xident 1.0.0__tar.gz

xident-1.0.0/.github/workflows/code-review.yml

@@ -0,0 +1,45 @@
+name: Code Review
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened]
+
+permissions:
+  contents: read
+  pull-requests: read
+  issues: read
+  id-token: write
+
+jobs:
+  review:
+    name: Claude Code Review
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 1
+
+      - name: Run Claude Code Review
+        uses: anthropics/claude-code-action@v1
+        with:
+          anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }}
+          plugin_marketplaces: "https://github.com/anthropics/claude-code.git"
+          plugins: "code-review@claude-code-plugins"
+          prompt: "/code-review:code-review ${{ github.repository }}/pull/${{ github.event.pull_request.number }}"
+
+  security:
+    name: Security Review
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ github.event.pull_request.head.sha }}
+          fetch-depth: 2
+
+      - name: Claude Security Review
+        uses: anthropics/claude-code-security-review@main
+        with:
+          comment-pr: true
+          upload-results: true
+        env:
+          CLAUDE_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}

xident-1.0.0/.github/workflows/pr-review.yml

@@ -0,0 +1,181 @@
+# =============================================================================
+# PR Review — Python SDK
+#
+# Runs on every pull request to main.
+# Jobs: test, code-review, security-review, pr-summary
+# =============================================================================
+
+name: PR Review
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened]
+
+permissions:
+  contents: read
+  pull-requests: write
+  issues: read
+
+jobs:
+
+  test:
+    name: Test
+    runs-on: ubuntu-latest
+    outputs:
+      test-result: ${{ steps.test.outcome }}
+      test-output: ${{ steps.test.outputs.output }}
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Run tests
+        id: test
+        continue-on-error: true
+        run: |
+          OUTPUT=$(python -m pytest tests/ 2>&1 || echo "No tests yet")
+          echo "output<<EOF" >> $GITHUB_OUTPUT
+          echo "$OUTPUT" | tail -50 >> $GITHUB_OUTPUT
+          echo "EOF" >> $GITHUB_OUTPUT
+
+  code-review:
+    name: Claude Code Review
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Claude Code Review
+        uses: anthropics/claude-code-action@v1
+        with:
+          prompt: |
+            Review this PR thoroughly. Focus on:
+            1. Code quality, readability, and adherence to project conventions
+            2. Potential bugs, edge cases, and error handling
+            3. Performance implications
+            4. Test coverage adequacy
+            5. Documentation completeness
+
+            Be specific with line references. Suggest improvements, not just problems.
+        env:
+          ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
+
+  security-review:
+    name: Security Review
+    runs-on: ubuntu-latest
+    outputs:
+      findings-count: ${{ steps.security.outputs.findings-count }}
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ github.event.pull_request.head.sha }}
+          fetch-depth: 2
+
+      - name: Claude Security Review
+        id: security
+        uses: anthropics/claude-code-security-review@main
+        with:
+          comment-pr: false
+          upload-results: true
+        env:
+          CLAUDE_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }}
+
+  pr-summary:
+    name: PR Summary
+    runs-on: ubuntu-latest
+    needs: [test, security-review]
+    if: always()
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Generate PR Summary
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const testResult = '${{ needs.test.outputs.test-result }}';
+            const testOutput = `${{ needs.test.outputs.test-output }}`;
+            const securityFindings = '${{ needs.security-review.outputs.findings-count }}' || '0';
+            
+            const { data: pr } = await github.rest.pulls.get({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              pull_number: context.issue.number
+            });
+            
+            const { data: files } = await github.rest.pulls.listFiles({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              pull_number: context.issue.number
+            });
+            
+            const filesSummary = files.map(f => 
+              `- \`${f.filename}\` (+${f.additions}/-${f.deletions})`
+            ).join('\n');
+            
+            const testEmoji = testResult === 'success' ? '✅' : testResult === 'failure' ? '❌' : '⚠️';
+            const securityEmoji = parseInt(securityFindings) === 0 ? '✅' : '🔴';
+            
+            const body = `## 📋 PR Review Summary
+            
+            ### 🎯 Changes Overview
+            **${files.length} files changed** | +${pr.additions} additions | -${pr.deletions} deletions
+            
+            <details>
+            <summary>Files changed</summary>
+            
+            ${filesSummary}
+            </details>
+            
+            ### ${testEmoji} Test Results
+            **Status**: ${testResult || 'unknown'}
+            
+            <details>
+            <summary>Test output</summary>
+            
+            \`\`\`
+            ${testOutput || 'No test output captured'}
+            \`\`\`
+            </details>
+            
+            ### ${securityEmoji} Security Review
+            **Findings**: ${securityFindings} issue(s) detected
+            
+            > Full security review details available in the workflow artifacts.
+            
+            ### 🤖 Code Review
+            Claude Code Review runs as a separate job and posts inline comments directly on the PR.
+            
+            ---
+            *Generated by PR Review workflow*`;
+            
+            const comments = await github.rest.issues.listComments({
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+              issue_number: context.issue.number
+            });
+            
+            const botComment = comments.data.find(c => 
+              c.body.includes('📋 PR Review Summary')
+            );
+            
+            if (botComment) {
+              await github.rest.issues.updateComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                comment_id: botComment.id,
+                body: body
+              });
+            } else {
+              await github.rest.issues.createComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                issue_number: context.issue.number,
+                body: body
+              });
+            }

xident-1.0.0/.github/workflows/test.yml

@@ -0,0 +1,26 @@
+name: Test
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened]
+
+permissions:
+  contents: read
+
+jobs:
+  test:
+    name: Test
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: "3.12"
+
+      - name: Install dependencies
+        run: pip install -e ".[dev]" 2>/dev/null || pip install -e . 2>/dev/null || pip install -r requirements.txt
+
+      - name: Run tests
+        run: python -m pytest tests/ -v --tb=short

xident-1.0.0/PKG-INFO

@@ -0,0 +1,218 @@
+Metadata-Version: 2.4
+Name: xident
+Version: 1.0.0
+Summary: Official Python SDK for Xident age & identity verification
+Project-URL: Homepage, https://xident.io
+Project-URL: Documentation, https://docs.xident.io
+Project-URL: Repository, https://github.com/xident-io/python-sdk
+Project-URL: Changelog, https://github.com/xident-io/python-sdk/blob/main/CHANGELOG.md
+Author-email: Xident <support@xident.io>
+License-Expression: MIT
+Keywords: age-verification,identity,kyc,sdk,xident
+Classifier: Development Status :: 5 - Production/Stable
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: MIT License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Topic :: Software Development :: Libraries :: Python Modules
+Classifier: Typing :: Typed
+Requires-Python: >=3.9
+Requires-Dist: httpx>=0.25
+Provides-Extra: dev
+Requires-Dist: mypy>=1.0; extra == 'dev'
+Requires-Dist: pytest-asyncio>=0.21; extra == 'dev'
+Requires-Dist: pytest-cov>=4.0; extra == 'dev'
+Requires-Dist: pytest>=7.0; extra == 'dev'
+Requires-Dist: respx>=0.21; extra == 'dev'
+Requires-Dist: ruff>=0.1; extra == 'dev'
+Description-Content-Type: text/markdown
+
+# Xident Python SDK
+
+Official Python SDK for [Xident](https://xident.io) age and identity verification. Try it live at [demo.xident.io](https://demo.xident.io).
+
+[![PyPI version](https://img.shields.io/pypi/v/xident.svg)](https://pypi.org/project/xident/)
+[![Python versions](https://img.shields.io/pypi/pyversions/xident.svg)](https://pypi.org/project/xident/)
+[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](LICENSE)
+
+## Installation
+
+```bash
+pip install xident
+```
+
+Requires Python 3.9+.
+
+## Quick Start
+
+```python
+from xident import Xident
+
+client = Xident(api_key="sk_live_...")
+
+# Create an init token
+result = client.verification.init(
+    callback_url="https://example.com/callback",
+    min_age=18,
+)
+print(result.verify_url)  # Redirect user here
+
+# After callback, verify result server-side
+session = client.verification.get_result("xtk_abc123")
+if session.is_verified():
+    print(f"Verified! Age: {session.age_bracket()}+")
+```
+
+## Async Support
+
+```python
+from xident import AsyncXident
+
+client = AsyncXident(api_key="sk_live_...")
+
+result = await client.verification.init(
+    callback_url="https://example.com/callback",
+    min_age=18,
+)
+
+session = await client.verification.get_result("xtk_abc123")
+```
+
+## Configuration
+
+```python
+client = Xident(
+    api_key="sk_live_...",       # Required: secret API key
+    base_url="https://...",      # Override API URL
+    timeout=30,                  # Request timeout (seconds)
+    max_retries=3,               # Retry on 5xx errors
+    headers={"X-Custom": "..."},  # Extra headers
+)
+```
+
+## Verification
+
+### Create Init Token
+
+```python
+result = client.verification.init(
+    callback_url="https://example.com/callback",  # Required
+    min_age=18,              # Age threshold (12, 15, 18, 21, 25)
+    success_url="...",       # Override redirect on success
+    failed_url="...",        # Override redirect on failure
+    user_id="user_42",       # Your user identifier
+    theme="dark",            # Widget theme (light, dark, auto)
+    locale="de",             # Widget locale
+    metadata="custom_data",  # Opaque metadata string
+)
+
+print(result.token)       # "xit_abc123"
+print(result.verify_url)  # Full URL to redirect user to
+```
+
+### Get Verification Result
+
+```python
+session = client.verification.get_result("xtk_abc123")
+
+session.is_verified()    # True if completed successfully
+session.is_failed()      # True if verification failed
+session.is_pending()     # True if still in progress
+session.is_terminal()    # True if no more changes possible
+
+session.age_bracket()    # 18 (verified age threshold)
+session.method()         # "ml_fast", "ocr", etc.
+session.country_code     # "US", "DE", etc.
+session.status           # SessionStatus.COMPLETED
+```
+
+## Webhooks
+
+```python
+# Verify and parse a webhook event
+event = client.webhooks.construct_event(
+    payload=request_body,        # Raw JSON string or bytes
+    signature=x_xident_signature,  # X-Xident-Signature header
+    secret="whsec_...",          # Webhook secret from dashboard
+    tolerance=300,               # Max age in seconds (default: 5 min)
+)
+
+print(event["type"])  # "session.completed"
+print(event["data"])  # Event payload dict
+
+# Or verify signature only
+client.webhooks.verify_signature(payload, signature, secret)
+```
+
+## Error Handling
+
+```python
+from xident import (
+    XidentError,          # Base for all errors
+    AuthenticationError,  # 401/403
+    ValidationError,      # 400
+    NotFoundError,        # 404
+    RateLimitError,       # 429 (has retry_after)
+    ServerError,          # 5xx
+    NetworkError,         # Connection failed
+)
+
+try:
+    result = client.verification.init(callback_url="...")
+except AuthenticationError as e:
+    print(f"Bad API key: {e.error_code}")
+except RateLimitError as e:
+    print(f"Rate limited, retry in {e.retry_after}s")
+except NetworkError as e:
+    print(f"Connection failed: {e}")
+except XidentError as e:
+    print(f"SDK error: {e}")
+```
+
+## Context Manager
+
+```python
+# Auto-close HTTP client
+with Xident(api_key="sk_live_...") as client:
+    result = client.verification.init(callback_url="...")
+
+# Async
+async with AsyncXident(api_key="sk_live_...") as client:
+    result = await client.verification.init(callback_url="...")
+```
+
+## Framework Examples
+
+See the `examples/` directory for complete integrations:
+
+- **[basic.py](examples/basic.py)** -- Pure Python
+- **[flask_app.py](examples/flask_app.py)** -- Flask
+- **[django_view.py](examples/django_view.py)** -- Django
+- **[fastapi_app.py](examples/fastapi_app.py)** -- FastAPI (async)
+
+## Development
+
+```bash
+# Install dev dependencies
+pip install -e ".[dev]"
+
+# Run tests
+pytest
+
+# Run tests with coverage
+pytest --cov=xident
+
+# Type checking
+mypy src/xident
+
+# Linting
+ruff check src/ tests/
+```
+
+## License
+
+MIT

xident-1.0.0/README.md

@@ -0,0 +1,185 @@
+# Xident Python SDK
+
+Official Python SDK for [Xident](https://xident.io) age and identity verification. Try it live at [demo.xident.io](https://demo.xident.io).
+
+[![PyPI version](https://img.shields.io/pypi/v/xident.svg)](https://pypi.org/project/xident/)
+[![Python versions](https://img.shields.io/pypi/pyversions/xident.svg)](https://pypi.org/project/xident/)
+[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](LICENSE)
+
+## Installation
+
+```bash
+pip install xident
+```
+
+Requires Python 3.9+.
+
+## Quick Start
+
+```python
+from xident import Xident
+
+client = Xident(api_key="sk_live_...")
+
+# Create an init token
+result = client.verification.init(
+    callback_url="https://example.com/callback",
+    min_age=18,
+)
+print(result.verify_url)  # Redirect user here
+
+# After callback, verify result server-side
+session = client.verification.get_result("xtk_abc123")
+if session.is_verified():
+    print(f"Verified! Age: {session.age_bracket()}+")
+```
+
+## Async Support
+
+```python
+from xident import AsyncXident
+
+client = AsyncXident(api_key="sk_live_...")
+
+result = await client.verification.init(
+    callback_url="https://example.com/callback",
+    min_age=18,
+)
+
+session = await client.verification.get_result("xtk_abc123")
+```
+
+## Configuration
+
+```python
+client = Xident(
+    api_key="sk_live_...",       # Required: secret API key
+    base_url="https://...",      # Override API URL
+    timeout=30,                  # Request timeout (seconds)
+    max_retries=3,               # Retry on 5xx errors
+    headers={"X-Custom": "..."},  # Extra headers
+)
+```
+
+## Verification
+
+### Create Init Token
+
+```python
+result = client.verification.init(
+    callback_url="https://example.com/callback",  # Required
+    min_age=18,              # Age threshold (12, 15, 18, 21, 25)
+    success_url="...",       # Override redirect on success
+    failed_url="...",        # Override redirect on failure
+    user_id="user_42",       # Your user identifier
+    theme="dark",            # Widget theme (light, dark, auto)
+    locale="de",             # Widget locale
+    metadata="custom_data",  # Opaque metadata string
+)
+
+print(result.token)       # "xit_abc123"
+print(result.verify_url)  # Full URL to redirect user to
+```
+
+### Get Verification Result
+
+```python
+session = client.verification.get_result("xtk_abc123")
+
+session.is_verified()    # True if completed successfully
+session.is_failed()      # True if verification failed
+session.is_pending()     # True if still in progress
+session.is_terminal()    # True if no more changes possible
+
+session.age_bracket()    # 18 (verified age threshold)
+session.method()         # "ml_fast", "ocr", etc.
+session.country_code     # "US", "DE", etc.
+session.status           # SessionStatus.COMPLETED
+```
+
+## Webhooks
+
+```python
+# Verify and parse a webhook event
+event = client.webhooks.construct_event(
+    payload=request_body,        # Raw JSON string or bytes
+    signature=x_xident_signature,  # X-Xident-Signature header
+    secret="whsec_...",          # Webhook secret from dashboard
+    tolerance=300,               # Max age in seconds (default: 5 min)
+)
+
+print(event["type"])  # "session.completed"
+print(event["data"])  # Event payload dict
+
+# Or verify signature only
+client.webhooks.verify_signature(payload, signature, secret)
+```
+
+## Error Handling
+
+```python
+from xident import (
+    XidentError,          # Base for all errors
+    AuthenticationError,  # 401/403
+    ValidationError,      # 400
+    NotFoundError,        # 404
+    RateLimitError,       # 429 (has retry_after)
+    ServerError,          # 5xx
+    NetworkError,         # Connection failed
+)
+
+try:
+    result = client.verification.init(callback_url="...")
+except AuthenticationError as e:
+    print(f"Bad API key: {e.error_code}")
+except RateLimitError as e:
+    print(f"Rate limited, retry in {e.retry_after}s")
+except NetworkError as e:
+    print(f"Connection failed: {e}")
+except XidentError as e:
+    print(f"SDK error: {e}")
+```
+
+## Context Manager
+
+```python
+# Auto-close HTTP client
+with Xident(api_key="sk_live_...") as client:
+    result = client.verification.init(callback_url="...")
+
+# Async
+async with AsyncXident(api_key="sk_live_...") as client:
+    result = await client.verification.init(callback_url="...")
+```
+
+## Framework Examples
+
+See the `examples/` directory for complete integrations:
+
+- **[basic.py](examples/basic.py)** -- Pure Python
+- **[flask_app.py](examples/flask_app.py)** -- Flask
+- **[django_view.py](examples/django_view.py)** -- Django
+- **[fastapi_app.py](examples/fastapi_app.py)** -- FastAPI (async)
+
+## Development
+
+```bash
+# Install dev dependencies
+pip install -e ".[dev]"
+
+# Run tests
+pytest
+
+# Run tests with coverage
+pytest --cov=xident
+
+# Type checking
+mypy src/xident
+
+# Linting
+ruff check src/ tests/
+```
+
+## License
+
+MIT