PyPI - usso - Versions diffs - 0.24.1__tar.gz → 0.24.3__tar.gz - Mend

usso 0.24.1tar.gz → 0.24.3tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (27) hide show

{usso-0.24.1/src/usso.egg-info → usso-0.24.3}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: usso
-Version: 0.24.1
+Version: 0.24.3
 Summary: A plug-and-play client for integrating universal single sign-on (SSO) with Python frameworks, enabling secure and seamless authentication across microservices.
 Author-email: Mahdi Kiani <mahdikiany@gmail.com>
 Maintainer-email: Mahdi Kiani <mahdikiany@gmail.com>

{usso-0.24.1 → usso-0.24.3}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 [project]
 name = "usso"
-version = "0.24.1"
+version = "0.24.3"
 description = "A plug-and-play client for integrating universal single sign-on (SSO) with Python frameworks, enabling secure and seamless authentication across microservices."
 readme = "README.md"
 requires-python = ">=3.9"

{usso-0.24.1 → usso-0.24.3}/src/usso/django/middleware.py RENAMED Viewed

@@ -19,21 +19,13 @@ class USSOAuthenticationMiddleware(MiddlewareMixin):
         Middleware to authenticate users by JWT token and create or return a user in the database.
         """
         try:
-            logger.debug("Processing request in USSO authentication middleware")
-            # Extract and verify JWT from Authorization header or cookies
-            user_data = self.jwt_access_security(request)
+            if request.user.is_authenticated:
+                return
+            user_data = self.jwt_access_security_none(request)
             if user_data:
-                # Check database for the user or create a new one
                 user = self.get_or_create_user(user_data)
-                # Attach the user to the request
                 request.user = user
-            else:
-                return JsonResponse(
-                    {"error": "Authentication failed: No valid JWT token provided."},
-                    status=401,
-                )
         except USSOException as e:
             # Handle any errors raised by USSO authentication
             return JsonResponse({"error": str(e)}, status=401)
@@ -49,6 +41,15 @@ class USSOAuthenticationMiddleware(MiddlewareMixin):
         return request.COOKIES.get("usso_access_token")
+    def jwt_access_security_none(self, request: HttpRequest) -> UserData | None:
+        """Return the user associated with a token value."""
+        token = self.get_request_token(request)
+        if not token:
+            return None
+        return Usso(jwks_url=settings.USSO_JWK_URL).user_data_from_token(
+            token, raise_exception=False
+        )
     def jwt_access_security(self, request: HttpRequest) -> UserData | None:
         """Return the user associated with a token value."""
         token = self.get_request_token(request)

{usso-0.24.1 → usso-0.24.3/src/usso.egg-info}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: usso
-Version: 0.24.1
+Version: 0.24.3
 Summary: A plug-and-play client for integrating universal single sign-on (SSO) with Python frameworks, enabling secure and seamless authentication across microservices.
 Author-email: Mahdi Kiani <mahdikiany@gmail.com>
 Maintainer-email: Mahdi Kiani <mahdikiany@gmail.com>