
+        self.request_logger.log_request_response(
+            authentication, response, request_context, log_level
+        )
+        return response
+    def _handle_exception(
+        self,
+        authentication:Authentication,
+        error:Exception,
+        request_context:RequestContextTransfers,
+        start_time:float
+    ) -> Response:
+        """Handle exceptions and create error response."""
+        responded_at = datetime.now(tz=timezone.utc)
+        process_time = time.perf_counter() - start_time
+        response = JSONResponse(
+            content=BaseResponses.ServerError().model_dump(),
+            status_code=status.HTTP_500_INTERNAL_SERVER_ERROR,
+        )
+        # Log exception
+        self.request_logger.log_exception(authentication, error, request_context)
+        # Add headers
+        return self.response_builder.add_response_headers(
+            authentication, response, request_context, responded_at, process_time
+        )
+def add_base_middleware(
+    app:FastAPI,
+    keys:BaseGeneralSchemas.RSAKeys,
+    logger:MiddlewareLogger,
+    maleo_foundation:MaleoFoundationClientManager,
+    allow_origins:Sequence[str] = (),
+    allow_methods:Sequence[str] = ("GET",),
+    allow_headers:Sequence[str] = (),
+    allow_credentials:bool = False,
+    limit:int = 10,
+    window:int = 1,
+    cleanup_interval:int = 60,
+    ip_timeout:int = 300
+) -> None:
+    """
+    Add Base middleware to the FastAPI application.
+    Args:
+        app:FastAPI application instance
+        keys:RSA keys for signing and token generation
+        logger:Middleware logger instance
+        maleo_foundation:Client manager for foundation services
+        allow_origins:CORS allowed origins
+        allow_methods:CORS allowed methods
+        allow_headers:CORS allowed headers
+        allow_credentials:CORS allow credentials flag
+        limit:Request count limit per window
+        window:Time window for rate limiting (seconds)
+        cleanup_interval:Cleanup interval for old IP data (seconds)
+        ip_timeout:IP timeout after last activity (seconds)
+    Example:
+        ```python
+        add_base_middleware(
+            app=app,
+            keys=rsa_keys,
+            logger=middleware_logger,
+            maleo_foundation=client_manager,
+            limit=10,
+            window=1,
+            cleanup_interval=60,
+            ip_timeout=300
+        )
+        ```
+    """
+    app.add_middleware(
+        BaseMiddleware,
+        keys=keys,
+        logger=logger,
+        maleo_foundation=maleo_foundation,
+        allow_origins=allow_origins,
+        allow_methods=allow_methods,
+        allow_headers=allow_headers,
+        allow_credentials=allow_credentials,
+        limit=limit,
+        window=window,
+        cleanup_interval=cleanup_interval,
+        ip_timeout=ip_timeout
+    )

maleo_foundation-0.2.81/maleo_foundation/models/transfers/general/__init__.py ADDED Viewed

@@ -0,0 +1,35 @@
+from __future__ import annotations
+from datetime import datetime, timezone
+from pydantic import BaseModel, Field
+from typing import Dict
+from uuid import UUID
+from maleo_foundation.models.schemas.general import BaseGeneralSchemas
+from maleo_foundation.types import BaseTypes
+from .token import MaleoFoundationTokenGeneralTransfers
+class BaseGeneralTransfers:
+    Token = MaleoFoundationTokenGeneralTransfers
+class AccessTransfers(
+    BaseGeneralSchemas.AccessedBy,
+    BaseGeneralSchemas.AccessedAt
+): pass
+class RequestContextTransfers(BaseModel):
+    request_id:UUID = Field(..., description="Unique identifier for tracing the request")
+    requested_at:datetime = Field(datetime.now(tz=timezone.utc), description="Request timestamp")
+    method:str = Field(..., description="Request's method")
+    url:str = Field(..., description="Request's URL")
+    path_params:Dict = Field(..., description="Request's path parameters")
+    query_params:Dict = Field(..., description="Request's query parameters")
+    ip_address:str = Field("unknown", description="Client's IP address")
+    is_internal:BaseTypes.OptionalBoolean = Field(None, description="True if IP is internal")
+    user_agent:BaseTypes.OptionalString = Field(None, description="User-Agent string")
+    ua_browser:BaseTypes.OptionalString = Field(None, description="Browser info from sec-ch-ua")
+    ua_mobile:BaseTypes.OptionalString = Field(None, description="Is mobile device?")
+    platform:BaseTypes.OptionalString = Field(None, description="Client platform or OS")
+    referer:BaseTypes.OptionalString = Field(None, description="Referrer URL")
+    origin:BaseTypes.OptionalString = Field(None, description="Origin of the request")
+    host:BaseTypes.OptionalString = Field(None, description="Host header from request")
+    forwarded_proto:BaseTypes.OptionalString = Field(None, description="Forwarded protocol (http/https)")
+    language:BaseTypes.OptionalString = Field(None, description="Accepted languages from client")

maleo_foundation-0.2.81/maleo_foundation/utils/dependencies/context.py ADDED Viewed

@@ -0,0 +1,9 @@
+from fastapi.requests import Request
+from maleo_foundation.models.transfers.general import RequestContextTransfers
+class ContextDependencies:
+    @staticmethod
+    def get_request_context(
+        request:Request
+    ) -> RequestContextTransfers:
+        return request.state.request_context

maleo_foundation-0.2.81/maleo_foundation/utils/extractor.py ADDED Viewed

@@ -0,0 +1,55 @@
+from datetime import datetime, timezone
+from fastapi import Request
+from starlette.requests import HTTPConnection
+from uuid import uuid4
+from maleo_foundation.models.transfers.general import RequestContextTransfers
+def extract_client_ip(conn:HTTPConnection) -> str:
+    """Extract client IP with more robust handling of proxies"""
+    #* Check for X-Forwarded-For header (common when behind proxy/load balancer)
+    x_forwarded_for = conn.headers.get("X-Forwarded-For")
+    if x_forwarded_for:
+        #* The client's IP is the first one in the list
+        ips = [ip.strip() for ip in x_forwarded_for.split(",")]
+        return ips[0]
+    #* Check for X-Real-IP header (used by some proxies)
+    x_real_ip = conn.headers.get("X-Real-IP")
+    if x_real_ip:
+        return x_real_ip
+    #* Fall back to direct client connection
+    return conn.client.host if conn.client else "unknown"
+def extract_request_context(request:Request) -> RequestContextTransfers:
+    headers = request.headers
+    request_id = headers.get("x-request-id")
+    if request_id is None:
+        request_id = uuid4()
+    ip_address = extract_client_ip(request)
+    ua_browser = headers.get("sec-ch-ua", "")
+    if ua_browser:
+        ua_browser = ua_browser.replace('"', "").split(",")[0].strip()
+    return RequestContextTransfers(
+        request_id=request_id,
+        requested_at=datetime.now(tz=timezone.utc),
+        method=request.method,
+        url=request.url.path,
+        path_params=dict(request.path_params),
+        query_params=dict(request.query_params),
+        ip_address=ip_address,
+        is_internal=ip_address.startswith("10.") or ip_address.startswith("192.168.") or ip_address.startswith("172."),
+        user_agent=headers.get("user-agent"),
+        ua_browser=ua_browser,
+        ua_mobile=headers.get("sec-ch-ua-mobile"),
+        platform=headers.get("sec-ch-ua-platform"),
+        referer=headers.get("referer"),
+        origin=headers.get("origin"),
+        host=headers.get("host"),
+        forwarded_proto=headers.get("x-forwarded-proto"),
+        language=headers.get("accept-language"),
+    )

{maleo_foundation-0.2.78 → maleo_foundation-0.2.81}/maleo_foundation.egg-info/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: maleo_foundation
-Version: 0.2.78
+Version: 0.2.81
 Summary: Foundation package for Maleo
 Author-email: Agra Bima Yuda <agra@nexmedis.com>
 License: MIT

{maleo_foundation-0.2.78 → maleo_foundation-0.2.81}/maleo_foundation.egg-info/SOURCES.txt RENAMED Viewed

@@ -116,6 +116,7 @@ maleo_foundation/utils/repository.py
 maleo_foundation/utils/searcher.py
 maleo_foundation/utils/dependencies/__init__.py
 maleo_foundation/utils/dependencies/auth.py
+maleo_foundation/utils/dependencies/context.py
 maleo_foundation/utils/formatter/__init__.py
 maleo_foundation/utils/formatter/case.py
 maleo_foundation/utils/loaders/__init__.py

{maleo_foundation-0.2.78 → maleo_foundation-0.2.81}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 [project]
 name = "maleo_foundation"
-version = "0.2.78"
+version = "0.2.81"
 description = "Foundation package for Maleo"
 authors = [
     { name = "Agra Bima Yuda", email = "agra@nexmedis.com" }

maleo-foundation 0.2.78__tar.gz → 0.2.81__tar.gz

maleo-foundation 0.2.78tar.gz → 0.2.81tar.gz