Pluggable JWT authentication — authenticators, key providers, and FastAPI dependency factories

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for FrostMN from gravatar.com FrostMN

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Requires: Python >=3.12
Report project as malware

Project description

csrd-auth

Pluggable JWT authentication for FastAPI — authenticators, key providers, and dependency factories.

Tier 1.5 — depends on csrd-models and csrd-context only.

Installation

pip install "csrd-auth @ git+https://github.com/csrd-api/fastapi-common.git#subdirectory=packages/auth"

Usage

from csrd.auth import (
    JWTAuthenticator,
    StaticKeyProvider,
    create_bearer_dependency,
    create_jwt_bearer,
)

Quick start — JWT bearer dependency

# Standalone (provide your own token_finder)
from csrd.auth import create_jwt_bearer

auth_dep = create_jwt_bearer(
    key="your-secret",
    token_finder=lambda: extract_token_from_request(),
)

When used with csrd.versioning, wire in find_token explicitly:

from csrd.auth import create_jwt_bearer
from csrd.versioning import find_token

auth_dep = create_jwt_bearer(key="your-secret", token_finder=find_token)

Authenticators

Class Strategy
JWTAuthenticator Decode & verify JWT locally via PyJWT
StaticAuthenticator Accept a fixed token (dev/testing)
RemoteAuthenticator Validate via upstream HTTP endpoint
CallbackAuthenticator Delegate to any sync/async callable
ChainedAuthenticator Try multiple authenticators in order

Key Providers

Class Strategy
StaticKeyProvider Fixed string, bytes, or SecretStr
EnvKeyProvider Read from app.state or settings loader
JWKSKeyProvider Fetch from JWKS endpoint (cached with TTL)
MultiKeyProvider Route by kid header or try all
CallbackKeyProvider Delegate to any callable

Protocols

  • Authenticator(Request, str) -> UserClaims
  • KeyProvider(token_headers, app) -> key

Both are @runtime_checkable protocols.

Dependency Tier

Tier 1    csrd.models · csrd.lifespan · csrd.context
Tier 1.5  csrd.auth · csrd.logging
Tier 2    csrd.delegate · csrd.repository · csrd.service
Tier 3    csrd.versioning

csrd.auth depends only on csrd.models (for UserClaims) and csrd.context (for user_info_context). It has no dependency on csrd.versioning.

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for FrostMN from gravatar.com FrostMN

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Requires: Python >=3.12

Release history Release notifications | RSS feed

0.3.82

0.3.81

0.3.80

0.3.79

0.3.78

0.3.77

0.3.76

0.3.75

0.3.74

0.3.73

0.3.72

0.3.71

0.3.70

0.3.69

0.3.68

0.3.67

0.3.66

0.3.65

0.3.64

0.3.63

0.3.62

0.3.60

0.3.59

0.3.58

0.3.57

0.3.56

0.3.55

0.3.54

0.3.52

0.3.51

0.3.50

0.3.49

0.3.48

0.3.47

0.3.46

0.3.45

0.3.44

0.3.43

0.3.42

0.3.41

0.3.40

0.3.39

0.3.38

0.3.37

0.3.36

0.3.35

0.3.34

0.3.33

0.3.32

0.3.31

0.3.30

0.3.29

0.3.28

0.3.27

0.3.26

0.3.25

0.3.24

0.3.23

0.3.22

0.3.21

0.3.20

0.3.19

0.3.18

0.3.17

0.3.16

0.3.15

0.3.14

0.3.13

0.3.12

0.3.11

0.3.10

0.3.9

0.3.8

0.3.7

0.3.6

0.3.5

0.3.4

0.3.2

0.3.1

This version

0.3.0

0.2.0

0.1.45

0.1.44

0.1.43

0.1.42

0.1.41

0.1.40

0.1.39

0.1.38

0.1.37

0.1.36

0.1.35

0.1.34

0.1.33

0.1.32

0.1.31

0.1.30

0.1.29

0.1.28

0.1.26

0.1.25

0.1.24

0.1.23

0.1.22

0.1.21

0.1.20

0.1.19

0.1.18

0.1.17

0.1.15

0.1.14

0.1.13

0.1.11

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

csrd_auth-0.3.0.tar.gz (12.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

csrd_auth-0.3.0-py3-none-any.whl (9.3 kB view details)

Uploaded Python 3

File details

Details for the file csrd_auth-0.3.0.tar.gz.

File metadata

  • Download URL: csrd_auth-0.3.0.tar.gz
  • Upload date:
  • Size: 12.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for csrd_auth-0.3.0.tar.gz
Algorithm Hash digest
SHA256 f76321e736bb6fc6ed4a35a9c22b6140c0eb32ec7a7bf71c37f7b3f7b50f3bbd
MD5 2b42d589b72fc412ef01ffcb1310e1df
BLAKE2b-256 f351049479cb39fef45553cd22dc8141588c2f4a4a618ad9a5838e10010ab443

See more details on using hashes here.

Provenance

The following attestation bundles were made for csrd_auth-0.3.0.tar.gz:

Publisher: release.yml on csrd-api/fastapi-common

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file csrd_auth-0.3.0-py3-none-any.whl.

File metadata

  • Download URL: csrd_auth-0.3.0-py3-none-any.whl
  • Upload date:
  • Size: 9.3 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for csrd_auth-0.3.0-py3-none-any.whl
Algorithm Hash digest
SHA256 c77a436329a56a011fedae52e26260f820627296716a28197b929de2d1813a38
MD5 7a2aaf42cf3be65249a820fbdb2a4cd9
BLAKE2b-256 59ed86fef5b2c9e7640d01e48e37fc732ec25bcf7fbfc5381edce9a8f6395598

See more details on using hashes here.

Provenance

The following attestation bundles were made for csrd_auth-0.3.0-py3-none-any.whl:

Publisher: release.yml on csrd-api/fastapi-common

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page