PyPI - webull-openapi-python-sdk - Versions diffs - 1.0.0__py3-none-any.whl - Mend

webull-openapi-python-sdk 1.0.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (295) hide show

samples/__init__.py +1 -0
samples/data/__init__.py +1 -0
samples/data/data_client.py +57 -0
samples/data/data_streaming_client.py +86 -0
samples/data/data_streaming_client_async.py +101 -0
samples/trade/__init__.py +0 -0
samples/trade/trade_client.py +163 -0
samples/trade/trade_client_v2.py +181 -0
samples/trade/trade_event_client.py +47 -0
webull/__init__.py +1 -0
webull/core/__init__.py +12 -0
webull/core/auth/__init__.py +0 -0
webull/core/auth/algorithm/__init__.py +0 -0
webull/core/auth/algorithm/sha_hmac1.py +65 -0
webull/core/auth/algorithm/sha_hmac256.py +75 -0
webull/core/auth/composer/__init__.py +0 -0
webull/core/auth/composer/default_signature_composer.py +125 -0
webull/core/auth/credentials.py +46 -0
webull/core/auth/signers/__init__.py +0 -0
webull/core/auth/signers/app_key_signer.py +72 -0
webull/core/auth/signers/signer.py +48 -0
webull/core/auth/signers/signer_factory.py +58 -0
webull/core/cache/__init__.py +225 -0
webull/core/client.py +410 -0
webull/core/common/__init__.py +0 -0
webull/core/common/api_type.py +19 -0
webull/core/common/easy_enum.py +35 -0
webull/core/common/region.py +7 -0
webull/core/compat.py +85 -0
webull/core/context/__init__.py +0 -0
webull/core/context/request_context_holder.py +33 -0
webull/core/data/endpoints.json +22 -0
webull/core/data/retry_config.json +15 -0
webull/core/endpoint/__init__.py +8 -0
webull/core/endpoint/chained_endpoint_resolver.py +57 -0
webull/core/endpoint/default_endpoint_resolver.py +60 -0
webull/core/endpoint/local_config_regional_endpoint_resolver.py +77 -0
webull/core/endpoint/resolver_endpoint_request.py +46 -0
webull/core/endpoint/user_customized_endpoint_resolver.py +55 -0
webull/core/exception/__init__.py +0 -0
webull/core/exception/error_code.py +23 -0
webull/core/exception/error_msg.py +21 -0
webull/core/exception/exceptions.py +53 -0
webull/core/headers.py +57 -0
webull/core/http/__init__.py +0 -0
webull/core/http/initializer/__init__.py +0 -0
webull/core/http/initializer/client_initializer.py +79 -0
webull/core/http/initializer/token/__init__.py +0 -0
webull/core/http/initializer/token/bean/__init__.py +0 -0
webull/core/http/initializer/token/bean/access_token.py +40 -0
webull/core/http/initializer/token/bean/check_token_request.py +44 -0
webull/core/http/initializer/token/bean/create_token_request.py +45 -0
webull/core/http/initializer/token/bean/refresh_token_request.py +44 -0
webull/core/http/initializer/token/token_manager.py +208 -0
webull/core/http/initializer/token/token_operation.py +72 -0
webull/core/http/method_type.py +43 -0
webull/core/http/protocol_type.py +43 -0
webull/core/http/request.py +121 -0
webull/core/http/response.py +166 -0
webull/core/request.py +278 -0
webull/core/retry/__init__.py +0 -0
webull/core/retry/backoff_strategy.py +102 -0
webull/core/retry/retry_condition.py +214 -0
webull/core/retry/retry_policy.py +63 -0
webull/core/retry/retry_policy_context.py +51 -0
webull/core/utils/__init__.py +0 -0
webull/core/utils/common.py +62 -0
webull/core/utils/data.py +25 -0
webull/core/utils/desensitize.py +33 -0
webull/core/utils/validation.py +49 -0
webull/core/vendored/__init__.py +0 -0
webull/core/vendored/requests/__init__.py +94 -0
webull/core/vendored/requests/__version__.py +28 -0
webull/core/vendored/requests/_internal_utils.py +56 -0
webull/core/vendored/requests/adapters.py +539 -0
webull/core/vendored/requests/api.py +166 -0
webull/core/vendored/requests/auth.py +307 -0
webull/core/vendored/requests/certs.py +34 -0
webull/core/vendored/requests/compat.py +85 -0
webull/core/vendored/requests/cookies.py +555 -0
webull/core/vendored/requests/exceptions.py +136 -0
webull/core/vendored/requests/help.py +134 -0
webull/core/vendored/requests/hooks.py +48 -0
webull/core/vendored/requests/models.py +960 -0
webull/core/vendored/requests/packages/__init__.py +17 -0
webull/core/vendored/requests/packages/certifi/__init__.py +17 -0
webull/core/vendored/requests/packages/certifi/__main__.py +16 -0
webull/core/vendored/requests/packages/certifi/cacert.pem +4433 -0
webull/core/vendored/requests/packages/certifi/core.py +51 -0
webull/core/vendored/requests/packages/chardet/__init__.py +53 -0
webull/core/vendored/requests/packages/chardet/big5freq.py +400 -0
webull/core/vendored/requests/packages/chardet/big5prober.py +61 -0
webull/core/vendored/requests/packages/chardet/chardistribution.py +247 -0
webull/core/vendored/requests/packages/chardet/charsetgroupprober.py +120 -0
webull/core/vendored/requests/packages/chardet/charsetprober.py +159 -0
webull/core/vendored/requests/packages/chardet/cli/__init__.py +1 -0
webull/core/vendored/requests/packages/chardet/cli/chardetect.py +99 -0
webull/core/vendored/requests/packages/chardet/codingstatemachine.py +102 -0
webull/core/vendored/requests/packages/chardet/compat.py +48 -0
webull/core/vendored/requests/packages/chardet/cp949prober.py +63 -0
webull/core/vendored/requests/packages/chardet/enums.py +90 -0
webull/core/vendored/requests/packages/chardet/escprober.py +115 -0
webull/core/vendored/requests/packages/chardet/escsm.py +260 -0
webull/core/vendored/requests/packages/chardet/eucjpprober.py +106 -0
webull/core/vendored/requests/packages/chardet/euckrfreq.py +209 -0
webull/core/vendored/requests/packages/chardet/euckrprober.py +61 -0
webull/core/vendored/requests/packages/chardet/euctwfreq.py +401 -0
webull/core/vendored/requests/packages/chardet/euctwprober.py +60 -0
webull/core/vendored/requests/packages/chardet/gb2312freq.py +297 -0
webull/core/vendored/requests/packages/chardet/gb2312prober.py +60 -0
webull/core/vendored/requests/packages/chardet/hebrewprober.py +306 -0
webull/core/vendored/requests/packages/chardet/jisfreq.py +339 -0
webull/core/vendored/requests/packages/chardet/jpcntx.py +247 -0
webull/core/vendored/requests/packages/chardet/langbulgarianmodel.py +242 -0
webull/core/vendored/requests/packages/chardet/langcyrillicmodel.py +347 -0
webull/core/vendored/requests/packages/chardet/langgreekmodel.py +239 -0
webull/core/vendored/requests/packages/chardet/langhebrewmodel.py +214 -0
webull/core/vendored/requests/packages/chardet/langhungarianmodel.py +239 -0
webull/core/vendored/requests/packages/chardet/langthaimodel.py +213 -0
webull/core/vendored/requests/packages/chardet/langturkishmodel.py +207 -0
webull/core/vendored/requests/packages/chardet/latin1prober.py +159 -0
webull/core/vendored/requests/packages/chardet/mbcharsetprober.py +105 -0
webull/core/vendored/requests/packages/chardet/mbcsgroupprober.py +68 -0
webull/core/vendored/requests/packages/chardet/mbcssm.py +586 -0
webull/core/vendored/requests/packages/chardet/sbcharsetprober.py +146 -0
webull/core/vendored/requests/packages/chardet/sbcsgroupprober.py +87 -0
webull/core/vendored/requests/packages/chardet/sjisprober.py +106 -0
webull/core/vendored/requests/packages/chardet/universaldetector.py +300 -0
webull/core/vendored/requests/packages/chardet/utf8prober.py +96 -0
webull/core/vendored/requests/packages/chardet/version.py +23 -0
webull/core/vendored/requests/packages/urllib3/__init__.py +114 -0
webull/core/vendored/requests/packages/urllib3/_collections.py +346 -0
webull/core/vendored/requests/packages/urllib3/connection.py +405 -0
webull/core/vendored/requests/packages/urllib3/connectionpool.py +910 -0
webull/core/vendored/requests/packages/urllib3/contrib/__init__.py +0 -0
webull/core/vendored/requests/packages/urllib3/contrib/_appengine_environ.py +44 -0
webull/core/vendored/requests/packages/urllib3/contrib/_securetransport/__init__.py +0 -0
webull/core/vendored/requests/packages/urllib3/contrib/_securetransport/bindings.py +607 -0
webull/core/vendored/requests/packages/urllib3/contrib/_securetransport/low_level.py +360 -0
webull/core/vendored/requests/packages/urllib3/contrib/appengine.py +303 -0
webull/core/vendored/requests/packages/urllib3/contrib/ntlmpool.py +125 -0
webull/core/vendored/requests/packages/urllib3/contrib/pyopenssl.py +484 -0
webull/core/vendored/requests/packages/urllib3/contrib/securetransport.py +818 -0
webull/core/vendored/requests/packages/urllib3/contrib/socks.py +206 -0
webull/core/vendored/requests/packages/urllib3/exceptions.py +260 -0
webull/core/vendored/requests/packages/urllib3/fields.py +192 -0
webull/core/vendored/requests/packages/urllib3/filepost.py +112 -0
webull/core/vendored/requests/packages/urllib3/packages/__init__.py +19 -0
webull/core/vendored/requests/packages/urllib3/packages/backports/__init__.py +0 -0
webull/core/vendored/requests/packages/urllib3/packages/backports/makefile.py +67 -0
webull/core/vendored/requests/packages/urllib3/packages/ordered_dict.py +273 -0
webull/core/vendored/requests/packages/urllib3/packages/six.py +882 -0
webull/core/vendored/requests/packages/urllib3/packages/socks.py +887 -0
webull/core/vendored/requests/packages/urllib3/packages/ssl_match_hostname/__init__.py +19 -0
webull/core/vendored/requests/packages/urllib3/packages/ssl_match_hostname/_implementation.py +170 -0
webull/core/vendored/requests/packages/urllib3/poolmanager.py +467 -0
webull/core/vendored/requests/packages/urllib3/request.py +164 -0
webull/core/vendored/requests/packages/urllib3/response.py +721 -0
webull/core/vendored/requests/packages/urllib3/util/__init__.py +68 -0
webull/core/vendored/requests/packages/urllib3/util/connection.py +148 -0
webull/core/vendored/requests/packages/urllib3/util/queue.py +35 -0
webull/core/vendored/requests/packages/urllib3/util/request.py +132 -0
webull/core/vendored/requests/packages/urllib3/util/response.py +101 -0
webull/core/vendored/requests/packages/urllib3/util/retry.py +426 -0
webull/core/vendored/requests/packages/urllib3/util/selectors.py +601 -0
webull/core/vendored/requests/packages/urllib3/util/ssl_.py +396 -0
webull/core/vendored/requests/packages/urllib3/util/timeout.py +256 -0
webull/core/vendored/requests/packages/urllib3/util/url.py +252 -0
webull/core/vendored/requests/packages/urllib3/util/wait.py +164 -0
webull/core/vendored/requests/packages.py +28 -0
webull/core/vendored/requests/sessions.py +750 -0
webull/core/vendored/requests/status_codes.py +105 -0
webull/core/vendored/requests/structures.py +119 -0
webull/core/vendored/requests/utils.py +916 -0
webull/core/vendored/six.py +905 -0
webull/data/__init__.py +3 -0
webull/data/common/__init__.py +0 -0
webull/data/common/category.py +26 -0
webull/data/common/connect_ack.py +29 -0
webull/data/common/direction.py +25 -0
webull/data/common/exchange_code.py +33 -0
webull/data/common/exercise_style.py +22 -0
webull/data/common/expiration_cycle.py +26 -0
webull/data/common/instrument_status.py +23 -0
webull/data/common/option_type.py +20 -0
webull/data/common/subscribe_type.py +22 -0
webull/data/common/timespan.py +29 -0
webull/data/data_client.py +35 -0
webull/data/data_streaming_client.py +89 -0
webull/data/internal/__init__.py +0 -0
webull/data/internal/default_retry_policy.py +84 -0
webull/data/internal/exceptions.py +60 -0
webull/data/internal/quotes_client.py +314 -0
webull/data/internal/quotes_decoder.py +40 -0
webull/data/internal/quotes_payload_decoder.py +35 -0
webull/data/internal/quotes_topic.py +36 -0
webull/data/quotes/__init__.py +0 -0
webull/data/quotes/instrument.py +33 -0
webull/data/quotes/market_data.py +187 -0
webull/data/quotes/market_streaming_data.py +66 -0
webull/data/quotes/subscribe/__init__.py +0 -0
webull/data/quotes/subscribe/ask_bid_result.py +49 -0
webull/data/quotes/subscribe/basic_result.py +45 -0
webull/data/quotes/subscribe/broker_result.py +33 -0
webull/data/quotes/subscribe/message_pb2.py +37 -0
webull/data/quotes/subscribe/order_result.py +30 -0
webull/data/quotes/subscribe/payload_type.py +19 -0
webull/data/quotes/subscribe/quote_decoder.py +28 -0
webull/data/quotes/subscribe/quote_result.py +47 -0
webull/data/quotes/subscribe/snapshot_decoder.py +30 -0
webull/data/quotes/subscribe/snapshot_result.py +69 -0
webull/data/quotes/subscribe/tick_decoder.py +29 -0
webull/data/quotes/subscribe/tick_result.py +47 -0
webull/data/request/__init__.py +0 -0
webull/data/request/get_batch_historical_bars_request.py +43 -0
webull/data/request/get_corp_action_request.py +47 -0
webull/data/request/get_eod_bars_request.py +32 -0
webull/data/request/get_historical_bars_request.py +43 -0
webull/data/request/get_instruments_request.py +30 -0
webull/data/request/get_quotes_request.py +35 -0
webull/data/request/get_snapshot_request.py +38 -0
webull/data/request/get_tick_request.py +37 -0
webull/data/request/subscribe_request.py +43 -0
webull/data/request/unsubscribe_request.py +42 -0
webull/trade/__init__.py +2 -0
webull/trade/common/__init__.py +0 -0
webull/trade/common/account_type.py +22 -0
webull/trade/common/category.py +29 -0
webull/trade/common/combo_ticker_type.py +23 -0
webull/trade/common/combo_type.py +31 -0
webull/trade/common/currency.py +24 -0
webull/trade/common/forbid_reason.py +27 -0
webull/trade/common/instrument_type.py +27 -0
webull/trade/common/markets.py +27 -0
webull/trade/common/order_entrust_type.py +21 -0
webull/trade/common/order_side.py +23 -0
webull/trade/common/order_status.py +25 -0
webull/trade/common/order_tif.py +24 -0
webull/trade/common/order_type.py +30 -0
webull/trade/common/trade_policy.py +22 -0
webull/trade/common/trading_date_type.py +24 -0
webull/trade/common/trailing_type.py +23 -0
webull/trade/events/__init__.py +0 -0
webull/trade/events/default_retry_policy.py +64 -0
webull/trade/events/events_pb2.py +43 -0
webull/trade/events/events_pb2_grpc.py +66 -0
webull/trade/events/signature_composer.py +61 -0
webull/trade/events/types.py +21 -0
webull/trade/request/__init__.py +0 -0
webull/trade/request/cancel_order_request.py +28 -0
webull/trade/request/get_account_balance_request.py +28 -0
webull/trade/request/get_account_positions_request.py +30 -0
webull/trade/request/get_account_profile_request.py +26 -0
webull/trade/request/get_app_subscriptions.py +28 -0
webull/trade/request/get_open_orders_request.py +30 -0
webull/trade/request/get_order_detail_request.py +27 -0
webull/trade/request/get_today_orders_request.py +31 -0
webull/trade/request/get_trade_calendar_request.py +30 -0
webull/trade/request/get_trade_instrument_detail_request.py +24 -0
webull/trade/request/get_trade_security_detail_request.py +42 -0
webull/trade/request/get_tradeable_instruments_request.py +27 -0
webull/trade/request/palce_order_request.py +91 -0
webull/trade/request/place_order_request_v2.py +58 -0
webull/trade/request/replace_order_request.py +73 -0
webull/trade/request/replace_order_request_v2.py +38 -0
webull/trade/request/v2/__init__.py +0 -0
webull/trade/request/v2/cancel_option_request.py +28 -0
webull/trade/request/v2/cancel_order_request.py +28 -0
webull/trade/request/v2/get_account_balance_request.py +28 -0
webull/trade/request/v2/get_account_list.py +23 -0
webull/trade/request/v2/get_account_positions_request.py +24 -0
webull/trade/request/v2/get_order_detail_request.py +26 -0
webull/trade/request/v2/get_order_history_request.py +35 -0
webull/trade/request/v2/palce_order_request.py +87 -0
webull/trade/request/v2/place_option_request.py +64 -0
webull/trade/request/v2/preview_option_request.py +28 -0
webull/trade/request/v2/preview_order_request.py +59 -0
webull/trade/request/v2/replace_option_request.py +28 -0
webull/trade/request/v2/replace_order_request.py +57 -0
webull/trade/trade/__init__.py +0 -0
webull/trade/trade/account_info.py +83 -0
webull/trade/trade/order_operation.py +246 -0
webull/trade/trade/trade_calendar.py +37 -0
webull/trade/trade/trade_instrument.py +72 -0
webull/trade/trade/v2/__init__.py +0 -0
webull/trade/trade/v2/account_info_v2.py +55 -0
webull/trade/trade/v2/order_operation_v2.py +206 -0
webull/trade/trade_client.py +43 -0
webull/trade/trade_events_client.py +233 -0
webull_openapi_python_sdk-1.0.0.dist-info/METADATA +28 -0
webull_openapi_python_sdk-1.0.0.dist-info/RECORD +295 -0
webull_openapi_python_sdk-1.0.0.dist-info/WHEEL +5 -0
webull_openapi_python_sdk-1.0.0.dist-info/licenses/LICENSE +202 -0
webull_openapi_python_sdk-1.0.0.dist-info/licenses/NOTICE +56 -0
webull_openapi_python_sdk-1.0.0.dist-info/top_level.txt +2 -0

webull/core/vendored/requests/packages/urllib3/contrib/ntlmpool.py ADDED Viewed

@@ -0,0 +1,125 @@
+# Copyright 2022 Webull
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# 	http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+"""
+NTLM authenticating pool, contributed by erikcederstran
+Issue #10, see: http://code.google.com/p/urllib3/issues/detail?id=10
+"""
+from __future__ import absolute_import
+from logging import getLogger
+from ntlm import ntlm
+from .. import HTTPSConnectionPool
+from ..packages.six.moves.http_client import HTTPSConnection
+log = getLogger(__name__)
+class NTLMConnectionPool(HTTPSConnectionPool):
+    """
+    Implements an NTLM authentication version of an urllib3 connection pool
+    """
+    scheme = 'https'
+    def __init__(self, user, pw, authurl, *args, **kwargs):
+        """
+        authurl is a random URL on the server that is protected by NTLM.
+        user is the Windows user, probably in the DOMAIN\\username format.
+        pw is the password for the user.
+        """
+        super(NTLMConnectionPool, self).__init__(*args, **kwargs)
+        self.authurl = authurl
+        self.rawuser = user
+        user_parts = user.split('\\', 1)
+        self.domain = user_parts[0].upper()
+        self.user = user_parts[1]
+        self.pw = pw
+    def _new_conn(self):
+        # Performs the NTLM handshake that secures the connection. The socket
+        # must be kept open while requests are performed.
+        self.num_connections += 1
+        log.debug('Starting NTLM HTTPS connection no. %d: https://%s%s',
+                  self.num_connections, self.host, self.authurl)
+        headers = {'Connection': 'Keep-Alive'}
+        req_header = 'Authorization'
+        resp_header = 'www-authenticate'
+        conn = HTTPSConnection(host=self.host, port=self.port)
+        # Send negotiation message
+        headers[req_header] = (
+            'NTLM %s' % ntlm.create_NTLM_NEGOTIATE_MESSAGE(self.rawuser))
+        log.debug('Request headers: %s', headers)
+        conn.request('GET', self.authurl, None, headers)
+        res = conn.getresponse()
+        reshdr = dict(res.getheaders())
+        log.debug('Response status: %s %s', res.status, res.reason)
+        log.debug('Response headers: %s', reshdr)
+        log.debug('Response data: %s [...]', res.read(100))
+        # Remove the reference to the socket, so that it can not be closed by
+        # the response object (we want to keep the socket open)
+        res.fp = None
+        # Server should respond with a challenge message
+        auth_header_values = reshdr[resp_header].split(', ')
+        auth_header_value = None
+        for s in auth_header_values:
+            if s[:5] == 'NTLM ':
+                auth_header_value = s[5:]
+        if auth_header_value is None:
+            raise Exception('Unexpected %s response header: %s' %
+                            (resp_header, reshdr[resp_header]))
+        # Send authentication message
+        ServerChallenge, NegotiateFlags = \
+            ntlm.parse_NTLM_CHALLENGE_MESSAGE(auth_header_value)
+        auth_msg = ntlm.create_NTLM_AUTHENTICATE_MESSAGE(ServerChallenge,
+                                                         self.user,
+                                                         self.domain,
+                                                         self.pw,
+                                                         NegotiateFlags)
+        headers[req_header] = 'NTLM %s' % auth_msg
+        log.debug('Request headers: %s', headers)
+        conn.request('GET', self.authurl, None, headers)
+        res = conn.getresponse()
+        log.debug('Response status: %s %s', res.status, res.reason)
+        log.debug('Response headers: %s', dict(res.getheaders()))
+        log.debug('Response data: %s [...]', res.read()[:100])
+        if res.status != 200:
+            if res.status == 401:
+                raise Exception('Server rejected request: wrong '
+                                'username or password')
+            raise Exception('Wrong server response: %s %s' %
+                            (res.status, res.reason))
+        res.fp = None
+        log.debug('Connection established')
+        return conn
+    def urlopen(self, method, url, body=None, headers=None, retries=3,
+                redirect=True, assert_same_host=True):
+        if headers is None:
+            headers = {}
+        headers['Connection'] = 'Keep-Alive'
+        return super(NTLMConnectionPool, self).urlopen(method, url, body,
+                                                       headers, retries,
+                                                       redirect,
+                                                       assert_same_host)

webull/core/vendored/requests/packages/urllib3/contrib/pyopenssl.py ADDED Viewed

@@ -0,0 +1,484 @@
+# Copyright 2022 Webull
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+# 	http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+"""
+SSL with SNI_-support for Python 2. Follow these instructions if you would
+like to verify SSL certificates in Python 2. Note, the default libraries do
+*not* do certificate checking; you need to do additional work to validate
+certificates yourself.
+This needs the following packages installed:
+* pyOpenSSL (tested with 16.0.0)
+* cryptography (minimum 1.3.4, from pyopenssl)
+* idna (minimum 2.0, from cryptography)
+However, pyopenssl depends on cryptography, which depends on idna, so while we
+use all three directly here we end up having relatively few packages required.
+You can install them with the following command:
+    pip install pyopenssl cryptography idna
+To activate certificate checking, call
+:func:`~urllib3.contrib.pyopenssl.inject_into_urllib3` from your Python code
+before you begin making HTTP requests. This can be done in a ``sitecustomize``
+module, or at any other time before your application begins using ``urllib3``,
+like this::
+    try:
+        import urllib3.contrib.pyopenssl
+        urllib3.contrib.pyopenssl.inject_into_urllib3()
+    except ImportError:
+        pass
+Now you can use :mod:`urllib3` as you normally would, and it will support SNI
+when the required modules are installed.
+Activating this module also has the positive side effect of disabling SSL/TLS
+compression in Python 2 (see `CRIME attack`_).
+If you want to configure the default list of supported cipher suites, you can
+set the ``urllib3.contrib.pyopenssl.DEFAULT_SSL_CIPHER_LIST`` variable.
+.. _sni: https://en.wikipedia.org/wiki/Server_Name_Indication
+.. _crime attack: https://en.wikipedia.org/wiki/CRIME_(security_exploit)
+"""
+from __future__ import absolute_import
+import OpenSSL.SSL
+from cryptography import x509
+from cryptography.hazmat.backends.openssl import backend as openssl_backend
+from cryptography.hazmat.backends.openssl.x509 import _Certificate
+try:
+    from cryptography.x509 import UnsupportedExtension
+except ImportError:
+    # UnsupportedExtension is gone in cryptography >= 2.1.0
+    class UnsupportedExtension(Exception):
+        pass
+from socket import timeout, error as SocketError
+from io import BytesIO
+try:  # Platform-specific: Python 2
+    from socket import _fileobject
+except ImportError:  # Platform-specific: Python 3
+    _fileobject = None
+    from ..packages.backports.makefile import backport_makefile
+import logging
+import ssl
+from ..packages import six
+import sys
+from .. import util
+__all__ = ['inject_into_urllib3', 'extract_from_urllib3']
+# SNI always works.
+HAS_SNI = True
+# Map from urllib3 to PyOpenSSL compatible parameter-values.
+_openssl_versions = {
+    ssl.PROTOCOL_SSLv23: OpenSSL.SSL.SSLv23_METHOD,
+    ssl.PROTOCOL_TLSv1: OpenSSL.SSL.TLSv1_METHOD,
+}
+if hasattr(ssl, 'PROTOCOL_TLSv1_1') and hasattr(OpenSSL.SSL, 'TLSv1_1_METHOD'):
+    _openssl_versions[ssl.PROTOCOL_TLSv1_1] = OpenSSL.SSL.TLSv1_1_METHOD
+if hasattr(ssl, 'PROTOCOL_TLSv1_2') and hasattr(OpenSSL.SSL, 'TLSv1_2_METHOD'):
+    _openssl_versions[ssl.PROTOCOL_TLSv1_2] = OpenSSL.SSL.TLSv1_2_METHOD
+try:
+    _openssl_versions.update({ssl.PROTOCOL_SSLv3: OpenSSL.SSL.SSLv3_METHOD})
+except AttributeError:
+    pass
+_stdlib_to_openssl_verify = {
+    ssl.CERT_NONE: OpenSSL.SSL.VERIFY_NONE,
+    ssl.CERT_OPTIONAL: OpenSSL.SSL.VERIFY_PEER,
+    ssl.CERT_REQUIRED:
+        OpenSSL.SSL.VERIFY_PEER + OpenSSL.SSL.VERIFY_FAIL_IF_NO_PEER_CERT,
+}
+_openssl_to_stdlib_verify = dict(
+    (v, k) for k, v in _stdlib_to_openssl_verify.items()
+)
+# OpenSSL will only write 16K at a time
+SSL_WRITE_BLOCKSIZE = 16384
+orig_util_HAS_SNI = util.HAS_SNI
+orig_util_SSLContext = util.ssl_.SSLContext
+log = logging.getLogger(__name__)
+def inject_into_urllib3():
+    'Monkey-patch urllib3 with PyOpenSSL-backed SSL-support.'
+    _validate_dependencies_met()
+    util.ssl_.SSLContext = PyOpenSSLContext
+    util.HAS_SNI = HAS_SNI
+    util.ssl_.HAS_SNI = HAS_SNI
+    util.IS_PYOPENSSL = True
+    util.ssl_.IS_PYOPENSSL = True
+def extract_from_urllib3():
+    'Undo monkey-patching by :func:`inject_into_urllib3`.'
+    util.ssl_.SSLContext = orig_util_SSLContext
+    util.HAS_SNI = orig_util_HAS_SNI
+    util.ssl_.HAS_SNI = orig_util_HAS_SNI
+    util.IS_PYOPENSSL = False
+    util.ssl_.IS_PYOPENSSL = False
+def _validate_dependencies_met():
+    """
+    Verifies that PyOpenSSL's package-level dependencies have been met.
+    Throws `ImportError` if they are not met.
+    """
+    # Method added in `cryptography==1.1`; not available in older versions
+    from cryptography.x509.extensions import Extensions
+    if getattr(Extensions, "get_extension_for_class", None) is None:
+        raise ImportError("'cryptography' module missing required functionality.  "
+                          "Try upgrading to v1.3.4 or newer.")
+    # pyOpenSSL 0.14 and above use cryptography for OpenSSL bindings. The _x509
+    # attribute is only present on those versions.
+    from OpenSSL.crypto import X509
+    x509 = X509()
+    if getattr(x509, "_x509", None) is None:
+        raise ImportError("'pyOpenSSL' module missing required functionality. "
+                          "Try upgrading to v0.14 or newer.")
+def _dnsname_to_stdlib(name):
+    """
+    Converts a dNSName SubjectAlternativeName field to the form used by the
+    standard library on the given Python version.
+    Cryptography produces a dNSName as a unicode string that was idna-decoded
+    from ASCII bytes. We need to idna-encode that string to get it back, and
+    then on Python 3 we also need to convert to unicode via UTF-8 (the stdlib
+    uses PyUnicode_FromStringAndSize on it, which decodes via UTF-8).
+    If the name cannot be idna-encoded then we return None signalling that
+    the name given should be skipped.
+    """
+    def idna_encode(name):
+        """
+        Borrowed wholesale from the Python Cryptography Project. It turns out
+        that we can't just safely call `idna.encode`: it can explode for
+        wildcard names. This avoids that problem.
+        """
+        import idna
+        try:
+            for prefix in [u'*.', u'.']:
+                if name.startswith(prefix):
+                    name = name[len(prefix):]
+                    return prefix.encode('ascii') + idna.encode(name)
+            return idna.encode(name)
+        except idna.core.IDNAError:
+            return None
+    if ':' in name:
+        return name
+    name = idna_encode(name)
+    if name is None:
+        return None
+    elif sys.version_info >= (3, 0):
+        name = name.decode('utf-8')
+    return name
+def get_subj_alt_name(peer_cert):
+    """
+    Given an PyOpenSSL certificate, provides all the subject alternative names.
+    """
+    # Pass the cert to cryptography, which has much better APIs for this.
+    if hasattr(peer_cert, "to_cryptography"):
+        cert = peer_cert.to_cryptography()
+    else:
+        # This is technically using private APIs, but should work across all
+        # relevant versions before PyOpenSSL got a proper API for this.
+        cert = _Certificate(openssl_backend, peer_cert._x509)
+    # We want to find the SAN extension. Ask Cryptography to locate it (it's
+    # faster than looping in Python)
+    try:
+        ext = cert.extensions.get_extension_for_class(
+            x509.SubjectAlternativeName
+        ).value
+    except x509.ExtensionNotFound:
+        # No such extension, return the empty list.
+        return []
+    except (x509.DuplicateExtension, UnsupportedExtension,
+            x509.UnsupportedGeneralNameType, UnicodeError) as e:
+        # A problem has been found with the quality of the certificate. Assume
+        # no SAN field is present.
+        log.warning(
+            "A problem was encountered with the certificate that prevented "
+            "urllib3 from finding the SubjectAlternativeName field. This can "
+            "affect certificate validation. The error was %s",
+            e,
+        )
+        return []
+    # We want to return dNSName and iPAddress fields. We need to cast the IPs
+    # back to strings because the match_hostname function wants them as
+    # strings.
+    # Sadly the DNS names need to be idna encoded and then, on Python 3, UTF-8
+    # decoded. This is pretty frustrating, but that's what the standard library
+    # does with certificates, and so we need to attempt to do the same.
+    # We also want to skip over names which cannot be idna encoded.
+    names = [
+        ('DNS', name) for name in map(_dnsname_to_stdlib, ext.get_values_for_type(x509.DNSName))
+        if name is not None
+    ]
+    names.extend(
+        ('IP Address', str(name))
+        for name in ext.get_values_for_type(x509.IPAddress)
+    )
+    return names
+class WrappedSocket(object):
+    '''API-compatibility wrapper for Python OpenSSL's Connection-class.
+    Note: _makefile_refs, _drop() and _reuse() are needed for the garbage
+    collector of pypy.
+    '''
+    def __init__(self, connection, socket, suppress_ragged_eofs=True):
+        self.connection = connection
+        self.socket = socket
+        self.suppress_ragged_eofs = suppress_ragged_eofs
+        self._makefile_refs = 0
+        self._closed = False
+    def fileno(self):
+        return self.socket.fileno()
+    # Copy-pasted from Python 3.5 source code
+    def _decref_socketios(self):
+        if self._makefile_refs > 0:
+            self._makefile_refs -= 1
+        if self._closed:
+            self.close()
+    def recv(self, *args, **kwargs):
+        try:
+            data = self.connection.recv(*args, **kwargs)
+        except OpenSSL.SSL.SysCallError as e:
+            if self.suppress_ragged_eofs and e.args == (-1, 'Unexpected EOF'):
+                return b''
+            else:
+                raise SocketError(str(e))
+        except OpenSSL.SSL.ZeroReturnError:
+            if self.connection.get_shutdown() == OpenSSL.SSL.RECEIVED_SHUTDOWN:
+                return b''
+            else:
+                raise
+        except OpenSSL.SSL.WantReadError:
+            if not util.wait_for_read(self.socket, self.socket.gettimeout()):
+                raise timeout('The read operation timed out')
+            else:
+                return self.recv(*args, **kwargs)
+        else:
+            return data
+    def recv_into(self, *args, **kwargs):
+        try:
+            return self.connection.recv_into(*args, **kwargs)
+        except OpenSSL.SSL.SysCallError as e:
+            if self.suppress_ragged_eofs and e.args == (-1, 'Unexpected EOF'):
+                return 0
+            else:
+                raise SocketError(str(e))
+        except OpenSSL.SSL.ZeroReturnError:
+            if self.connection.get_shutdown() == OpenSSL.SSL.RECEIVED_SHUTDOWN:
+                return 0
+            else:
+                raise
+        except OpenSSL.SSL.WantReadError:
+            if not util.wait_for_read(self.socket, self.socket.gettimeout()):
+                raise timeout('The read operation timed out')
+            else:
+                return self.recv_into(*args, **kwargs)
+    def settimeout(self, timeout):
+        return self.socket.settimeout(timeout)
+    def _send_until_done(self, data):
+        while True:
+            try:
+                return self.connection.send(data)
+            except OpenSSL.SSL.WantWriteError:
+                if not util.wait_for_write(self.socket, self.socket.gettimeout()):
+                    raise timeout()
+                continue
+            except OpenSSL.SSL.SysCallError as e:
+                raise SocketError(str(e))
+    def sendall(self, data):
+        total_sent = 0
+        while total_sent < len(data):
+            sent = self._send_until_done(data[total_sent:total_sent + SSL_WRITE_BLOCKSIZE])
+            total_sent += sent
+    def shutdown(self):
+        # FIXME rethrow compatible exceptions should we ever use this
+        self.connection.shutdown()
+    def close(self):
+        if self._makefile_refs < 1:
+            try:
+                self._closed = True
+                return self.connection.close()
+            except OpenSSL.SSL.Error:
+                return
+        else:
+            self._makefile_refs -= 1
+    def getpeercert(self, binary_form=False):
+        x509 = self.connection.get_peer_certificate()
+        if not x509:
+            return x509
+        if binary_form:
+            return OpenSSL.crypto.dump_certificate(
+                OpenSSL.crypto.FILETYPE_ASN1,
+                x509)
+        return {
+            'subject': (
+                (('commonName', x509.get_subject().CN),),
+            ),
+            'subjectAltName': get_subj_alt_name(x509)
+        }
+    def _reuse(self):
+        self._makefile_refs += 1
+    def _drop(self):
+        if self._makefile_refs < 1:
+            self.close()
+        else:
+            self._makefile_refs -= 1
+if _fileobject:  # Platform-specific: Python 2
+    def makefile(self, mode, bufsize=-1):
+        self._makefile_refs += 1
+        return _fileobject(self, mode, bufsize, close=True)
+else:  # Platform-specific: Python 3
+    makefile = backport_makefile
+WrappedSocket.makefile = makefile
+class PyOpenSSLContext(object):
+    """
+    I am a wrapper class for the PyOpenSSL ``Context`` object. I am responsible
+    for translating the interface of the standard library ``SSLContext`` object
+    to calls into PyOpenSSL.
+    """
+    def __init__(self, protocol):
+        self.protocol = _openssl_versions[protocol]
+        self._ctx = OpenSSL.SSL.Context(self.protocol)
+        self._options = 0
+        self.check_hostname = False
+    @property
+    def options(self):
+        return self._options
+    @options.setter
+    def options(self, value):
+        self._options = value
+        self._ctx.set_options(value)
+    @property
+    def verify_mode(self):
+        return _openssl_to_stdlib_verify[self._ctx.get_verify_mode()]
+    @verify_mode.setter
+    def verify_mode(self, value):
+        self._ctx.set_verify(
+            _stdlib_to_openssl_verify[value],
+            _verify_callback
+        )
+    def set_default_verify_paths(self):
+        self._ctx.set_default_verify_paths()
+    def set_ciphers(self, ciphers):
+        if isinstance(ciphers, six.text_type):
+            ciphers = ciphers.encode('utf-8')
+        self._ctx.set_cipher_list(ciphers)
+    def load_verify_locations(self, cafile=None, capath=None, cadata=None):
+        if cafile is not None:
+            cafile = cafile.encode('utf-8')
+        if capath is not None:
+            capath = capath.encode('utf-8')
+        self._ctx.load_verify_locations(cafile, capath)
+        if cadata is not None:
+            self._ctx.load_verify_locations(BytesIO(cadata))
+    def load_cert_chain(self, certfile, keyfile=None, password=None):
+        self._ctx.use_certificate_chain_file(certfile)
+        if password is not None:
+            self._ctx.set_passwd_cb(lambda max_length, prompt_twice, userdata: password)
+        self._ctx.use_privatekey_file(keyfile or certfile)
+    def wrap_socket(self, sock, server_side=False,
+                    do_handshake_on_connect=True, suppress_ragged_eofs=True,
+                    server_hostname=None):
+        cnx = OpenSSL.SSL.Connection(self._ctx, sock)
+        if isinstance(server_hostname, six.text_type):  # Platform-specific: Python 3
+            server_hostname = server_hostname.encode('utf-8')
+        if server_hostname is not None:
+            cnx.set_tlsext_host_name(server_hostname)
+        cnx.set_connect_state()
+        while True:
+            try:
+                cnx.do_handshake()
+            except OpenSSL.SSL.WantReadError:
+                if not util.wait_for_read(sock, sock.gettimeout()):
+                    raise timeout('select timed out')
+                continue
+            except OpenSSL.SSL.Error as e:
+                raise ssl.SSLError('bad handshake: %r' % e)
+            break
+        return WrappedSocket(cnx, sock)
+def _verify_callback(cnx, x509, err_no, err_depth, return_code):
+    return err_no == 0