Pluggable JWT authentication — authenticators, key providers, and FastAPI dependency factories

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for FrostMN from gravatar.com FrostMN

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Requires: Python >=3.12
Report project as malware

Project description

csrd-auth

Pluggable JWT authentication for FastAPI — authenticators, key providers, and dependency factories.

Tier 1.5 — depends on csrd-models and csrd-context only.

Installation

pip install "csrd-auth @ git+https://github.com/csrd-api/fastapi-common.git#subdirectory=packages/auth"

Usage

from csrd.auth import (
    JWTAuthenticator,
    StaticKeyProvider,
    create_bearer_dependency,
    create_jwt_bearer,
)

Quick start — JWT bearer dependency

# Standalone (provide your own token_finder)
from csrd.auth import create_jwt_bearer

auth_dep = create_jwt_bearer(
    key="your-secret",
    token_finder=lambda: extract_token_from_request(),
)

When used with csrd.versioning, wire in find_token explicitly:

from csrd.auth import create_jwt_bearer
from csrd.versioning import find_token

auth_dep = create_jwt_bearer(key="your-secret", token_finder=find_token)

Authenticators

Class Strategy
JWTAuthenticator Decode & verify JWT locally via PyJWT
StaticAuthenticator Accept a fixed token (dev/testing)
RemoteAuthenticator Validate via upstream HTTP endpoint
CallbackAuthenticator Delegate to any sync/async callable
ChainedAuthenticator Try multiple authenticators in order

Key Providers

Class Strategy
StaticKeyProvider Fixed string, bytes, or SecretStr
EnvKeyProvider Read from app.state or settings loader
JWKSKeyProvider Fetch from JWKS endpoint (cached with TTL)
MultiKeyProvider Route by kid header or try all
CallbackKeyProvider Delegate to any callable

Protocols

  • Authenticator(Request, str) -> UserClaims
  • KeyProvider(token_headers, app) -> key

Both are @runtime_checkable protocols.

Dependency Tier

Tier 1    csrd.models · csrd.lifespan · csrd.context
Tier 1.5  csrd.auth · csrd.logging
Tier 2    csrd.delegate · csrd.repository · csrd.service
Tier 3    csrd.versioning

csrd.auth depends only on csrd.models (for UserClaims) and csrd.context (for user_info_context). It has no dependency on csrd.versioning.

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for FrostMN from gravatar.com FrostMN

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Requires: Python >=3.12

Release history Release notifications | RSS feed

0.3.82

0.3.81

0.3.80

0.3.79

0.3.78

0.3.77

0.3.76

0.3.75

0.3.74

0.3.73

0.3.72

0.3.71

0.3.70

0.3.69

0.3.68

0.3.67

0.3.66

0.3.65

0.3.64

0.3.63

0.3.62

0.3.60

0.3.59

0.3.58

0.3.57

0.3.56

0.3.55

0.3.54

0.3.52

0.3.51

0.3.50

0.3.49

0.3.48

0.3.47

0.3.46

0.3.45

0.3.44

0.3.43

0.3.42

0.3.41

0.3.40

0.3.39

0.3.38

0.3.37

0.3.36

0.3.35

0.3.34

0.3.33

0.3.32

0.3.31

0.3.30

0.3.29

0.3.28

0.3.27

0.3.26

0.3.25

0.3.24

0.3.23

0.3.22

0.3.21

0.3.20

0.3.19

0.3.18

0.3.17

0.3.16

0.3.15

0.3.14

0.3.13

0.3.12

0.3.11

0.3.10

0.3.9

0.3.8

0.3.7

0.3.6

0.3.5

0.3.4

0.3.2

0.3.1

0.3.0

This version

0.2.0

0.1.45

0.1.44

0.1.43

0.1.42

0.1.41

0.1.40

0.1.39

0.1.38

0.1.37

0.1.36

0.1.35

0.1.34

0.1.33

0.1.32

0.1.31

0.1.30

0.1.29

0.1.28

0.1.26

0.1.25

0.1.24

0.1.23

0.1.22

0.1.21

0.1.20

0.1.19

0.1.18

0.1.17

0.1.15

0.1.14

0.1.13

0.1.11

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

csrd_auth-0.2.0.tar.gz (12.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

csrd_auth-0.2.0-py3-none-any.whl (9.3 kB view details)

Uploaded Python 3

File details

Details for the file csrd_auth-0.2.0.tar.gz.

File metadata

  • Download URL: csrd_auth-0.2.0.tar.gz
  • Upload date:
  • Size: 12.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for csrd_auth-0.2.0.tar.gz
Algorithm Hash digest
SHA256 d86ac0d3827ddd8e026fef9ddce4ef3a3cbf6e1f594570a2174ff6904c7df0de
MD5 4c571859a1554b4c2e867235cc4f4904
BLAKE2b-256 8b42d9558b5d90a0a87579bee83a7ef084891514c0d4bb51b66bc239acfb7bd3

See more details on using hashes here.

Provenance

The following attestation bundles were made for csrd_auth-0.2.0.tar.gz:

Publisher: release.yml on csrd-api/fastapi-common

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file csrd_auth-0.2.0-py3-none-any.whl.

File metadata

  • Download URL: csrd_auth-0.2.0-py3-none-any.whl
  • Upload date:
  • Size: 9.3 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for csrd_auth-0.2.0-py3-none-any.whl
Algorithm Hash digest
SHA256 ff9f14d808b39df99fa29b5f088e798ba973437bb8d06c114eafd32450bc394a
MD5 cfc9eec20f9f6fe190e564adc7131dbd
BLAKE2b-256 cf92475886b6b1b0da3ed6dba0dfe296966cb80a784970866730865448747da0

See more details on using hashes here.

Provenance

The following attestation bundles were made for csrd_auth-0.2.0-py3-none-any.whl:

Publisher: release.yml on csrd-api/fastapi-common

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page