passmanai 0.1.0__tar.gz

passmanai-0.1.0/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 PassmanAI
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

passmanai-0.1.0/PKG-INFO

@@ -0,0 +1,91 @@
+Metadata-Version: 2.4
+Name: passmanai
+Version: 0.1.0
+Summary: Official Python SDK for PassmanAI OIDC Authentication
+Author-email: PassmanAI <support@passmanai.com>
+Project-URL: Homepage, https://passmanai.com
+Project-URL: Bug Tracker, https://github.com/AshishKumarJena/passmanai-python-sdk/issues
+Classifier: Programming Language :: Python :: 3
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: OS Independent
+Requires-Python: >=3.8
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: Authlib>=1.3.0
+Requires-Dist: requests>=2.31.0
+Dynamic: license-file
+
+# PassmanAI Python SDK
+
+> Official Python SDK for integrating **"Sign in with Passman"** into any Python web framework (FastAPI, Django, Flask, etc.).
+
+PassmanAI is a decentralized, post-quantum password manager with zero-knowledge architecture. This SDK provides a robust, PKCE-secured OpenID Connect (OIDC) client that makes it trivial to authenticate users via Passman.
+
+## Quick Start
+
+### 1. Install
+
+```bash
+pip install passmanai
+```
+
+### 2. Configure Environment Variables
+
+Set your Passman API credentials in your environment:
+
+```env
+PASSMAN_CLIENT_ID=your_client_id
+PASSMAN_CLIENT_SECRET=your_client_secret
+PASSMAN_REDIRECT_URI=http://localhost:8000/auth/callback
+PASSMAN_ISSUER_URL=http://localhost:4010
+```
+
+> Get your client credentials by registering an OIDC client in your [PassmanAI dashboard](https://passmanai.com).
+
+### 3. Basic Usage (Framework Agnostic)
+
+The SDK provides a `PassmanClient` that handles OIDC discovery, PKCE generation, and token exchange.
+
+```python
+from passmanai import PassmanClient
+
+# Initialize the client (automatically loads from env vars)
+passman = PassmanClient()
+
+# 1. Generate the authorization URL and PKCE state
+auth_url, state, code_verifier = passman.get_authorization_url()
+
+# Save `state` and `code_verifier` in your session, then redirect the user to `auth_url`.
+# ... user logs in on Passman and gets redirected to your callback ...
+
+# 2. Exchange the authorization code for a token and user profile
+# In your callback route, reconstruct the full URL requested:
+callback_url = "http://localhost:8000/auth/callback?code=...&state=..."
+
+profile, tokens = passman.fetch_user_profile(
+    authorization_response_url=callback_url,
+    state=saved_state_from_session,
+    code_verifier=saved_code_verifier_from_session
+)
+
+print(f"Logged in as: {profile['preferred_username']} (ID: {profile['sub']})")
+```
+
+## Advanced Configuration
+
+You can explicitly pass credentials if you prefer not to use environment variables:
+
+```python
+passman = PassmanClient(
+    client_id="your_client_id",
+    client_secret="your_client_secret",
+    redirect_uri="https://myapp.com/auth/callback",
+    issuer_url="https://passmanai.com" # Defaults to https://passmanai.com if not set
+)
+```
+
+## Security
+
+- **PKCE enforced** — Prevents authorization code interception attacks.
+- **State parameter** — Protects against CSRF attacks.
+- Built on top of **Authlib**, the industry standard for Python OAuth/OIDC.

passmanai-0.1.0/README.md

@@ -0,0 +1,74 @@
+# PassmanAI Python SDK
+
+> Official Python SDK for integrating **"Sign in with Passman"** into any Python web framework (FastAPI, Django, Flask, etc.).
+
+PassmanAI is a decentralized, post-quantum password manager with zero-knowledge architecture. This SDK provides a robust, PKCE-secured OpenID Connect (OIDC) client that makes it trivial to authenticate users via Passman.
+
+## Quick Start
+
+### 1. Install
+
+```bash
+pip install passmanai
+```
+
+### 2. Configure Environment Variables
+
+Set your Passman API credentials in your environment:
+
+```env
+PASSMAN_CLIENT_ID=your_client_id
+PASSMAN_CLIENT_SECRET=your_client_secret
+PASSMAN_REDIRECT_URI=http://localhost:8000/auth/callback
+PASSMAN_ISSUER_URL=http://localhost:4010
+```
+
+> Get your client credentials by registering an OIDC client in your [PassmanAI dashboard](https://passmanai.com).
+
+### 3. Basic Usage (Framework Agnostic)
+
+The SDK provides a `PassmanClient` that handles OIDC discovery, PKCE generation, and token exchange.
+
+```python
+from passmanai import PassmanClient
+
+# Initialize the client (automatically loads from env vars)
+passman = PassmanClient()
+
+# 1. Generate the authorization URL and PKCE state
+auth_url, state, code_verifier = passman.get_authorization_url()
+
+# Save `state` and `code_verifier` in your session, then redirect the user to `auth_url`.
+# ... user logs in on Passman and gets redirected to your callback ...
+
+# 2. Exchange the authorization code for a token and user profile
+# In your callback route, reconstruct the full URL requested:
+callback_url = "http://localhost:8000/auth/callback?code=...&state=..."
+
+profile, tokens = passman.fetch_user_profile(
+    authorization_response_url=callback_url,
+    state=saved_state_from_session,
+    code_verifier=saved_code_verifier_from_session
+)
+
+print(f"Logged in as: {profile['preferred_username']} (ID: {profile['sub']})")
+```
+
+## Advanced Configuration
+
+You can explicitly pass credentials if you prefer not to use environment variables:
+
+```python
+passman = PassmanClient(
+    client_id="your_client_id",
+    client_secret="your_client_secret",
+    redirect_uri="https://myapp.com/auth/callback",
+    issuer_url="https://passmanai.com" # Defaults to https://passmanai.com if not set
+)
+```
+
+## Security
+
+- **PKCE enforced** — Prevents authorization code interception attacks.
+- **State parameter** — Protects against CSRF attacks.
+- Built on top of **Authlib**, the industry standard for Python OAuth/OIDC.

passmanai-0.1.0/passmanai/__init__.py

@@ -0,0 +1,3 @@
+from .client import PassmanClient
+
+__all__ = ["PassmanClient"]

passmanai-0.1.0/passmanai/client.py

@@ -0,0 +1,108 @@
+import os
+from typing import Dict, Tuple, Optional
+import requests
+from authlib.integrations.requests_client import OAuth2Session
+
+class PassmanClient:
+    """
+    PassmanClient is a Python SDK for integrating 'Sign in with Passman' via OIDC.
+    It automatically discovers endpoints and manages PKCE for maximum security.
+    """
+
+    def __init__(
+        self,
+        client_id: Optional[str] = None,
+        client_secret: Optional[str] = None,
+        redirect_uri: Optional[str] = None,
+        issuer_url: Optional[str] = None,
+    ):
+        self.client_id = client_id or os.environ.get("PASSMAN_CLIENT_ID")
+        self.client_secret = client_secret or os.environ.get("PASSMAN_CLIENT_SECRET")
+        self.redirect_uri = redirect_uri or os.environ.get("PASSMAN_REDIRECT_URI")
+        self.issuer_url = issuer_url or os.environ.get("PASSMAN_ISSUER_URL", "https://passmanai.com")
+
+        if not self.client_id or not self.client_secret:
+            raise ValueError("PASSMAN_CLIENT_ID and PASSMAN_CLIENT_SECRET must be provided.")
+        if not self.redirect_uri:
+            raise ValueError("PASSMAN_REDIRECT_URI must be provided.")
+
+        # Strip trailing slash from issuer
+        if self.issuer_url.endswith("/"):
+            self.issuer_url = self.issuer_url[:-1]
+
+        # Discover endpoints from PassmanAI
+        self._discover_endpoints()
+
+        # Initialize the Authlib session
+        self.session = OAuth2Session(
+            client_id=self.client_id,
+            client_secret=self.client_secret,
+            redirect_uri=self.redirect_uri,
+            scope="openid profile email"
+        )
+
+    def _discover_endpoints(self):
+        """Fetches the OIDC configuration from the well-known URL."""
+        well_known_url = f"{self.issuer_url}/api/oidc/.well-known/openid-configuration"
+        response = requests.get(well_known_url)
+        response.raise_for_status()
+        config = response.json()
+
+        self.authorization_endpoint = config.get("authorization_endpoint")
+        self.token_endpoint = config.get("token_endpoint")
+        self.userinfo_endpoint = config.get("userinfo_endpoint")
+
+        if not all([self.authorization_endpoint, self.token_endpoint, self.userinfo_endpoint]):
+            raise RuntimeError("Failed to discover all required endpoints from the issuer.")
+
+    def get_authorization_url(self) -> Tuple[str, str, str]:
+        """
+        Generates the URL to redirect the user to PassmanAI for login.
+        
+        Returns:
+            Tuple containing:
+            - auth_url (str): The URL to redirect the user to.
+            - state (str): A random string to prevent CSRF. Must be saved in session.
+            - code_verifier (str): The PKCE verifier. Must be saved in session.
+        """
+        # PKCE code challenge method S256 is recommended by default in Authlib
+        auth_url, state = self.session.create_authorization_url(self.authorization_endpoint)
+        code_verifier = self.session.code_verifier
+
+        return auth_url, state, code_verifier
+
+    def fetch_user_profile(
+        self,
+        authorization_response_url: str,
+        state: str,
+        code_verifier: str
+    ) -> Tuple[Dict, Dict]:
+        """
+        Exchanges the authorization code for tokens and fetches the user profile.
+
+        Args:
+            authorization_response_url: The full URL the user was redirected to after login.
+            state: The state string generated by get_authorization_url().
+            code_verifier: The PKCE verifier generated by get_authorization_url().
+
+        Returns:
+            Tuple containing:
+            - profile (Dict): The user's profile information.
+            - tokens (Dict): The OIDC tokens (access_token, id_token, etc).
+        """
+        # Re-initialize state and PKCE verifier into the session before fetching token
+        self.session.state = state
+        self.session.code_verifier = code_verifier
+
+        # Exchange code for tokens
+        tokens = self.session.fetch_token(
+            self.token_endpoint,
+            authorization_response=authorization_response_url,
+        )
+
+        # Fetch the user profile using the access token
+        profile_response = self.session.get(self.userinfo_endpoint)
+        profile_response.raise_for_status()
+        profile = profile_response.json()
+
+        return profile, tokens

passmanai-0.1.0/passmanai.egg-info/PKG-INFO

@@ -0,0 +1,91 @@
+Metadata-Version: 2.4
+Name: passmanai
+Version: 0.1.0
+Summary: Official Python SDK for PassmanAI OIDC Authentication
+Author-email: PassmanAI <support@passmanai.com>
+Project-URL: Homepage, https://passmanai.com
+Project-URL: Bug Tracker, https://github.com/AshishKumarJena/passmanai-python-sdk/issues
+Classifier: Programming Language :: Python :: 3
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: OS Independent
+Requires-Python: >=3.8
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: Authlib>=1.3.0
+Requires-Dist: requests>=2.31.0
+Dynamic: license-file
+
+# PassmanAI Python SDK
+
+> Official Python SDK for integrating **"Sign in with Passman"** into any Python web framework (FastAPI, Django, Flask, etc.).
+
+PassmanAI is a decentralized, post-quantum password manager with zero-knowledge architecture. This SDK provides a robust, PKCE-secured OpenID Connect (OIDC) client that makes it trivial to authenticate users via Passman.
+
+## Quick Start
+
+### 1. Install
+
+```bash
+pip install passmanai
+```
+
+### 2. Configure Environment Variables
+
+Set your Passman API credentials in your environment:
+
+```env
+PASSMAN_CLIENT_ID=your_client_id
+PASSMAN_CLIENT_SECRET=your_client_secret
+PASSMAN_REDIRECT_URI=http://localhost:8000/auth/callback
+PASSMAN_ISSUER_URL=http://localhost:4010
+```
+
+> Get your client credentials by registering an OIDC client in your [PassmanAI dashboard](https://passmanai.com).
+
+### 3. Basic Usage (Framework Agnostic)
+
+The SDK provides a `PassmanClient` that handles OIDC discovery, PKCE generation, and token exchange.
+
+```python
+from passmanai import PassmanClient
+
+# Initialize the client (automatically loads from env vars)
+passman = PassmanClient()
+
+# 1. Generate the authorization URL and PKCE state
+auth_url, state, code_verifier = passman.get_authorization_url()
+
+# Save `state` and `code_verifier` in your session, then redirect the user to `auth_url`.
+# ... user logs in on Passman and gets redirected to your callback ...
+
+# 2. Exchange the authorization code for a token and user profile
+# In your callback route, reconstruct the full URL requested:
+callback_url = "http://localhost:8000/auth/callback?code=...&state=..."
+
+profile, tokens = passman.fetch_user_profile(
+    authorization_response_url=callback_url,
+    state=saved_state_from_session,
+    code_verifier=saved_code_verifier_from_session
+)
+
+print(f"Logged in as: {profile['preferred_username']} (ID: {profile['sub']})")
+```
+
+## Advanced Configuration
+
+You can explicitly pass credentials if you prefer not to use environment variables:
+
+```python
+passman = PassmanClient(
+    client_id="your_client_id",
+    client_secret="your_client_secret",
+    redirect_uri="https://myapp.com/auth/callback",
+    issuer_url="https://passmanai.com" # Defaults to https://passmanai.com if not set
+)
+```
+
+## Security
+
+- **PKCE enforced** — Prevents authorization code interception attacks.
+- **State parameter** — Protects against CSRF attacks.
+- Built on top of **Authlib**, the industry standard for Python OAuth/OIDC.

passmanai-0.1.0/passmanai.egg-info/SOURCES.txt

@@ -0,0 +1,10 @@
+LICENSE
+README.md
+pyproject.toml
+passmanai/__init__.py
+passmanai/client.py
+passmanai.egg-info/PKG-INFO
+passmanai.egg-info/SOURCES.txt
+passmanai.egg-info/dependency_links.txt
+passmanai.egg-info/requires.txt
+passmanai.egg-info/top_level.txt

passmanai-0.1.0/passmanai.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

passmanai-0.1.0/passmanai.egg-info/requires.txt

@@ -0,0 +1,2 @@
+Authlib>=1.3.0
+requests>=2.31.0

passmanai-0.1.0/passmanai.egg-info/top_level.txt

@@ -0,0 +1 @@
+passmanai

passmanai-0.1.0/pyproject.toml

@@ -0,0 +1,26 @@
+[build-system]
+requires = ["setuptools>=61.0"]
+build-backend = "setuptools.build_meta"
+
+[project]
+name = "passmanai"
+version = "0.1.0"
+authors = [
+  { name="PassmanAI", email="support@passmanai.com" },
+]
+description = "Official Python SDK for PassmanAI OIDC Authentication"
+readme = "README.md"
+requires-python = ">=3.8"
+classifiers = [
+    "Programming Language :: Python :: 3",
+    "License :: OSI Approved :: MIT License",
+    "Operating System :: OS Independent",
+]
+dependencies = [
+    "Authlib>=1.3.0",
+    "requests>=2.31.0"
+]
+
+[project.urls]
+"Homepage" = "https://passmanai.com"
+"Bug Tracker" = "https://github.com/AshishKumarJena/passmanai-python-sdk/issues"

passmanai-0.1.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+