pypomes-jwt 0.8.5__tar.gz → 0.8.7__tar.gz

{pypomes_jwt-0.8.5 → pypomes_jwt-0.8.7}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: pypomes_jwt
-Version: 0.8.5
+Version: 0.8.7
 Summary: A collection of Python pomes, penyeach (JWT module)
 Project-URL: Homepage, https://github.com/TheWiseCoder/PyPomes-JWT
 Project-URL: Bug Tracker, https://github.com/TheWiseCoder/PyPomes-JWT/issues
@@ -12,5 +12,5 @@ Classifier: Programming Language :: Python :: 3
 Requires-Python: >=3.12
 Requires-Dist: cryptography>=44.0.2
 Requires-Dist: pyjwt>=2.10.1
-Requires-Dist: pypomes-core>=1.8.3
+Requires-Dist: pypomes-core>=1.8.4
 Requires-Dist: pypomes-db>=1.9.6

{pypomes_jwt-0.8.5 → pypomes_jwt-0.8.7}/pyproject.toml

@@ -6,7 +6,7 @@ build-backend = "hatchling.build"
 
 [project]
 name = "pypomes_jwt"
-version = "0.8.5"
+version = "0.8.7"
 authors = [
   { name="GT Nunes", email="wisecoder01@gmail.com" }
 ]
@@ -21,7 +21,7 @@ classifiers = [
 dependencies = [
     "PyJWT>=2.10.1",
     "cryptography>=44.0.2",
-    "pypomes_core>=1.8.3",
+    "pypomes_core>=1.8.4",
     "pypomes_db>=1.9.6"
 ]
 

{pypomes_jwt-0.8.5 → pypomes_jwt-0.8.7}/src/pypomes_jwt/jwt_constants.py

@@ -49,7 +49,8 @@ JWT_REFRESH_MAX_AGE: Final[int] = env_get_int(key=f"{APP_PREFIX}_JWT_REFRESH_MAX
 JWT_ACCOUNT_LIMIT: Final[int] = env_get_int(key=f"{APP_PREFIX}_JWT_ACCOUNT_LIMIT")
 
 # recommended: allow the encode and decode keys to be generated anew when app starts
-__encoding_key: bytes = env_get_bytes(key=f"{APP_PREFIX}_JWT_ENCODE_KEY")
+__encoding_key: bytes = env_get_bytes(key=f"{APP_PREFIX}_JWT_ENCODE_KEY",
+                                      style="base64")
 __decoding_key: bytes
 if JWT_DEFAULT_ALGORITHM in ["HS256", "HS512"]:
     if not __encoding_key:

{pypomes_jwt-0.8.5 → pypomes_jwt-0.8.7}/src/pypomes_jwt/jwt_data.py

@@ -35,8 +35,8 @@ class JwtData:
            "token-audience": <string>    # the audience the token is intended for
            "token_nonce": <string>       # value used to associate a client session with a token
            "claims": {
-             "valid-from": <string>      # token's start (<YYYY-MM-DD hh:mm:ss>)
-             "valid-until": <string>     # token's finish (<YYYY-MM-DD hh:mm:ss>)
+             "valid-from": <string>      # token's start (<YYYY-MM-DDThh:mm:ss+00:00>)
+             "valid-until": <string>     # token's finish (<YYYY-MM-DDThh:mm:ss+00:00>)
              "birthdate": <string>,      # subject's birth date
              "email": <string>,          # subject's email
              "gender": <string>,         # subject's gender
@@ -68,8 +68,8 @@ class JwtData:
 
     Account-related claims are optional claims, and convey information about the registered account they belong to.
     Alhough they can be freely specified, these are some of the most commonly used claims:
-       "valid-from": <string>   # token's start (<YYYY-MM-DD hh:mm:ss>)
-       "valid-until": <string>  # token's finish (<YYYY-MM-DD hh:mm:ss>)
+       "valid-from": <string>   # token's start (<YYYY-MM-DDThh:mm:ss+00:00>)
+       "valid-until": <string>  # token's finish (<YYYY-MM-DDThh:mm:ss+00.00>)
       "birthdate": <string>     # subject's birth date
       "email": <string>         # subject's email
       "gender": <string>        # subject's gender
@@ -151,10 +151,12 @@ class JwtData:
         :param logger: optional logger
         return: *True* if the access data was removed, *False* otherwise
         """
+        # remove from internal storage
         account_data: dict[str, Any] | None
         with self.access_lock:
             account_data = self.access_data.pop(account_id, None)
 
+        # remove from database
         db_delete(errors=None,
                   delete_stmt=f"DELETE FROM {JWT_DB_TABLE}",
                   where_data={JWT_DB_COL_ACCOUNT: account_id},
@@ -242,8 +244,10 @@ class JwtData:
 
                     # issue a candidate refresh token first, and persist it
                     current_claims["exp"] = just_now + account_data.get("refresh-max-age")
-                    current_claims["valid-from"] = datetime.fromtimestamp(timestamp=current_claims["iat"])
-                    current_claims["valid-until"] = datetime.fromtimestamp(timestamp=current_claims["exp"])
+                    current_claims["valid-from"] = datetime.fromtimestamp(timestamp=current_claims["iat"],
+                                                                          tz=timezone.utc).isoformat()
+                    current_claims["valid-until"] = datetime.fromtimestamp(timestamp=current_claims["exp"],
+                                                                           tz=timezone.utc).isoformat()
                     # may raise an exception
                     refresh_token: str = jwt.encode(payload=current_claims,
                                                     key=JWT_ENCODING_KEY,

{pypomes_jwt-0.8.5 → pypomes_jwt-0.8.7}/src/pypomes_jwt/jwt_pomes.py

@@ -382,8 +382,8 @@ def jwt_get_claims(errors: list[str] | None,
           "kid": "1234"
         },
         "payload": {
-          "valid-from": <YYYY-MM-DD hh:mm:ss>
-          "valid-until": <YYYY-MM-DD hh:mm:ss>
+          "valid-from": <YYYY-MM-DDThh:mm:ss+00:00>
+          "valid-until": <YYYY-MM-DDThh:mm:ss+00:00>
           "birthdate": "1980-01-01",
           "email": "jdoe@mail.com",
           "exp": 1516640454,