Skip to main content

auth51 client (embed mode) — in-process egress interception that gives every agent action a scoped, verifiable, DPoP-bound intent token, minted at the source and verified at the resource.

Project description

auth51 — Python client (embed mode)

The in-process enforcement point: it intercepts your agent's egress and gives every governed call a scoped, verifiable intent token — minted at the source, verified at the resource. This is the generalized, MCP-era successor to the original A-JWT client shim, with contextvar-based agent attribution (no call- stack introspection) per DESIGN §7b.

It's the durable, unbypassable path: it sees all egress in-process (native tool calls and MCP calls), and depends only on the HTTP library — not on any agent host's conventions.

Use

import auth51

auth51.configure(
    authority_url="https://authority.auth51.com",
    client_id="...", client_secret="...",
    audiences=["api.internal"],          # hosts to govern; everything else passes through
)

with auth51.agent("ReviewBot", checksum=agent_checksum, scope="read:repo"):
    httpx.get("https://api.internal/repos/...")   # ← stamped with an intent token

Config can also come from env: AUTH51_AUTHORITY_URL, AUTH51_CLIENT_ID, AUTH51_CLIENT_SECRET, AUTH51_AUDIENCES (comma-sep), AUTH51_FAIL_OPEN.

How it works

  • One import installs it (idempotent; a no-op until configured + inside an agent() context).
  • A framework adapter (LangChain/CrewAI — next) or the app sets the current agent via a contextvar at the tool-call boundary; the interceptor reads it.
  • On governed egress: mint a scoped intent token (Hop A) → attach as a Bearer header → forward. Minting uses stdlib urllib so it never re-enters the patched HTTP client.
  • fail-open by default (mint failure → forward unstamped, don't wedge the agent); set fail_open=False to fail closed.

Retained from the original A-JWT client shim

  • Startup-sync (load_agents) — preload registered agents from the authority, index by checksum, detect collisions, and fail-fast on drift when the app declares expected checksums. Boot-time validation: a mis-deployed agent is caught before it runs.
  • Workflow seamswith auth51.workflow(id): ... + record_step(...) track an execution; the chain + completed-steps + prev_jti ride into each intent token's delegation_context (§4.3 tamper-evident trace).
  • contextvar attribution + smart caching — kept; call-stack introspection dropped.

Status

  • ✅ contextvar agent attribution · httpx sync + async + requests interception · mint + attach · fail-open/closed
  • load_agents() startup-sync (cache + collision + drift validation) · workflow seams (delegation_context + prev_jti chain)
  • ✅ LangChain adapter (auth51.adapters.langchain.Auth51CallbackHandler) — sets agent context + records steps at tool boundaries
  • ⏭️ next: PoP signing (the cnf binding) · MCP _meta injection · aiohttp · local checksum recompute (shared lib) · live e2e against the deployed authority

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

auth51-0.1.1.tar.gz (25.2 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

auth51-0.1.1-py3-none-any.whl (31.4 kB view details)

Uploaded Python 3

File details

Details for the file auth51-0.1.1.tar.gz.

File metadata

  • Download URL: auth51-0.1.1.tar.gz
  • Upload date:
  • Size: 25.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for auth51-0.1.1.tar.gz
Algorithm Hash digest
SHA256 f1f2609928b6c8aee5281895ec3fc34379d456ff6e41aa4edfae42bac8bbab15
MD5 93c7e468cd063cf8a0a515e20a3ca7c1
BLAKE2b-256 980b2f316fea78469cafd1dd467b83dc94e07a535440aa25ab614c197afc45ea

See more details on using hashes here.

Provenance

The following attestation bundles were made for auth51-0.1.1.tar.gz:

Publisher: publish.yml on unforge-io/auth51-client-python

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file auth51-0.1.1-py3-none-any.whl.

File metadata

  • Download URL: auth51-0.1.1-py3-none-any.whl
  • Upload date:
  • Size: 31.4 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for auth51-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 d01e14122bfb33a957ea716b23d66bf90bd875ba4f586d41cdccc8201bf914bd
MD5 cf2915abdd45e15922a36c9df0ed35a0
BLAKE2b-256 846bec4bca8f314129c56186eb4e57cac1ecaaa461d67a7ae24d76213af6cb57

See more details on using hashes here.

Provenance

The following attestation bundles were made for auth51-0.1.1-py3-none-any.whl:

Publisher: publish.yml on unforge-io/auth51-client-python

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page