PyPI - usso - Versions diffs - 0.12.0__tar.gz → 0.14.0__tar.gz - Mend

usso 0.12.0tar.gz → 0.14.0tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

{usso-0.12.0/src/usso.egg-info → usso-0.14.0}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: usso
-Version: 0.12.0
+Version: 0.14.0
 Summary: A plug-and-play client for integrating universal single sign-on (SSO) with Python frameworks, enabling secure and seamless authentication across microservices.
 Author-email: Mahdi Kiani <mahdikiany@gmail.com>
 Maintainer-email: Mahdi Kiani <mahdikiany@gmail.com>

{usso-0.12.0 → usso-0.14.0}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 [project]
 name = "usso"
-version = "0.12.0"
+version = "0.14.0"
 description = "A plug-and-play client for integrating universal single sign-on (SSO) with Python frameworks, enabling secure and seamless authentication across microservices."
 readme = "README.md"
 requires-python = ">=3.8"

usso-0.14.0/src/usso/__init__.py ADDED Viewed

	@@ -0,0 +1 @@
1	+ from .core import UserData, user_data_from_token

usso-0.14.0/src/usso/core.py ADDED Viewed

@@ -0,0 +1,97 @@
+import os
+import logging
+import uuid
+from functools import lru_cache
+from typing import Optional, Tuple
+import jwt
+from pydantic import BaseModel
+from . import b64tools
+from .exceptions import USSOException
+logger = logging.getLogger("usso")
+class UserData(BaseModel):
+    user_id: str
+    email: str | None = None
+    phone: str | None = None
+    authentication_method: str | None = None
+    is_active: bool = False
+    jti: str
+    data: dict | None = None
+    token: str | None = None
+    @property
+    def uid(self) -> uuid.UUID:
+        user_id = self.user_id
+        if user_id.startswith("u_"):
+            user_id = user_id[2:]
+        if 22 <= len(user_id) <= 24:
+            user_id = b64tools.b64_decode_uuid(user_id)
+        return uuid.UUID(user_id)
+    @property
+    def b64id(self) -> uuid.UUID:
+        return b64tools.b64_encode_uuid_strip(self.uid)
+def get_authorization_scheme_param(
+    authorization_header_value: Optional[str],
+) -> Tuple[str, str]:
+    if not authorization_header_value:
+        return "", ""
+    scheme, _, param = authorization_header_value.partition(" ")
+    return scheme, param
+def user_data_from_token(token: str, **kwargs) -> UserData | None:
+    """Return the user associated with a token value."""
+    try:
+        header = jwt.get_unverified_header(token)
+        jwks_url = header["jwk_url"]
+        assert os.getenv("USSO_JWKS_URL") == jwks_url
+        jwks_client = get_jwks_keys(jwks_url)
+        # , headers=optional_custom_headers)
+        signing_key = jwks_client.get_signing_key_from_jwt(token)
+        decoded = jwt.decode(
+            token,
+            signing_key.key,
+            algorithms=["RS256"],
+        )
+        decoded["token"] = token
+    except jwt.exceptions.ExpiredSignatureError:
+        if kwargs.get("raise_exception"):
+            raise USSOException(status_code=401, error="expired_signature")
+        return None
+    except jwt.exceptions.InvalidSignatureError:
+        if kwargs.get("raise_exception"):
+            raise USSOException(status_code=401, error="invalid_signature")
+        return None
+    except jwt.exceptions.InvalidTokenError:
+        if kwargs.get("raise_exception"):
+            raise USSOException(
+                status_code=401,
+                error="invalid_token",
+            )
+        return None
+    except Exception as e:
+        if kwargs.get("raise_exception"):
+            raise USSOException(
+                status_code=401,
+                error="error",
+                message=str(e),
+            )
+        logger.error(e)
+        return None
+    return UserData(**decoded)
+@lru_cache
+def get_jwks_keys(jwks_url):
+    return jwt.PyJWKClient(jwks_url)

usso-0.14.0/src/usso/fastapi/__init__.py ADDED Viewed

	@@ -0,0 +1 @@
1	+ from .integration import jwt_access_security

usso-0.14.0/src/usso/fastapi/integration.py ADDED Viewed

@@ -0,0 +1,53 @@
+import logging
+from fastapi import Request, WebSocket
+from starlette.status import HTTP_401_UNAUTHORIZED
+from usso.core import UserData, get_authorization_scheme_param, user_data_from_token
+from usso.exceptions import USSOException
+logger = logging.getLogger("usso")
+async def jwt_access_security(request: Request) -> UserData | None:
+    """Return the user associated with a token value."""
+    kwargs = {}
+    authorization = request.headers.get("Authorization")
+    if authorization:
+        scheme, _, credentials = get_authorization_scheme_param(authorization)
+        if scheme.lower() == "bearer":
+            token = credentials
+            return user_data_from_token(token, **kwargs)
+    cookie_token = request.cookies.get("usso_access_token")
+    if cookie_token:
+        return user_data_from_token(cookie_token, **kwargs)
+    if kwargs.get("raise_exception", True):
+        raise USSOException(
+            status_code=HTTP_401_UNAUTHORIZED,
+            error="unauthorized",
+        )
+    return None
+async def jwt_access_security_ws(websocket: WebSocket) -> UserData | None:
+    """Return the user associated with a token value."""
+    kwargs = {}
+    authorization = websocket.headers.get("Authorization")
+    if authorization:
+        scheme, _, credentials = get_authorization_scheme_param(authorization)
+        if scheme.lower() == "bearer":
+            token = credentials
+            return user_data_from_token(token, **kwargs)
+    cookie_token = websocket.cookies.get("usso_access_token")
+    if cookie_token:
+        return user_data_from_token(cookie_token, **kwargs)
+    if kwargs.get("raise_exception", True):
+        raise USSOException(
+            status_code=HTTP_401_UNAUTHORIZED,
+            error="unauthorized",
+        )
+    return None

{usso-0.12.0 → usso-0.14.0/src/usso.egg-info}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: usso
-Version: 0.12.0
+Version: 0.14.0
 Summary: A plug-and-play client for integrating universal single sign-on (SSO) with Python frameworks, enabling secure and seamless authentication across microservices.
 Author-email: Mahdi Kiani <mahdikiany@gmail.com>
 Maintainer-email: Mahdi Kiani <mahdikiany@gmail.com>

usso-0.12.0/src/usso/__init__.py DELETED Viewed

	@@ -1 +0,0 @@
1	- from .core import UserData

usso-0.12.0/src/usso/core.py DELETED Viewed

@@ -1,48 +0,0 @@
-import uuid
-from functools import lru_cache
-from typing import Optional, Tuple
-import jwt
-from pydantic import BaseModel
-from . import b64tools
-class UserData(BaseModel):
-    user_id: str
-    email: str | None = None
-    phone: str | None = None
-    authentication_method: str | None = None
-    is_active: bool = False
-    jti: str
-    data: dict | None = None
-    token: str | None = None
-    @property
-    def uid(self) -> uuid.UUID:
-        user_id = self.user_id
-        if user_id.startswith("u_"):
-            user_id = user_id[2:]
-        if 22 <= len(user_id) <= 24:
-            user_id = b64tools.b64_decode_uuid(user_id)
-        return uuid.UUID(user_id)
-    @property
-    def b64id(self) -> uuid.UUID:
-        return b64tools.b64_encode_uuid_strip(self.uid)
-def get_authorization_scheme_param(
-    authorization_header_value: Optional[str],
-) -> Tuple[str, str]:
-    if not authorization_header_value:
-        return "", ""
-    scheme, _, param = authorization_header_value.partition(" ")
-    return scheme, param
-@lru_cache
-def get_jwks_keys(jwks_url):
-    return jwt.PyJWKClient(jwks_url)

usso-0.12.0/src/usso/fastapi/__init__.py DELETED Viewed

	@@ -1 +0,0 @@
1	- from .integration import jwt_access_security, user_data_from_token

usso-0.12.0/src/usso/fastapi/integration.py DELETED Viewed

@@ -1,101 +0,0 @@
-import logging
-import jwt
-from fastapi import Request, WebSocket
-from starlette.status import HTTP_401_UNAUTHORIZED
-from usso.core import UserData, get_authorization_scheme_param, get_jwks_keys
-from usso.exceptions import USSOException
-logger = logging.getLogger("usso")
-async def user_data_from_token(token: str, **kwargs) -> UserData | None:
-    """Return the user associated with a token value."""
-    try:
-        header = jwt.get_unverified_header(token)
-        jwks_url = header["jwk_url"]
-        jwks_client = get_jwks_keys(jwks_url)
-        # , headers=optional_custom_headers)
-        signing_key = jwks_client.get_signing_key_from_jwt(token)
-        decoded = jwt.decode(
-            token,
-            signing_key.key,
-            algorithms=["RS256"],
-        )
-        decoded["token"] = token
-    except jwt.exceptions.ExpiredSignatureError:
-        if kwargs.get("raise_exception"):
-            raise USSOException(
-                status_code=HTTP_401_UNAUTHORIZED, error="expired_signature"
-            )
-        return None
-    except jwt.exceptions.InvalidSignatureError:
-        if kwargs.get("raise_exception"):
-            raise USSOException(
-                status_code=HTTP_401_UNAUTHORIZED, error="invalid_signature"
-            )
-        return None
-    except jwt.exceptions.InvalidTokenError:
-        if kwargs.get("raise_exception"):
-            raise USSOException(
-                status_code=HTTP_401_UNAUTHORIZED,
-                error="invalid_token",
-            )
-        return None
-    except Exception as e:
-        if kwargs.get("raise_exception"):
-            raise USSOException(
-                status_code=HTTP_401_UNAUTHORIZED,
-                error="error",
-                message=str(e),
-            )
-        logger.error(e)
-        return None
-    return UserData(**decoded)
-async def jwt_access_security(request: Request) -> UserData | None:
-    """Return the user associated with a token value."""
-    kwargs = {}
-    authorization = request.headers.get("Authorization")
-    if authorization:
-        scheme, _, credentials = get_authorization_scheme_param(authorization)
-        if scheme.lower() == "bearer":
-            token = credentials
-            return await user_data_from_token(token, **kwargs)
-    cookie_token = request.cookies.get("access_token")
-    if cookie_token:
-        return await user_data_from_token(cookie_token, **kwargs)
-    if kwargs.get("raise_exception", True):
-        raise USSOException(
-            status_code=HTTP_401_UNAUTHORIZED,
-            error="unauthorized",
-        )
-    return None
-async def jwt_access_security_ws(websocket: WebSocket) -> UserData | None:
-    """Return the user associated with a token value."""
-    kwargs = {}
-    authorization = websocket.headers.get("Authorization")
-    if authorization:
-        scheme, _, credentials = get_authorization_scheme_param(authorization)
-        if scheme.lower() == "bearer":
-            token = credentials
-            return await user_data_from_token(token, **kwargs)
-    cookie_token = websocket.cookies.get("access_token")
-    if cookie_token:
-        return await user_data_from_token(cookie_token, **kwargs)
-    if kwargs.get("raise_exception", True):
-        raise USSOException(
-            status_code=HTTP_401_UNAUTHORIZED,
-            error="unauthorized",
-        )
-    return None