Authentication plugin for IDaaS (Identity as a Service) core sdk
Project description
cloud-idaas-core-alibabacloud-authentication-plugin
Authentication plugin for IDaaS (Identity as a Service) core SDK, providing Alibaba Cloud EIAM integration for machine-to-machine authentication.
Features
- Alibaba Cloud EIAM Integration: Seamlessly integrates with Alibaba Cloud EIAM service for OAuth2 token generation
- Plugin Architecture: Implements the
PluginCredentialProviderinterface fromcloud-idaas-core - Automatic Registration: Auto-registers as a plugin via entry points configuration
Requirements
- Python >= 3.9
- Dependencies:
- cloud-idaas-core >= 0.0.2b0
- alibabacloud_eiam20211201 >= 2.13.2
Installation
pip install cloud-idaas-core-alibabacloud-authentication-plugin
Quick Start
1. Configuration File
Create a configuration file ~/.cloud_idaas/client_config.json:
{
"idaasInstanceId": "your-idaas-instance-id",
"clientId": "your-client-id",
"issuer": "your-idaas-issuer-url",
"tokenEndpoint": "your-idaas-token-endpoint",
"scope": "your-requested-scope",
"openApiEndpoint": "eiam.[region_id].aliyuncs.com",
"authnConfiguration": {
"authenticationSubject": "CLIENT",
"authnMethod": "PLUGIN",
"pluginName": "alibabacloudPluginCredentialProvider"
}
}
2. Use in code
from cloud_idaas.core import IDaaSCredentialProviderFactory
# Initialize (automatically loads configuration file)
IDaaSCredentialProviderFactory.init()
# Get credential provider
credential_provider = IDaaSCredentialProviderFactory.get_idaas_credential_provider()
# Get access token
access_token = credential_provider.get_bearer_token()
print(f"Access Token: {access_token}")
Configuration Details
Complete Configuration Example
{
"idaasInstanceId": "idaas_xxx",
"clientId": "app_xxx",
"issuer": "https://xxx/api/v2/iauths_system/oauth2",
"tokenEndpoint": "https://xxx/api/v2/iauths_system/oauth2/token",
"scope": "api.example.com|read:file",
"openApiEndpoint": "eiam.[region_id].aliyuncs.com",
"authnConfiguration": {
"authenticationSubject": "CLIENT",
"authnMethod": "PLUGIN",
"pluginName": "alibabacloudPluginCredentialProvider"
},
"httpConfiguration": {
"connectTimeout": 5000,
"readTimeout": 10000
}
}
Configuration Items
| Configuration Item | Type | Required | Description |
|---|---|---|---|
| idaasInstanceId | string | Yes | IDaaS instance ID |
| clientId | string | Yes | Client ID for authentication |
| issuer | string | Yes | OAuth2 issuer URL |
| tokenEndpoint | string | Yes | OAuth2 token endpoint URL |
| scope | string | No | Requested scope |
| openApiEndpoint | string | Yes | Alibaba Cloud EIAM OpenAPI endpoint |
| authnConfiguration | object | Yes | Authentication configuration |
| httpConfiguration | object | No | HTTP client configuration |
Plugin Configuration
To use this plugin, set the authnMethod to PLUGIN and specify the plugin name:
{
"authnConfiguration": {
"authenticationSubject": "CLIENT",
"authnMethod": "PLUGIN",
"pluginName": "alibabacloudPluginCredentialProvider"
}
}
Support and Feedback
- Email: cloudidaas@list.alibaba-inc.com
- Issues: Please submit an Issue for questions or suggestions
License
This project is licensed under the Apache License 2.0.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file cloud_idaas_core_alibabacloud_authentication_plugin-0.0.1b0.tar.gz.
File metadata
- Download URL: cloud_idaas_core_alibabacloud_authentication_plugin-0.0.1b0.tar.gz
- Upload date:
- Size: 8.8 kB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
4779df74c05694c3a5d35167df39d86973d9b38a1411e884e75b792a974c8ca1
|
|
| MD5 |
f0d7acf4a1d43fb5d1cf6c03984e6f9d
|
|
| BLAKE2b-256 |
eae13ee1b1293fdb3400e2556b5f4564ffa3d7e6781cda296dfa5bea014b125b
|
Provenance
The following attestation bundles were made for cloud_idaas_core_alibabacloud_authentication_plugin-0.0.1b0.tar.gz:
Publisher:
publish.yml on cloud-idaas/idaas-python-core-alibabacloud-authentication-plugin
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
cloud_idaas_core_alibabacloud_authentication_plugin-0.0.1b0.tar.gz -
Subject digest:
4779df74c05694c3a5d35167df39d86973d9b38a1411e884e75b792a974c8ca1 - Sigstore transparency entry: 1072211996
- Sigstore integration time:
-
Permalink:
cloud-idaas/idaas-python-core-alibabacloud-authentication-plugin@ca9a5f12488d91eb38404742489de9338f7fa9b1 -
Branch / Tag:
refs/tags/v0.0.1b0 - Owner: https://github.com/cloud-idaas
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
publish.yml@ca9a5f12488d91eb38404742489de9338f7fa9b1 -
Trigger Event:
push
-
Statement type:
File details
Details for the file cloud_idaas_core_alibabacloud_authentication_plugin-0.0.1b0-py3-none-any.whl.
File metadata
- Download URL: cloud_idaas_core_alibabacloud_authentication_plugin-0.0.1b0-py3-none-any.whl
- Upload date:
- Size: 10.0 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.13.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
940402560d77143570a8395d0d1d4c3f030404472124f426d19d5ebdda7ed33d
|
|
| MD5 |
aa9f5059c63f78a5aa554e4a7e55070a
|
|
| BLAKE2b-256 |
da623c86b7f919de957be626488bbdc3e41dc0b4ab1c4a8e0bf3be02d68e51b1
|
Provenance
The following attestation bundles were made for cloud_idaas_core_alibabacloud_authentication_plugin-0.0.1b0-py3-none-any.whl:
Publisher:
publish.yml on cloud-idaas/idaas-python-core-alibabacloud-authentication-plugin
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
cloud_idaas_core_alibabacloud_authentication_plugin-0.0.1b0-py3-none-any.whl -
Subject digest:
940402560d77143570a8395d0d1d4c3f030404472124f426d19d5ebdda7ed33d - Sigstore transparency entry: 1072212006
- Sigstore integration time:
-
Permalink:
cloud-idaas/idaas-python-core-alibabacloud-authentication-plugin@ca9a5f12488d91eb38404742489de9338f7fa9b1 -
Branch / Tag:
refs/tags/v0.0.1b0 - Owner: https://github.com/cloud-idaas
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
publish.yml@ca9a5f12488d91eb38404742489de9338f7fa9b1 -
Trigger Event:
push
-
Statement type:
