suite-py 1.41.2__py3-none-any.whl → 1.41.4__py3-none-any.whl

suite_py/lib/logger.py

@@ -1,5 +1,6 @@
 # -*- encoding: utf-8 -*-
 import logging
+
 import logzero
 from logzero import logger as _logger
 

suite_py/lib/metrics.py

@@ -1,6 +1,8 @@
 # -*- encoding: utf-8 -*-
 import functools
 from suite_py.lib.config import Config
+
+from suite_py.lib.handler.captainhook_handler import CaptainHook
 from suite_py.lib.handler.metrics_handler import Metrics
 
 _metrics_handler = None
@@ -15,9 +17,9 @@ def _metrics() -> Metrics:
     )
 
 
-def setup(config: Config):
+def setup(config: Config, captainhook: CaptainHook):
     global _metrics_handler
-    _metrics_handler = Metrics(config)
+    _metrics_handler = Metrics(config=config, captainhook=captainhook)
 
 
 def command_executed(command):

suite_py/lib/oauth.py

@@ -0,0 +1,156 @@
+import base64
+import hashlib
+import secrets
+import typing
+import urllib.parse
+import webbrowser
+from dataclasses import dataclass
+from http.server import BaseHTTPRequestHandler, HTTPServer
+from os import path
+from urllib.parse import parse_qs, urlparse
+
+import requests
+
+import suite_py
+from suite_py.lib import logger
+
+
+@dataclass
+class OAuthTokenResponse:
+    access_token: str
+    id_token: typing.Optional[str]
+    refresh_token: typing.Optional[str]
+    expires_in: float
+
+
+def retrieve_token(base_url, params) -> OAuthTokenResponse:
+    url = f"{base_url}/token"
+    headers = {
+        "content-type": "application/x-www-form-urlencoded",
+        "Accept": "application/json",
+    }
+
+    data = requests.post(url, headers=headers, data=params, timeout=30).json()
+    logger.debug(data)
+
+    if error := data.get("error_description", None):
+        raise Exception(f"OAuth error: {error}")
+
+    return OAuthTokenResponse(
+        access_token=data["access_token"],
+        expires_in=data["expires_in"],
+        id_token=data.get("id_token", None),
+        refresh_token=data.get("refresh_token", None),
+    )
+
+
+class OAuthCallbackServer(HTTPServer):
+    received_state: typing.Optional[str] = None
+    error_message: typing.Optional[str] = None
+    code: typing.Optional[str] = None
+
+    def __init__(self, server_address) -> None:
+        super().__init__(server_address, OAuthCallbackRequestHandler)
+
+
+class OAuthCallbackRequestHandler(BaseHTTPRequestHandler):
+    def do_GET(self):
+        assert isinstance(self.server, OAuthCallbackServer)
+
+        server = self.server
+        args = parse_qs(urlparse(self.path).query)
+
+        server.received_state = args["state"][0]
+        if "error" in args:
+            error = args["error"][0]
+            error_description = args["error_description"][0]
+            server.error_message = f"{error}: {error_description}"
+        else:
+            server.code = args["code"][0]
+
+        self.send_response(200)
+        self.send_header("content-type", "text/html")
+        self.end_headers()
+
+        template = path.join(path.dirname(suite_py.__file__), "templates/login.html")
+        with open(template, "rb") as f:
+            self.wfile.write(f.read())
+
+
+def _url_encode_no_padding(byte_data):
+    """
+    Safe encoding handles + and /, and also replace = with nothing
+    """
+    return base64.urlsafe_b64encode(byte_data).decode("utf-8").replace("=", "")
+
+
+def _generate_challenge(a_verifier):
+    return _url_encode_no_padding(hashlib.sha256(a_verifier.encode()).digest())
+
+
+def authorization_code_flow(
+    client_id,
+    base_url,
+    scope,
+    redirect_uri="http://127.0.0.1:5000/callback",
+    listen=("0.0.0.0", 5000),
+):
+    # from https://auth0.com/docs/flows/add-login-using-the-authorization-code-flow-with-pkce
+    # Step1: Create code verifier: Generate a code_verifier that will be sent to Auth0 to request tokens.
+    verifier = _url_encode_no_padding(secrets.token_bytes(32))
+    # Step2: Create code challenge: Generate a code_challenge from the code_verifier that will be sent to Auth0 to request an authorization_code.
+    challenge = _generate_challenge(verifier)
+    state = _url_encode_no_padding(secrets.token_bytes(32))
+
+    # We generate a nonce (state) that is used to protect against attackers invoking the callback
+    url = f"{base_url}/authorize?"
+    url_parameters = {
+        "scope": scope,
+        "response_type": "code",
+        "redirect_uri": redirect_uri,
+        "client_id": client_id,
+        "code_challenge": challenge.replace("=", ""),
+        "code_challenge_method": "S256",
+        "state": state,
+    }
+    url = url + urllib.parse.urlencode(url_parameters)
+
+    # Step3: Authorize user: Request the user's authorization and redirect back to your app with an authorization_code.
+    # Open the browser window to the login url
+    # Start the server
+    logger.info("A browser tab should've opened. If not manually navigate to: " + url)
+    webbrowser.open(url)
+
+    server = OAuthCallbackServer(listen)
+    server.handle_request()
+
+    if state != server.received_state:
+        raise Exception(
+            "Error: session replay or similar attack in progress. Please log out of all connections."
+        )
+
+    if server.error_message:
+        raise Exception(server.error_message)
+
+    # Step4: Request tokens: Exchange your authorization_code and code_verifier for tokens.
+    body = {
+        "grant_type": "authorization_code",
+        "client_id": client_id,
+        "code_verifier": verifier,
+        "code": server.code,
+        "redirect_uri": redirect_uri,
+    }
+    return retrieve_token(base_url, body)
+
+
+def do_refresh_token(
+    client_id: str, base_url: str, scope: str, refresh_token: str
+) -> OAuthTokenResponse:
+    # See https://developer.okta.com/docs/guides/refresh-tokens/main/
+    params = {
+        "scope": scope,
+        "client_id": client_id,
+        "grant_type": "refresh_token",
+        "refresh_token": refresh_token,
+    }
+    return retrieve_token(base_url, params)

suite_py/lib/tokens.py

@@ -149,6 +149,7 @@ class Tokens:
 
     def edit(self, service, token):
         self._tokens[service] = token
+        self.save()
 
     def keys(self):
         return self._tokens.keys()
@@ -164,3 +165,6 @@ class Tokens:
     @property
     def drone(self):
         return self._tokens["drone"]
+
+    def okta(self):
+        return self._tokens.get("okta", {})

{suite_py-1.41.2.dist-info → suite_py-1.41.4.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: suite-py
-Version: 1.41.2
+Version: 1.41.4
 Summary: 
 Author: larrywax, EugenioLaghi, michelangelomo
 Author-email: devops@prima.it
@@ -12,12 +12,10 @@ Classifier: Programming Language :: Python :: 3.10
 Classifier: Programming Language :: Python :: 3.11
 Classifier: Programming Language :: Python :: 3.12
 Requires-Dist: Click (>=7.0)
-Requires-Dist: Flask (==1.1.2)
 Requires-Dist: InquirerPy (>=0.2.0)
 Requires-Dist: Jinja2 (>=2.11,<3.0.0)
 Requires-Dist: PyGithub (>=1.57)
 Requires-Dist: PyYaml (>=5.4)
-Requires-Dist: Werkzeug (==2.0.2)
 Requires-Dist: autoupgrade-prima (>=0.6)
 Requires-Dist: black (>=22.6,<25.0)
 Requires-Dist: boto3 (>=1.17.84)
@@ -27,7 +25,7 @@ Requires-Dist: cryptography (==42.0.5)
 Requires-Dist: halo (>=0.0.28)
 Requires-Dist: inquirer (==3.1.4)
 Requires-Dist: itsdangerous (==2.0.1)
-Requires-Dist: keyring (>=23.9.1,<25.0.0)
+Requires-Dist: keyring (>=23.9.1,<26.0.0)
 Requires-Dist: kubernetes (==29.0.0)
 Requires-Dist: logzero (==1.7.0)
 Requires-Dist: markupsafe (==2.0.1)

suite_py-1.41.4.dist-info/RECORD

@@ -0,0 +1,54 @@
+suite_py/__init__.py,sha256=REmi3D0X2G1ZWnYpKs8Ffm3NIj-Hw6dMuvz2b9NW344,142
+suite_py/__version__.py,sha256=AhkyH0YLIU7gH3Em5wzBcxR3qqCht93E136t28Bl6Yk,49
+suite_py/cli.py,sha256=LDv8ppD4Sua-TKeNnAtdUvkQ9qql6kMzOqGueyIepYw,14961
+suite_py/commands/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+suite_py/commands/aggregator.py,sha256=_xyyX7MOMZzDEvzj2AI03OF3sut5PpSIyuRjUiCp5aI,5747
+suite_py/commands/ask_review.py,sha256=yN__Ac-fiZBPShjRDhyCCQZGfVlQE16KozoJk4UtiNw,3788
+suite_py/commands/batch_job.py,sha256=pcSpDov9uNY4z9MjQ8KDapEC9zhEJDe7XcJV7uidHyE,7450
+suite_py/commands/bump.py,sha256=oFZU1hPfD11ujFC5G7wFyQOf2alY3xp2SO1h1ldjf3s,5406
+suite_py/commands/check.py,sha256=0e2NsPi3cqvCwtNYzhR1UroT59bCojLlGo69vv3FiOA,4074
+suite_py/commands/common.py,sha256=aWCEvO3hqdheuMUmZcHuc9EGZPQTk7VkzkHJk283MxQ,566
+suite_py/commands/context.py,sha256=coK1O1XZ1nhtduEvZNpYJQ0RkTCXhrLYCbK3IBniDkQ,753
+suite_py/commands/create_branch.py,sha256=cDpeDsQk1AK70GkWz-hTduaEeU65x1wck1b-5nKIMew,4424
+suite_py/commands/deploy.py,sha256=kadgbVKUMtE_X4b8oWaQ1ufS4Qy9b2WuutPDXnjm4t4,8088
+suite_py/commands/docker.py,sha256=POz_VXOXEQaFZCafkH-grgB2_HZFrckAc0CpB9IgOiU,2932
+suite_py/commands/generator.py,sha256=-wQFRS0UNc-EvuYvnj3gk6DHTVSsg9lA-NMU2kQewb8,8510
+suite_py/commands/id.py,sha256=qMQMSH_bGDInarYaGOpX2lEGf1tyHBeAV5GQiNr5Kiw,1998
+suite_py/commands/ip.py,sha256=pbyVuee_cN507qUYSBv5gWcvKLYolOeuU_w_P7P7nVc,2396
+suite_py/commands/login.py,sha256=A59e1HsbN7Ocv2L_2H0Eb7MZK7AzLkLb72QxBthnIqU,258
+suite_py/commands/merge_pr.py,sha256=gUpoDx3q23X6gF9PLXCZnIL9DfRw_3D0LlqBlGVt7rA,5676
+suite_py/commands/open_pr.py,sha256=U7MVl-JFKu1mdfxC_UvxUHtPLEln0g4kKl-SvP-6zd8,7159
+suite_py/commands/project_lock.py,sha256=b7OkGysue_Sl13VIT7B5CTBppCvrB_Q6iC0IJRBSHp8,1909
+suite_py/commands/release.py,sha256=clKgmsNgR9DdgBkYjXI3NqVaw8_mCe2TZHegby3ESn4,16634
+suite_py/commands/secret.py,sha256=IOPQBTXsi8qFd84yxGe38U9b1x53dHguoLolCTOtRoU,7995
+suite_py/commands/set_token.py,sha256=fehIqKjKhE-BJGFhgkPTo3Ntr0MvpgLd6EC5yjKuRs8,1508
+suite_py/commands/status.py,sha256=0JUK53_d1-U3WNS742JD2QTiGmCGZONo3jJx8WR7q70,1122
+suite_py/lib/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+suite_py/lib/config.py,sha256=4uKXAav8E-VXlXGPnkYQ_fZYyi6058S0FM2JmyV8L2k,3970
+suite_py/lib/handler/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+suite_py/lib/handler/aws_handler.py,sha256=dRvRDicikfRbuFtCLPbevaX-yC-fO4LwXFdyqLPJ8OI,8815
+suite_py/lib/handler/captainhook_handler.py,sha256=vS-RNhUgQ7FriCdBDEd2Ci04B5FJ0p7gi5woCaoEeY8,3254
+suite_py/lib/handler/changelog_handler.py,sha256=-ppnRl3smBA_ys8tPqXmytS4eyntlwfawC2fiXFcwlw,4818
+suite_py/lib/handler/drone_handler.py,sha256=rmtzu30OQyG3vRPlbZKsQhHN9zbguPtXO0RpDjYOTPA,8967
+suite_py/lib/handler/frequent_reviewers_handler.py,sha256=EIJX5FEMWzrxuXS9A17hu1vfxgJSOHSBX_ahCEZ2FVA,2185
+suite_py/lib/handler/git_handler.py,sha256=boxhl9lQz6fjEJ10ib1KrDW-geCVjhA_6nKwv2ll01g,11333
+suite_py/lib/handler/github_handler.py,sha256=AnFL54yOZ5GDIU91wQat4s-d1WTcmg_B_5M7-Rop3wA,2900
+suite_py/lib/handler/metrics_handler.py,sha256=-Tp62pFIiYsBkDga0nQG3lWU-gxH68wEjIIIJeU1jHk,3159
+suite_py/lib/handler/okta_handler.py,sha256=3GEnJxbLXlu2zjFWniYwG0m1mFKJGfske1t-uUUdpZU,2545
+suite_py/lib/handler/prompt_utils.py,sha256=vgk1O7h-iYEAZv1sXtMh8xIgH1djI398rzxRIgZWZcg,2474
+suite_py/lib/handler/vault_handler.py,sha256=r4osw7qwz3ZFmLg2U1oFPdtRFcXzDXiaWBZC01cYK_w,871
+suite_py/lib/handler/version_handler.py,sha256=DXTx4yCAbFVC6CdMqPJ-LiN5YM-dT2zklG8POyKTP5A,6774
+suite_py/lib/handler/youtrack_handler.py,sha256=eTGBBXjlN_ay1cawtnZ2IG6l78dDyKdMN1x6PxcvtA0,7499
+suite_py/lib/logger.py,sha256=q_qRtpg0Eh7r5tB-Rwz87dnWBwP-a2dIvggkiQikH8M,782
+suite_py/lib/metrics.py,sha256=hGGrWg_c3uTz4xhpb7POGZh_xhIAYU3drRo-KgwpBvM,1626
+suite_py/lib/oauth.py,sha256=IFJNrVlUXZ7GewgUmwpVP3aZYFLVSQZPramlYjzqDq4,5012
+suite_py/lib/requests/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+suite_py/lib/requests/auth.py,sha256=wN_WtGFmDUWRFilWzOmUaRBvP2n3EPpPMqex9Zjddko,228
+suite_py/lib/requests/session.py,sha256=P32H3cWnCWunu91WIj2iDM5U3HzaBglg60VN_C9JBL4,267
+suite_py/lib/symbol.py,sha256=z3QYBuNIwD3qQ3zF-cLOomIr_-C3bO_u5UIDAHMiyTo,60
+suite_py/lib/tokens.py,sha256=kK4vatd5iKEFaue0BZwK1f66YOh9zLdLzP41ZOhjMCU,5534
+suite_py/templates/login.html,sha256=fJLls2SB84oZTSrxTdA5q1PqfvIHcCD4fhVWfyco7Ig,861
+suite_py-1.41.4.dist-info/METADATA,sha256=1DDdO0XjzywlKTQtz0oevgk8Ds0j6XsoR4iF69ccXrw,1531
+suite_py-1.41.4.dist-info/WHEEL,sha256=FMvqSimYX_P7y0a7UY-_Mc83r5zkBZsCYPm7Lr0Bsq4,88
+suite_py-1.41.4.dist-info/entry_points.txt,sha256=dVKLC-9Infy-dHJT_MkK6LcDjOgBCJ8lfPkURJhBjxE,46
+suite_py-1.41.4.dist-info/RECORD,,