the37lab-authlib 0.1.1751357568__tar.gz → 0.1.1751371611__tar.gz

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1751371611}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: the37lab_authlib
-Version: 0.1.1751357568
+Version: 0.1.1751371611
 Summary: Python SDK for the Authlib
 Author-email: the37lab <info@the37lab.com>
 Classifier: Programming Language :: Python :: 3
@@ -39,6 +39,12 @@ A Python authentication library that provides JWT, OAuth2, and API token authent
     - [Setup](#setup)
     - [Database Setup](#database-setup)
     - [Running Tests](#running-tests)
+  - [API Token Override for Testing](#api-token-override-for-testing)
+    - [Usage](#usage)
+    - [Warning](#warning)
+  - [User Override for Testing](#user-override-for-testing)
+    - [Usage](#usage-1)
+    - [Warning](#warning-1)
 
 ## Installation
 
@@ -211,3 +217,34 @@ python -m authlib.cli db init
 ```bash
 pytest
 ```
+
+## API Token Override for Testing
+
+For testing purposes, you can bypass the database and provide a static mapping of API tokens to usernames using the `api_tokens` argument to `AuthManager` or the `{PREFIX}API_TOKENS` environment variable.
+
+### Usage
+
+- **Constructor argument:**
+  ```python
+  AuthManager(api_tokens={"token1": "user1", "token2": "user2"})
+  ```
+- **Environment variable:**
+  Set `{PREFIX}API_TOKENS` to a comma-separated list of `token:username` pairs, e.g.:
+  ```
+  export MYAPP_API_TOKENS="token1:user1,token2:user2"
+  ```
+  Replace `MYAPP` with your environment prefix.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.
+
+## User Override for Testing
+
+For testing purposes, you can force all authentication to return a specific user by setting the `{PREFIX}USER_OVERRIDE` environment variable:
+
+```bash
+export MYAPP_USER_OVERRIDE="testuser"
+```
+
+If set, all requests will be authenticated as the specified user, regardless of any tokens or credentials provided. This cannot be combined with `api_tokens` or `db_dsn`.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1751371611}/README.md

@@ -22,6 +22,12 @@ A Python authentication library that provides JWT, OAuth2, and API token authent
     - [Setup](#setup)
     - [Database Setup](#database-setup)
     - [Running Tests](#running-tests)
+  - [API Token Override for Testing](#api-token-override-for-testing)
+    - [Usage](#usage)
+    - [Warning](#warning)
+  - [User Override for Testing](#user-override-for-testing)
+    - [Usage](#usage-1)
+    - [Warning](#warning-1)
 
 ## Installation
 
@@ -194,3 +200,34 @@ python -m authlib.cli db init
 ```bash
 pytest
 ```
+
+## API Token Override for Testing
+
+For testing purposes, you can bypass the database and provide a static mapping of API tokens to usernames using the `api_tokens` argument to `AuthManager` or the `{PREFIX}API_TOKENS` environment variable.
+
+### Usage
+
+- **Constructor argument:**
+  ```python
+  AuthManager(api_tokens={"token1": "user1", "token2": "user2"})
+  ```
+- **Environment variable:**
+  Set `{PREFIX}API_TOKENS` to a comma-separated list of `token:username` pairs, e.g.:
+  ```
+  export MYAPP_API_TOKENS="token1:user1,token2:user2"
+  ```
+  Replace `MYAPP` with your environment prefix.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.
+
+## User Override for Testing
+
+For testing purposes, you can force all authentication to return a specific user by setting the `{PREFIX}USER_OVERRIDE` environment variable:
+
+```bash
+export MYAPP_USER_OVERRIDE="testuser"
+```
+
+If set, all requests will be authenticated as the specified user, regardless of any tokens or credentials provided. This cannot be combined with `api_tokens` or `db_dsn`.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1751371611}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "the37lab_authlib"
-version = "0.1.1751357568"
+version = "0.1.1751371611"
 description = "Python SDK for the Authlib"
 authors = [{name = "the37lab", email = "info@the37lab.com"}]
 dependencies = ["flask", "psycopg2-binary", "pyjwt", "python-dotenv", "requests", "authlib", "bcrypt"]

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1751371611}/src/the37lab_authlib/auth.py

@@ -16,7 +16,8 @@ logging.basicConfig(level=logging.DEBUG)
 logger = logging.getLogger(__name__)
 
 class AuthManager:
-    def __init__(self, app=None, db_dsn=None, jwt_secret=None, oauth_config=None, id_type='integer', environment_prefix=None):
+    def __init__(self, app=None, db_dsn=None, jwt_secret=None, oauth_config=None, id_type='integer', environment_prefix=None, api_tokens=None):
+        self.user_override = None
         if environment_prefix:
             prefix = environment_prefix.upper() + '_'
             db_dsn = os.getenv(f'{prefix}DATABASE_URL')
@@ -29,6 +30,21 @@ class AuthManager:
                     'client_id': google_client_id,
                     'client_secret': google_client_secret
                 }
+            api_tokens_env = os.getenv(f'{prefix}API_TOKENS')
+            if api_tokens_env:
+                api_tokens = {}
+                for entry in api_tokens_env.split(','):
+                    if ':' in entry:
+                        key, user = entry.split(':', 1)
+                        api_tokens[key.strip()] = user.strip()
+            user_override_env = os.getenv(f'{prefix}USER_OVERRIDE')
+            if user_override_env:
+                self.user_override = user_override_env
+        if self.user_override and (api_tokens or db_dsn):
+            raise ValueError('Cannot set user_override together with api_tokens or db_dsn')
+        if api_tokens and db_dsn:
+            raise ValueError('Cannot set both api_tokens and db_dsn')
+        self.api_tokens = api_tokens or None
         self.db = Database(db_dsn, id_type=id_type) if db_dsn else None
         self.jwt_secret = jwt_secret
         self.oauth_config = oauth_config or {}
@@ -61,6 +77,18 @@ class AuthManager:
         return redirect_uri
 
     def _validate_api_token(self, api_token):
+        if self.api_tokens is not None:
+            username = self.api_tokens.get(api_token)
+            if not username:
+                raise AuthError('Invalid API token')
+            # Return a minimal user dict
+            return {
+                'id': username,
+                'username': username,
+                'email': '',
+                'real_name': username,
+                'roles': []
+            }
         try:
             parsed = ApiToken.parse_token(api_token)
             with self.db.get_cursor() as cur:
@@ -109,6 +137,14 @@ class AuthManager:
             raise AuthError('Invalid token format')
 
     def _authenticate_request(self):
+        if self.user_override:
+            return {
+                'id': self.user_override,
+                'username': self.user_override,
+                'email': '',
+                'real_name': self.user_override,
+                'roles': []
+            }
         auth_header = request.headers.get('Authorization')
         api_token = request.headers.get('X-API-Token')
 

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1751371611}/src/the37lab_authlib.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: the37lab_authlib
-Version: 0.1.1751357568
+Version: 0.1.1751371611
 Summary: Python SDK for the Authlib
 Author-email: the37lab <info@the37lab.com>
 Classifier: Programming Language :: Python :: 3
@@ -39,6 +39,12 @@ A Python authentication library that provides JWT, OAuth2, and API token authent
     - [Setup](#setup)
     - [Database Setup](#database-setup)
     - [Running Tests](#running-tests)
+  - [API Token Override for Testing](#api-token-override-for-testing)
+    - [Usage](#usage)
+    - [Warning](#warning)
+  - [User Override for Testing](#user-override-for-testing)
+    - [Usage](#usage-1)
+    - [Warning](#warning-1)
 
 ## Installation
 
@@ -211,3 +217,34 @@ python -m authlib.cli db init
 ```bash
 pytest
 ```
+
+## API Token Override for Testing
+
+For testing purposes, you can bypass the database and provide a static mapping of API tokens to usernames using the `api_tokens` argument to `AuthManager` or the `{PREFIX}API_TOKENS` environment variable.
+
+### Usage
+
+- **Constructor argument:**
+  ```python
+  AuthManager(api_tokens={"token1": "user1", "token2": "user2"})
+  ```
+- **Environment variable:**
+  Set `{PREFIX}API_TOKENS` to a comma-separated list of `token:username` pairs, e.g.:
+  ```
+  export MYAPP_API_TOKENS="token1:user1,token2:user2"
+  ```
+  Replace `MYAPP` with your environment prefix.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.
+
+## User Override for Testing
+
+For testing purposes, you can force all authentication to return a specific user by setting the `{PREFIX}USER_OVERRIDE` environment variable:
+
+```bash
+export MYAPP_USER_OVERRIDE="testuser"
+```
+
+If set, all requests will be authenticated as the specified user, regardless of any tokens or credentials provided. This cannot be combined with `api_tokens` or `db_dsn`.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.