AZTP (Agentic Zero Trust Protocol) Client Library for Python
Project description
AZTP Client Python
AZTP (Agentic Zero Trust Protocol) Client is an enterprise-grade identity service client that provides secure workload identity management using AZTP standards. The client library facilitates secure communication between workloads by managing digital identities and certificates.
Installation
pip install aztp-client
Requirements
- Python 3.8 or higher
Trusted Domains
The AZTP client maintains a whitelist of trusted domains for use with the trustDomain parameter. When you specify a domain that isn't in this whitelist, the client will display a warning and suggest valid alternatives from the approved list. If no trust domain is specified, the system defaults to aztp.network.
from aztp_client import Aztp, whiteListTrustDomains
# Check available trusted domains
print("Available trusted domains:", whiteListTrustDomains)
# Create a secure connection with a trusted domain
agent = await client.secure_connect(
crew_agent={},
"my-agent"
config={
"trustDomain": whiteListTrustDomains["gptapps.ai"], # Using a whitelisted domain
"isGlobalIdentity": False
}
)
Current Trusted Domains
gptarticles.xyzgptapps.aivcagents.ai
Quick Start
from aztp_client import Aztp, whiteListTrustDomains
# Initialize client
client = Aztp(api_key="your-api-key")
# Create a secure agent
agent = await client.secure_connect(
crew_agent={},
"service1",
config={
"isGlobalIdentity": False
}
)
# Create a secure agent with a trusted domain
agent_with_domain = await client.secure_connect(
crew_agent={},
'service2',
config={
"trustDomain": whiteListTrustDomains["gptapps.ai"],, # Using first whitelisted domain
"isGlobalIdentity": False
}
)
# Verify identity
is_valid = await client.verify_identity(agent)
# Verify identity using agent name (multiple methods)
is_valid = await client.verify_identity_using_agent_name(name)
# Verify the identity connection
is_valid_connection = await client.verify_identity_connection(from_aztp_id, to_aztp_id)
# Check available trusted domains
print("Available trusted domains:", whiteListTrustDomains)
is_valid = await client.verify_identity_using_agent_name(full_aztp_id)
is_valid = await client.verify_identity_using_agent_name(
name=name,
trust_domain="aztp.network",
workload="workload",
environment="production",
method="node"
)
# Get identity details
identity = await client.get_identity(agent)
Example
import asyncio
import os
from aztp_client import Aztp
from dotenv import load_dotenv
# Load the .env file from the correct location
load_dotenv()
async def main():
# Initialize the client with your API key
client = Aztp(
api_key= os.getenv("AZTP_API_KEY")
)
name = os.getenv("AZTP_AGENT_NAME")
childNameA = os.getenv("AZTP_CHILD_AGENT_NAME_A")
childNameB = os.getenv("AZTP_CHILD_AGENT_NAME_B")
# Get trust domain from environment or use a whitelisted domain
from aztp_client import whiteListTrustDomains
trustDomain = os.getenv("AZTP_TRUST_DOMAIN") or whiteListTrustDomains["gptapps.ai"]
# Validate trust domain against whitelist
if trustDomain not in whiteListTrustDomains:
print(f"Warning: Trust domain '{trustDomain}' is not in the whitelist.")
print(f"Available trusted domains: {', '.join(whiteListTrustDomains)}")
trustDomain = 'aztp.network'
try:
crewAgent = {}
childCrewAgentA = {}
childCrewAgentB = {}
# Create a secure agent
print("\nCreating secure agent...")
agent = await client.secure_connect(
crewAgent,
name,
{
"isGlobalIdentity": True
}
)
print(f"Agent {name} created successfully!")
if agent.identity.aztp_id:
print(f"Agent: {agent.identity.aztp_id}")
#Example 1: Create a child agent with parent identity
print("\nCreating child agent...")
childAgentA = await client.secure_connect(
childCrewAgentA,
childNameA,
{
"parentIdentity": agent.identity.aztp_id,
"isGlobalIdentity": False
}
)
print(f"Agent {childNameA} created successfully!")
if childAgentA.identity.aztp_id:
print(f"Agent: {childAgentA.identity.aztp_id}")
#Example 2: Create a child agent with parent identity and trust domain
print("\nCreating child agent with parent identity and trust domain...")
childAgentB = await client.secure_connect(
childCrewAgentB,
childNameB,
{
"parentIdentity": agent.identity.aztp_id,
"trustDomain": trustDomain, # Using validated trust domain from whitelist
"isGlobalIdentity": False
}
)
print(f"Agent {childNameB} created successfully!")
if childAgentB.identity.aztp_id:
print(f"Agent: {childAgentB.identity.aztp_id}")
# Verify the identity
print(f"\nVerifying agent {name} identity...")
is_valid = await client.verify_identity(agent)
print(f"Identity valid: {is_valid}")
# Verify the identity using agent name
print(f"\nVerifying agent {name} identity with non self validating...")
is_valid = await client.verify_identity(agent, False, childAgentB.identity.aztp_id)
print(f"Identity valid: {is_valid}")
# Verify the identity connection
print(f"\nVerifying agent {name} identity connection with {childNameB}...")
is_valid_connection = await client.verify_identity_connection(agent.identity.aztp_id, childAgentB.identity.aztp_id)
print(f"Connection valid: {is_valid_connection}")
# Get identity details
print(f"\nGetting agent {name} identity details...")
identity = await client.get_identity(agent)
if identity:
print(f"Retrieved identity: {identity}")
else:
print("No identity found")
except ConnectionError as e:
print(f"Connection Error: Could not connect to the AZTP server. Please check your connection and server URL.")
print(f"Details: {e}")
except Exception as e:
print(f"Error: {str(e)}")
print("\nCurrent configuration:")
print(f"Base URL: {client.config.base_url}")
print(f"Environment: {client.config.environment}")
print("API Key: ********") # Don't print the API key for security
if __name__ == "__main__":
asyncio.run(main())
Features
- Workload Identity Management using AZTP standards
- Certificate Management (X.509)
- Secure Communication
- Identity Verification
- Metadata Management
- Environment-specific Configuration
- Trusted Domain Validation and Suggestions
License
MIT License
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
aztp_client-1.0.14.tar.gz
(10.6 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file aztp_client-1.0.14.tar.gz.
File metadata
- Download URL: aztp_client-1.0.14.tar.gz
- Upload date:
- Size: 10.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
f4ee842792483d8d45f6522199181155c848eb9bde8499ed83388da702423af5
|
|
| MD5 |
00a0f4f4604a724917a93bb13d4248b8
|
|
| BLAKE2b-256 |
2a82e518c282a1599c9bf4c755e1c3e4199a3bc82306d8bca8973acd1ba25c1e
|
File details
Details for the file aztp_client-1.0.14-py3-none-any.whl.
File metadata
- Download URL: aztp_client-1.0.14-py3-none-any.whl
- Upload date:
- Size: 10.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.2
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
49f929da1e31ae7f60f53d27ba05b0ab90b591e568ca0a8b6e60ff576e146131
|
|
| MD5 |
b542545ae2517d765cc9efd5f9c8156f
|
|
| BLAKE2b-256 |
c6b7570e74aea0480bed2467e7077ca11c25a7cdda991f5727c6329712cac5c2
|
