PyPI - simple-module-auth - Versions diffs - 0.0.18__tar.gz → 0.0.20__tar.gz - Mend

simple-module-auth 0.0.18tar.gz → 0.0.20tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (26) hide show

{simple_module_auth-0.0.18 → simple_module_auth-0.0.20}/.gitignore RENAMED Viewed

@@ -61,3 +61,4 @@ Thumbs.db
 .playwright-mcp/*
 host/client_app/.playwright-cli/*
 .superpowers/
+.qa/

simple_module_auth-0.0.20/PKG-INFO ADDED Viewed

@@ -0,0 +1,84 @@
+Metadata-Version: 2.4
+Name: simple_module_auth
+Version: 0.0.20
+Summary: Session-cookie authentication primitives — middleware, login/logout, redirect helpers for simple_module
+Project-URL: Homepage, https://github.com/antosubash/simple_module_python
+Project-URL: Repository, https://github.com/antosubash/simple_module_python
+Project-URL: Issues, https://github.com/antosubash/simple_module_python/issues
+Project-URL: Changelog, https://github.com/antosubash/simple_module_python/blob/main/CHANGELOG.md
+Author-email: Anto Subash <antosubash@live.com>
+License-Expression: MIT
+License-File: LICENSE
+Keywords: authentication,cookie,fastapi,session,simple-module
+Classifier: Development Status :: 3 - Alpha
+Classifier: Framework :: FastAPI
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: Internet :: WWW/HTTP
+Classifier: Topic :: Software Development :: Libraries :: Application Frameworks
+Classifier: Typing :: Typed
+Requires-Python: >=3.12
+Requires-Dist: itsdangerous>=2.2
+Requires-Dist: simple-module-core==0.0.20
+Requires-Dist: simple-module-db==0.0.20
+Description-Content-Type: text/markdown
+# simple_module_auth
+Pluggable authentication core for [simple_module](https://github.com/antosubash/simple_module_python) apps. Owns the stable public contracts every other module imports — `UserContext`, the `AuthProvider` protocol, the `PrincipalResolver` chain, and the `get_current_user` / `CurrentUser` / `require_permission` dependencies — plus the `AuthMiddleware` that resolves the current principal on every request.
+**Heads up:** for most apps you don't install this directly — an auth-provider module (`simple_module_users` for email+password, `simple_module_keycloak` for OIDC) pulls it in and registers itself on `app.state.auth.auth_provider`.
+## Install
+```bash
+pip install simple_module_auth
+```
+## What it provides
+- `UserContext` — the request-scoped principal (`id`, `name`, `email`, `roles`).
+- `AuthProvider` protocol — the swappable-backend contract (`resolve_user`, `get_login_url`, `get_logout_url`, `get_public_paths`, `is_bearer_request`); exactly one provider module registers an implementation on `app.state.auth.auth_provider`.
+- `PrincipalResolver` chain — async `(Request) -> UserContext | None` callables apps append to `app.state.auth.principal_resolvers` (e.g. PAT/bearer-token or API-key auth), consulted after the session path.
+- `AuthMiddleware` — delegates to the provider + resolver chain on every request and populates the request principal.
+- `get_current_user` / `CurrentUser` dependency and the `require_permission(*permissions)` dependency factory.
+- Anonymous-access is declared via the framework's method-aware `register_public_routes` hook (with the `SM_AUTH_PUBLIC_PATHS` host-level escape hatch).
+## Usage
+```python
+from fastapi import APIRouter
+from auth.deps import CurrentUser
+router = APIRouter()
+@router.get("/me")
+async def me(user: CurrentUser):
+    return {"user_id": user.id, "email": user.email}
+```
+Routes that need a specific permission use the `require_permission(...)` dependency factory:
+```python
+from fastapi import Depends
+from auth.deps import require_permission
+@router.post("/", dependencies=[Depends(require_permission("products.create"))])
+async def create_product(): ...
+```
+## Depends on
+- `simple_module_core`, `simple_module_db`
+- `itsdangerous`
+## License
+MIT — see [LICENSE](https://github.com/antosubash/simple_module_python/blob/main/LICENSE).

simple_module_auth-0.0.20/README.md ADDED Viewed

@@ -0,0 +1,56 @@
+# simple_module_auth
+Pluggable authentication core for [simple_module](https://github.com/antosubash/simple_module_python) apps. Owns the stable public contracts every other module imports — `UserContext`, the `AuthProvider` protocol, the `PrincipalResolver` chain, and the `get_current_user` / `CurrentUser` / `require_permission` dependencies — plus the `AuthMiddleware` that resolves the current principal on every request.
+**Heads up:** for most apps you don't install this directly — an auth-provider module (`simple_module_users` for email+password, `simple_module_keycloak` for OIDC) pulls it in and registers itself on `app.state.auth.auth_provider`.
+## Install
+```bash
+pip install simple_module_auth
+```
+## What it provides
+- `UserContext` — the request-scoped principal (`id`, `name`, `email`, `roles`).
+- `AuthProvider` protocol — the swappable-backend contract (`resolve_user`, `get_login_url`, `get_logout_url`, `get_public_paths`, `is_bearer_request`); exactly one provider module registers an implementation on `app.state.auth.auth_provider`.
+- `PrincipalResolver` chain — async `(Request) -> UserContext | None` callables apps append to `app.state.auth.principal_resolvers` (e.g. PAT/bearer-token or API-key auth), consulted after the session path.
+- `AuthMiddleware` — delegates to the provider + resolver chain on every request and populates the request principal.
+- `get_current_user` / `CurrentUser` dependency and the `require_permission(*permissions)` dependency factory.
+- Anonymous-access is declared via the framework's method-aware `register_public_routes` hook (with the `SM_AUTH_PUBLIC_PATHS` host-level escape hatch).
+## Usage
+```python
+from fastapi import APIRouter
+from auth.deps import CurrentUser
+router = APIRouter()
+@router.get("/me")
+async def me(user: CurrentUser):
+    return {"user_id": user.id, "email": user.email}
+```
+Routes that need a specific permission use the `require_permission(...)` dependency factory:
+```python
+from fastapi import Depends
+from auth.deps import require_permission
+@router.post("/", dependencies=[Depends(require_permission("products.create"))])
+async def create_product(): ...
+```
+## Depends on
+- `simple_module_core`, `simple_module_db`
+- `itsdangerous`
+## License
+MIT — see [LICENSE](https://github.com/antosubash/simple_module_python/blob/main/LICENSE).

{simple_module_auth-0.0.18 → simple_module_auth-0.0.20}/pyproject.toml RENAMED Viewed

@@ -1,6 +1,6 @@
 [project]
 name = "simple_module_auth"
-version = "0.0.18"
+version = "0.0.20"
 description = "Session-cookie authentication primitives — middleware, login/logout, redirect helpers for simple_module"
 readme = "README.md"
 license = "MIT"
@@ -22,8 +22,8 @@ classifiers = [
 ]
 dependencies = [
     "itsdangerous>=2.2",
-    "simple_module_core==0.0.18",
-    "simple_module_db==0.0.18",
+    "simple_module_core==0.0.20",
+    "simple_module_db==0.0.20",
 ]
 [project.entry-points.simple_module]

simple_module_auth-0.0.18/PKG-INFO DELETED Viewed

@@ -1,71 +0,0 @@
-Metadata-Version: 2.4
-Name: simple_module_auth
-Version: 0.0.18
-Summary: Session-cookie authentication primitives — middleware, login/logout, redirect helpers for simple_module
-Project-URL: Homepage, https://github.com/antosubash/simple_module_python
-Project-URL: Repository, https://github.com/antosubash/simple_module_python
-Project-URL: Issues, https://github.com/antosubash/simple_module_python/issues
-Project-URL: Changelog, https://github.com/antosubash/simple_module_python/blob/main/CHANGELOG.md
-Author-email: Anto Subash <antosubash@live.com>
-License-Expression: MIT
-License-File: LICENSE
-Keywords: authentication,cookie,fastapi,session,simple-module
-Classifier: Development Status :: 3 - Alpha
-Classifier: Framework :: FastAPI
-Classifier: Intended Audience :: Developers
-Classifier: License :: OSI Approved :: MIT License
-Classifier: Operating System :: OS Independent
-Classifier: Programming Language :: Python :: 3
-Classifier: Programming Language :: Python :: 3.12
-Classifier: Topic :: Internet :: WWW/HTTP
-Classifier: Topic :: Software Development :: Libraries :: Application Frameworks
-Classifier: Typing :: Typed
-Requires-Python: >=3.12
-Requires-Dist: itsdangerous>=2.2
-Requires-Dist: simple-module-core==0.0.18
-Requires-Dist: simple-module-db==0.0.18
-Description-Content-Type: text/markdown
-# simple_module_auth
-Session-cookie authentication primitives for [simple_module](https://github.com/antosubash/simple_module_python) apps. Provides the `SessionMiddleware` wiring, login/logout helpers, and login-redirect handling used by the `simple_module_users` module.
-**Heads up:** for most apps you don't install this directly — `simple_module_users` pulls it in and builds the email+password auth flow on top of these primitives.
-## Install
-```bash
-pip install simple_module_auth
-```
-## What it provides
-- Starlette `SessionMiddleware` configuration reading `SM_SECRET_KEY` and `SM_SESSION_COOKIE_*` env vars.
-- `current_user_id` FastAPI dependency reading the signed session cookie.
-- Redirect-to-login helpers for unauthenticated requests on Inertia routes.
-- Login-required decorator / dependency for protecting routes without pulling in the heavier `simple_module_users` package.
-## Usage
-```python
-from fastapi import APIRouter, Depends
-from simple_module_auth import require_login
-router = APIRouter()
-@router.get("/me")
-async def me(user_id: int = Depends(require_login)):
-    return {"user_id": user_id}
-```
-Routes that need more than just "logged in" (e.g. role/permission checks) should use `simple_module_permissions` instead.
-## Depends on
-- `simple_module_core`, `simple_module_db`
-- `itsdangerous`
-## License
-MIT — see [LICENSE](https://github.com/antosubash/simple_module_python/blob/main/LICENSE).

simple_module_auth-0.0.18/README.md DELETED Viewed

@@ -1,43 +0,0 @@
-# simple_module_auth
-Session-cookie authentication primitives for [simple_module](https://github.com/antosubash/simple_module_python) apps. Provides the `SessionMiddleware` wiring, login/logout helpers, and login-redirect handling used by the `simple_module_users` module.
-**Heads up:** for most apps you don't install this directly — `simple_module_users` pulls it in and builds the email+password auth flow on top of these primitives.
-## Install
-```bash
-pip install simple_module_auth
-```
-## What it provides
-- Starlette `SessionMiddleware` configuration reading `SM_SECRET_KEY` and `SM_SESSION_COOKIE_*` env vars.
-- `current_user_id` FastAPI dependency reading the signed session cookie.
-- Redirect-to-login helpers for unauthenticated requests on Inertia routes.
-- Login-required decorator / dependency for protecting routes without pulling in the heavier `simple_module_users` package.
-## Usage
-```python
-from fastapi import APIRouter, Depends
-from simple_module_auth import require_login
-router = APIRouter()
-@router.get("/me")
-async def me(user_id: int = Depends(require_login)):
-    return {"user_id": user_id}
-```
-Routes that need more than just "logged in" (e.g. role/permission checks) should use `simple_module_permissions` instead.
-## Depends on
-- `simple_module_core`, `simple_module_db`
-- `itsdangerous`
-## License
-MIT — see [LICENSE](https://github.com/antosubash/simple_module_python/blob/main/LICENSE).