PyPI - paskia - Versions diffs - 0.7.2__py3-none-any.whl → 0.8.0__py3-none-any.whl - Mend

paskia 0.7.2py3-none-any.whl → 0.8.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (39) hide show

paskia/_version.py +2 -2
paskia/authsession.py +12 -49
paskia/bootstrap.py +30 -25
paskia/db/__init__.py +163 -401
paskia/db/background.py +128 -0
paskia/db/jsonl.py +132 -0
paskia/db/operations.py +1241 -0
paskia/db/structs.py +148 -0
paskia/fastapi/admin.py +456 -215
paskia/fastapi/api.py +16 -15
paskia/fastapi/authz.py +7 -2
paskia/fastapi/mainapp.py +2 -1
paskia/fastapi/remote.py +20 -20
paskia/fastapi/reset.py +9 -10
paskia/fastapi/user.py +10 -18
paskia/fastapi/ws.py +22 -19
paskia/frontend-build/auth/admin/index.html +3 -3
paskia/frontend-build/auth/assets/AccessDenied-aTdCvz9k.js +8 -0
paskia/frontend-build/auth/assets/admin-BeNu48FR.css +1 -0
paskia/frontend-build/auth/assets/admin-tVs8oyLv.js +1 -0
paskia/frontend-build/auth/assets/{auth-BU_O38k2.css → auth-BKX7shEe.css} +1 -1
paskia/frontend-build/auth/assets/auth-Dk3q4pNS.js +1 -0
paskia/frontend-build/auth/index.html +3 -3
paskia/globals.py +7 -10
paskia/migrate/__init__.py +274 -0
paskia/migrate/sql.py +381 -0
paskia/util/permutil.py +16 -5
paskia/util/sessionutil.py +3 -2
paskia/util/userinfo.py +12 -26
{paskia-0.7.2.dist-info → paskia-0.8.0.dist-info}/METADATA +21 -25
{paskia-0.7.2.dist-info → paskia-0.8.0.dist-info}/RECORD +33 -29
{paskia-0.7.2.dist-info → paskia-0.8.0.dist-info}/entry_points.txt +1 -0
paskia/db/sql.py +0 -1424
paskia/frontend-build/auth/assets/AccessDenied-C-lL9vbN.js +0 -8
paskia/frontend-build/auth/assets/admin-Cs6Mg773.css +0 -1
paskia/frontend-build/auth/assets/admin-Df5_Damp.js +0 -1
paskia/frontend-build/auth/assets/auth-Df3pjeSS.js +0 -1
paskia/util/tokens.py +0 -44
{paskia-0.7.2.dist-info → paskia-0.8.0.dist-info}/WHEEL +0 -0

paskia/db/structs.py ADDED Viewed

@@ -0,0 +1,148 @@
+from datetime import datetime
+from uuid import UUID
+import msgspec
+class Permission(msgspec.Struct, omit_defaults=True):
+    uuid: UUID  # UUID primary key
+    scope: str  # Permission scope identifier (e.g. "auth:admin", "myapp:write")
+    display_name: str
+    domain: str | None = None  # If set, scopes permission to this domain
+class Role(msgspec.Struct):
+    uuid: UUID
+    org_uuid: UUID
+    display_name: str
+    permissions: list[str] = []  # permission UUIDs this role grants
+class Org(msgspec.Struct):
+    uuid: UUID
+    display_name: str
+    permissions: list[str] = []  # permission UUIDs this org can grant
+    roles: list[Role] = []  # roles belonging to this org
+class User(msgspec.Struct):
+    uuid: UUID
+    display_name: str
+    role_uuid: UUID
+    created_at: datetime | None = None
+    last_seen: datetime | None = None
+    visits: int = 0
+class Credential(msgspec.Struct):
+    uuid: UUID
+    credential_id: bytes  # Long binary ID from the authenticator
+    user_uuid: UUID
+    aaguid: UUID
+    public_key: bytes
+    sign_count: int
+    created_at: datetime
+    last_used: datetime | None = None
+    last_verified: datetime | None = None
+class Session(msgspec.Struct):
+    key: str
+    user_uuid: UUID
+    credential_uuid: UUID
+    host: str | None
+    ip: str | None
+    user_agent: str | None
+    expiry: datetime
+    def metadata(self) -> dict:
+        """Return session metadata for backwards compatibility."""
+        return {
+            "ip": self.ip,
+            "user_agent": self.user_agent,
+            "expiry": self.expiry.isoformat(),
+        }
+class ResetToken(msgspec.Struct):
+    key: bytes
+    user_uuid: UUID
+    expiry: datetime
+    token_type: str
+class SessionContext(msgspec.Struct):
+    session: Session
+    user: User
+    org: Org
+    role: Role
+    credential: Credential | None = None
+    permissions: list[Permission] | None = None
+# -------------------------------------------------------------------------
+# Internal storage types (different structure for efficient storage)
+# -------------------------------------------------------------------------
+class _PermissionData(msgspec.Struct, omit_defaults=True):
+    scope: str  # Permission scope identifier
+    display_name: str
+    domain: str | None = None
+    orgs: dict[UUID, bool] = {}  # org_uuid -> True (which orgs can grant this)
+class _OrgData(msgspec.Struct):
+    display_name: str
+    created_at: datetime | None = None
+class _RoleData(msgspec.Struct):
+    org: UUID
+    display_name: str
+    permissions: dict[UUID, bool] = {}  # permission_uuid -> True
+class _UserData(msgspec.Struct):
+    display_name: str
+    role: UUID
+    created_at: datetime
+    last_seen: datetime | None
+    visits: int
+class _CredentialData(msgspec.Struct):
+    credential_id: bytes
+    user: UUID
+    aaguid: UUID
+    public_key: bytes
+    sign_count: int
+    created_at: datetime
+    last_used: datetime | None
+    last_verified: datetime | None
+class _SessionData(msgspec.Struct):
+    user: UUID
+    credential: UUID
+    host: str | None
+    ip: str | None
+    user_agent: str | None
+    expiry: datetime
+class _ResetTokenData(msgspec.Struct):
+    user: UUID
+    expiry: datetime
+    token_type: str
+class _DatabaseData(msgspec.Struct, omit_defaults=True):
+    permissions: dict[UUID, _PermissionData]
+    orgs: dict[UUID, _OrgData]
+    roles: dict[UUID, _RoleData]
+    users: dict[UUID, _UserData]
+    credentials: dict[UUID, _CredentialData]
+    sessions: dict[str, _SessionData]
+    reset_tokens: dict[bytes, _ResetTokenData]
+    v: int = 0

paskia 0.7.2__py3-none-any.whl → 0.8.0__py3-none-any.whl

paskia 0.7.2py3-none-any.whl → 0.8.0py3-none-any.whl