FastAPI ABAC authorization realization

Project description

DAuth

Python FastAPI ABAC Realization.

Getting started

Requirements:

redis - for cache support
databases - for database support

Install:

pip install dauth

After installing import main functions by

from dauth import auth

Library represents function

def Policy(
    subject_call: Callable, 
    resource_type: Any, 
    method: str, 
    check_callback: Callable,
    database_callback: Union[Callable, None] = None,
    cache_callback: Union[Callable, None] = None
)

subject_callback - Is function that library put in FastAPI Depends . Usually function returns user which tries to work with resource
resource_type - Is str which on which User tries to get access
method - Is API method by which working endpoint
check_callback - Is function that realize Policy's check. Function take arguments:
```
check_callback(subject, resource_type, item_id, method, db, cache)
```
- subject is result of Depends(subject_callback)
- resource_type is argument of Policy()
- item_id (by default '*') is providing by FastAPI decorator @app.get(/test/{item_id})
- method is argument of Policy()
- db is database connection, result of Depends(database_callback)
- cache is redis connection, result of Depends(cache_callback)
database_callback - Is a function for getting database connecion
cache_callback - Is a function for getting Redis connection

Examples

Simple usage

from fastapi import FastAPI, Depends
from dauth import auth

app = FastAPI()

def is_admin(subject, resource_type, item_id, method, db, cache):
    if 'admin' not in subject.scopes:
        raise auth.DENY

@app.get("/test")
# function get_user_auth returns User's object
def test(
    user = Depends(auth.Policy(
        get_user_auth, 
        'test', 
        'get', 
        is_admin
    ))
):
    return {"message":"Good"}


@app.get("/test_with_db")
# function get_database returns Databases connection
def test_db(
    user = Depends(auth.Policy(
        get_user_auth, 
        'test', 
        'get', 
        is_admin, 
        database_callback=get_database
    ))
):
    return {"message":"Good"}

@app.get("/test_with_cache")
# function get_cache returns Redis connection
def test_cache(
    user = Depends(auth.Policy(
        get_user_auth, 
        'test', 
        'get', 
        is_admin, 
        cache_callback=get_cache
    ))
):
    return {"message":"Good"}

Developed by DenVilk

Project details

Release history Release notifications | RSS feed

0.7

Aug 8, 2023

0.6

Jul 31, 2023

0.5

Jun 29, 2023

This version

0.4

Jun 29, 2023

0.3

Jun 29, 2023

0.2 yanked

Apr 15, 2023

Reason this release was yanked:

Uninstallable

0.1

Apr 9, 2023

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

dauth-0.4.tar.gz (2.4 kB view hashes)

Uploaded Jun 29, 2023 Source

Hashes for dauth-0.4.tar.gz

Hashes for dauth-0.4.tar.gz
Algorithm	Hash digest
SHA256	`23a8ba71a97a8762539f31f38554e169a9e0d9163c3e8566d4e1170f425c9e58`
MD5	`8587beb9bd5f49d6d4f7ee4273aabad6`
BLAKE2b-256	`f22011ba76a744d867ab37a72c7ef645b79b668d57ad4325e2c3a5472ae8a577`