the37lab-authlib 0.1.1751357568__tar.gz → 0.1.1756367559__tar.gz

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1756367559}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: the37lab_authlib
-Version: 0.1.1751357568
+Version: 0.1.1756367559
 Summary: Python SDK for the Authlib
 Author-email: the37lab <info@the37lab.com>
 Classifier: Programming Language :: Python :: 3
@@ -39,6 +39,12 @@ A Python authentication library that provides JWT, OAuth2, and API token authent
     - [Setup](#setup)
     - [Database Setup](#database-setup)
     - [Running Tests](#running-tests)
+  - [API Token Override for Testing](#api-token-override-for-testing)
+    - [Usage](#usage)
+    - [Warning](#warning)
+  - [User Override for Testing](#user-override-for-testing)
+    - [Usage](#usage-1)
+    - [Warning](#warning-1)
 
 ## Installation
 
@@ -211,3 +217,34 @@ python -m authlib.cli db init
 ```bash
 pytest
 ```
+
+## API Token Override for Testing
+
+For testing purposes, you can bypass the database and provide a static mapping of API tokens to usernames using the `api_tokens` argument to `AuthManager` or the `{PREFIX}API_TOKENS` environment variable.
+
+### Usage
+
+- **Constructor argument:**
+  ```python
+  AuthManager(api_tokens={"token1": "user1", "token2": "user2"})
+  ```
+- **Environment variable:**
+  Set `{PREFIX}API_TOKENS` to a comma-separated list of `token:username` pairs, e.g.:
+  ```
+  export MYAPP_API_TOKENS="token1:user1,token2:user2"
+  ```
+  Replace `MYAPP` with your environment prefix.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.
+
+## User Override for Testing
+
+For testing purposes, you can force all authentication to return a specific user by setting the `{PREFIX}USER_OVERRIDE` environment variable:
+
+```bash
+export MYAPP_USER_OVERRIDE="testuser"
+```
+
+If set, all requests will be authenticated as the specified user, regardless of any tokens or credentials provided. This cannot be combined with `api_tokens` or `db_dsn`.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1756367559}/README.md

@@ -22,6 +22,12 @@ A Python authentication library that provides JWT, OAuth2, and API token authent
     - [Setup](#setup)
     - [Database Setup](#database-setup)
     - [Running Tests](#running-tests)
+  - [API Token Override for Testing](#api-token-override-for-testing)
+    - [Usage](#usage)
+    - [Warning](#warning)
+  - [User Override for Testing](#user-override-for-testing)
+    - [Usage](#usage-1)
+    - [Warning](#warning-1)
 
 ## Installation
 
@@ -194,3 +200,34 @@ python -m authlib.cli db init
 ```bash
 pytest
 ```
+
+## API Token Override for Testing
+
+For testing purposes, you can bypass the database and provide a static mapping of API tokens to usernames using the `api_tokens` argument to `AuthManager` or the `{PREFIX}API_TOKENS` environment variable.
+
+### Usage
+
+- **Constructor argument:**
+  ```python
+  AuthManager(api_tokens={"token1": "user1", "token2": "user2"})
+  ```
+- **Environment variable:**
+  Set `{PREFIX}API_TOKENS` to a comma-separated list of `token:username` pairs, e.g.:
+  ```
+  export MYAPP_API_TOKENS="token1:user1,token2:user2"
+  ```
+  Replace `MYAPP` with your environment prefix.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.
+
+## User Override for Testing
+
+For testing purposes, you can force all authentication to return a specific user by setting the `{PREFIX}USER_OVERRIDE` environment variable:
+
+```bash
+export MYAPP_USER_OVERRIDE="testuser"
+```
+
+If set, all requests will be authenticated as the specified user, regardless of any tokens or credentials provided. This cannot be combined with `api_tokens` or `db_dsn`.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1756367559}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "the37lab_authlib"
-version = "0.1.1751357568"
+version = "0.1.1756367559"
 description = "Python SDK for the Authlib"
 authors = [{name = "the37lab", email = "info@the37lab.com"}]
 dependencies = ["flask", "psycopg2-binary", "pyjwt", "python-dotenv", "requests", "authlib", "bcrypt"]

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1756367559}/src/the37lab_authlib/auth.py

@@ -11,12 +11,14 @@ import bcrypt
 import logging
 import os
 from functools import wraps
+from isodate import parse_duration
 
 logging.basicConfig(level=logging.DEBUG)
 logger = logging.getLogger(__name__)
 
 class AuthManager:
-    def __init__(self, app=None, db_dsn=None, jwt_secret=None, oauth_config=None, id_type='integer', environment_prefix=None):
+    def __init__(self, app=None, db_dsn=None, jwt_secret=None, oauth_config=None, id_type='integer', environment_prefix=None, api_tokens=None):
+        self.user_override = None
         if environment_prefix:
             prefix = environment_prefix.upper() + '_'
             db_dsn = os.getenv(f'{prefix}DATABASE_URL')
@@ -29,6 +31,25 @@ class AuthManager:
                     'client_id': google_client_id,
                     'client_secret': google_client_secret
                 }
+            api_tokens_env = os.getenv(f'{prefix}API_TOKENS')
+            if api_tokens_env:
+                api_tokens = {}
+                for entry in api_tokens_env.split(','):
+                    if ':' in entry:
+                        key, user = entry.split(':', 1)
+                        api_tokens[key.strip()] = user.strip()
+            user_override_env = os.getenv(f'{prefix}USER_OVERRIDE')
+            if user_override_env:
+                self.user_override = user_override_env
+        else:
+            prefix = ''
+            
+        self.expiry_time = parse_duration(os.getenv(f'{prefix}JWT_TOKEN_EXPIRY_TIME', 'PT1H'))
+        if self.user_override and (api_tokens or db_dsn):
+            raise ValueError('Cannot set user_override together with api_tokens or db_dsn')
+        if api_tokens and db_dsn:
+            raise ValueError('Cannot set both api_tokens and db_dsn')
+        self.api_tokens = api_tokens or None
         self.db = Database(db_dsn, id_type=id_type) if db_dsn else None
         self.jwt_secret = jwt_secret
         self.oauth_config = oauth_config or {}
@@ -61,6 +82,18 @@ class AuthManager:
         return redirect_uri
 
     def _validate_api_token(self, api_token):
+        if self.api_tokens is not None:
+            username = self.api_tokens.get(api_token)
+            if not username:
+                raise AuthError('Invalid API token')
+            # Return a minimal user dict
+            return {
+                'id': username,
+                'username': username,
+                'email': '',
+                'real_name': username,
+                'roles': []
+            }
         try:
             parsed = ApiToken.parse_token(api_token)
             with self.db.get_cursor() as cur:
@@ -109,6 +142,14 @@ class AuthManager:
             raise AuthError('Invalid token format')
 
     def _authenticate_request(self):
+        if self.user_override:
+            return {
+                'id': self.user_override,
+                'username': self.user_override,
+                'email': '',
+                'real_name': self.user_override,
+                'roles': []
+            }
         auth_header = request.headers.get('Authorization')
         api_token = request.headers.get('X-API-Token')
 
@@ -451,12 +492,12 @@ class AuthManager:
     def _create_token(self, user):
         payload = {
             'sub': str(user['id']),
-            'exp': datetime.utcnow() + timedelta(hours=1),
+            'exp': datetime.utcnow() + self.expiry_time,
             'iat': datetime.utcnow()
         }
         logger.debug(f"Creating token with payload: {payload}")
         token = jwt.encode(payload, self.jwt_secret, algorithm='HS256')
-        logger.debug(f"Created token: {token}")
+        logger.info(f"Created token: {token}")
         return token
 
     def _create_refresh_token(self, user):

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1756367559}/src/the37lab_authlib/db.py

@@ -1,15 +1,28 @@
 import psycopg2
 from psycopg2.extras import RealDictCursor
+from psycopg2 import pool
 from contextlib import contextmanager
 from .models import UUIDGenerator, IntegerGenerator
 
 class Database:
-    def __init__(self, dsn, id_type='uuid'):
+    def __init__(self, dsn, id_type='uuid', min_conn=1, max_conn=10):
         self.dsn = dsn
         self.id_generator = UUIDGenerator() if id_type == 'uuid' else IntegerGenerator()
         self.id_type = id_type
+        self.min_conn = min_conn
+        self.max_conn = max_conn
+        self._pool = None
+        self._init_pool()
         self._init_db()
 
+    def _init_pool(self):
+        self._pool = pool.ThreadedConnectionPool(
+            self.min_conn,
+            self.max_conn,
+            self.dsn,
+            cursor_factory=RealDictCursor
+        )
+
     def _init_db(self):
         with self.get_connection() as conn:
             with conn.cursor() as cur:
@@ -54,7 +67,7 @@ class Database:
 
     @contextmanager
     def get_connection(self):
-        conn = psycopg2.connect(self.dsn, cursor_factory=RealDictCursor)
+        conn = self._pool.getconn()
         try:
             yield conn
             conn.commit()
@@ -62,7 +75,7 @@ class Database:
             conn.rollback()
             raise
         finally:
-            conn.close()
+            self._pool.putconn(conn)
 
     @contextmanager
     def get_cursor(self):
@@ -71,4 +84,8 @@ class Database:
                 yield cur
 
     def get_id_generator(self):
-        return self.id_generator 
+        return self.id_generator
+
+    def close(self):
+        if self._pool:
+            self._pool.closeall() 

{the37lab_authlib-0.1.1751357568 → the37lab_authlib-0.1.1756367559}/src/the37lab_authlib.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: the37lab_authlib
-Version: 0.1.1751357568
+Version: 0.1.1756367559
 Summary: Python SDK for the Authlib
 Author-email: the37lab <info@the37lab.com>
 Classifier: Programming Language :: Python :: 3
@@ -39,6 +39,12 @@ A Python authentication library that provides JWT, OAuth2, and API token authent
     - [Setup](#setup)
     - [Database Setup](#database-setup)
     - [Running Tests](#running-tests)
+  - [API Token Override for Testing](#api-token-override-for-testing)
+    - [Usage](#usage)
+    - [Warning](#warning)
+  - [User Override for Testing](#user-override-for-testing)
+    - [Usage](#usage-1)
+    - [Warning](#warning-1)
 
 ## Installation
 
@@ -211,3 +217,34 @@ python -m authlib.cli db init
 ```bash
 pytest
 ```
+
+## API Token Override for Testing
+
+For testing purposes, you can bypass the database and provide a static mapping of API tokens to usernames using the `api_tokens` argument to `AuthManager` or the `{PREFIX}API_TOKENS` environment variable.
+
+### Usage
+
+- **Constructor argument:**
+  ```python
+  AuthManager(api_tokens={"token1": "user1", "token2": "user2"})
+  ```
+- **Environment variable:**
+  Set `{PREFIX}API_TOKENS` to a comma-separated list of `token:username` pairs, e.g.:
+  ```
+  export MYAPP_API_TOKENS="token1:user1,token2:user2"
+  ```
+  Replace `MYAPP` with your environment prefix.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.
+
+## User Override for Testing
+
+For testing purposes, you can force all authentication to return a specific user by setting the `{PREFIX}USER_OVERRIDE` environment variable:
+
+```bash
+export MYAPP_USER_OVERRIDE="testuser"
+```
+
+If set, all requests will be authenticated as the specified user, regardless of any tokens or credentials provided. This cannot be combined with `api_tokens` or `db_dsn`.
+
+**Warning:** This method is intended only for testing and development. Do not use this approach in production environments.