Lightweight HTTP authentication via environment variables

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for FlavioAmurrioCS from gravatar.com FlavioAmurrioCS

Unverified details

These details have not been verified by PyPI
Meta
Classifiers
Report project as malware

Project description

env-http-auth

PyPI - Version PyPI - Python Version

Lightweight HTTP authentication via environment variables for httpx, requests, and raw HTTP clients.

Features

  • Zero dependencies by default (stdlib only)
  • Universal: Works with requests, httpx, and any HTTP client
  • Multiple auth sources: Environment variables, netrc, keyring, config files
  • Per-host authentication with suffix patterns
  • Type safe: Full type hints for better development experience

Table of Contents

Installation

pip install env-http-auth

Quick Start

import os
from env_http_auth import get_auth

# Set environment variable
os.environ["HTTP_AUTH_TOKEN_example_com"] = "my-token"

# Get auth dict for URL
auth = get_auth("https://example.com/path")
# Returns: {'Authorization': 'Bearer my-token'}

Environment Variables

Environment variables are the primary way to configure authentication. Hostnames are normalized (lowercase, dots become underscores).

Variable Naming

Priority Variable Example Value Output
1 HTTP_AUTH_TOKEN_example_com mytoken Bearer mytoken
2 HTTP_AUTH_TOKEN__example_com mytoken Bearer mytoken (suffix)
3 HTTP_AUTH_HEADER_example_com Bearer token Bearer token
4 HTTP_AUTH_BASIC_example_com user:pass Basic dXNlcjpwYXNz
5 HTTP_AUTH_TOKEN token Bearer token
6 HTTP_AUTH_HEADER Bearer token Bearer token
7 HTTP_AUTH Custom creds Custom creds

Notes

  • Periods (.) in hostnames become underscores (_) in env var names
    • example.comHTTP_AUTH_TOKEN_example_com
    • artifactory.company.comHTTP_AUTH_TOKEN_artifactory_company_com
  • Matching is case-insensitive
  • Use config file for hosts with many periods

Suffix Matching

Double underscore (__) indicates suffix matching:

export HTTP_AUTH_TOKEN__example_com=my-token
# Matches: example.com, sub.example.com, api.example.com

Scheme Specifier

Override the auth scheme per host:

export HTTP_AUTH_SCHEME_example_com=bearer
export HTTP_AUTH_TOKEN_example_com=my-token
# Output: Bearer my-token

export HTTP_AUTH_SCHEME_example_com=basic
export HTTP_AUTH_TOKEN_example_com=user:pass
# Output: Basic dXNlcjpwYXNz

Usage Examples

Basic usage

from env_http_auth import get_auth, get_auth_header

# Get full auth dict
auth = get_auth("https://example.com/path")
# {'Authorization': 'Bearer my-token'}

# Get just the header value
header = get_auth_header("https://example.com/path")
# 'Bearer my-token'

Using requests

from env_http_auth import HTTPEnvAuth
import requests

# Set environment variable
# HTTP_AUTH_TOKEN_example_com=my-token

# Use with requests
response = requests.get(
    "https://example.com/api/data",
    auth=HTTPEnvAuth()
)

Using httpx

from env_http_auth import HTTPEnvAuth
import httpx

# Set environment variable
# HTTP_AUTH_TOKEN_example_com=my-token

# Use with httpx
client = httpx.Client(auth=HTTPEnvAuth())
response = client.get("https://example.com/api/data")

AuthResolver class

For more control over authentication sources:

from env_http_auth import AuthResolver

# Use only specific sources
resolver = AuthResolver(sources={"env", "netrc"})

# Query by URL or hostname
auth = resolver.for_url("https://example.com/path")
auth = resolver.for_hostname("example.com")

# Custom source order
resolver = AuthResolver(sources={"config", "env", "keyring"})

Priority Chain

When resolving authentication, sources are tried in this order:

  1. Exact host match - HTTP_AUTH_TOKEN_example_com
  2. Suffix match - HTTP_AUTH_TOKEN__example_com (double underscore)
  3. Global env vars - HTTP_AUTH_TOKEN
  4. Config file - ~/.env-http-auth.ini
  5. netrc - ~/.netrc
  6. keyring - System keyring

Configuration Sources

Environment Variables

Primary source. Supports per-host and global variables. See Environment Variables for details.

netrc

Falls back to ~/.netrc for Basic authentication:

machine example.com
login admin
password secret123

System Keyring

Stores credentials in the system keyring:

import keyring

# Store token
keyring.set_password("example.com", "token", "my-secret")

# Store Basic auth
keyring.set_password("example.com", "username", "admin")
keyring.set_password("example.com", "password", "secret")

Config File

INI format at ~/.env-http-auth.ini:

[example.com]
token = my-token
scheme = bearer

[other.company.com]
basic_user = admin
basic_pass = secret
scheme = basic

CLI

Get authentication headers from the command line:

# Basic usage
$ export HTTP_AUTH_TOKEN_example_com=my-token
$ env-http-auth https://example.com
Authorization: Bearer my-token

# Header only (value only)
$ env-http-auth --header-only https://example.com
Bearer my-token

# No auth found
$ env-http-auth https://unknown.com
No authentication found for https://unknown.com

CLI Options

env-http-auth [-h] [--header-only] url

Get HTTP authentication header for a URL

positional arguments:
  url                  URL to get authentication header for

options:
  -h, --help           show this help message and exit
  --header-only        Output only the header value

Contributing

Contributions are welcome! Please feel free to submit a Pull Request.

License

env-http-auth is distributed under the terms of the MIT license.

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for FlavioAmurrioCS from gravatar.com FlavioAmurrioCS

Unverified details

These details have not been verified by PyPI
Meta
Classifiers

Release history Release notifications | RSS feed

0.0.2

This version

0.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

env_http_auth-0.0.1.tar.gz (25.5 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

env_http_auth-0.0.1-py3-none-any.whl (12.6 kB view details)

Uploaded Python 3

File details

Details for the file env_http_auth-0.0.1.tar.gz.

File metadata

  • Download URL: env_http_auth-0.0.1.tar.gz
  • Upload date:
  • Size: 25.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for env_http_auth-0.0.1.tar.gz
Algorithm Hash digest
SHA256 975c76a3fbaacb45dffbc0a3b29c31166230b5723fad02bbbe5b3c9009216a97
MD5 83b22c424694907a165a4034fcff2129
BLAKE2b-256 0ad1dda9272c523253fcc29fdad1b0d21fd4a7a32ad34867a6c27ec8e2e51a54

See more details on using hashes here.

Provenance

The following attestation bundles were made for env_http_auth-0.0.1.tar.gz:

Publisher: main.yaml on FlavioAmurrioCS/env-http-auth

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file env_http_auth-0.0.1-py3-none-any.whl.

File metadata

  • Download URL: env_http_auth-0.0.1-py3-none-any.whl
  • Upload date:
  • Size: 12.6 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for env_http_auth-0.0.1-py3-none-any.whl
Algorithm Hash digest
SHA256 4b2341e633d71fc0734a6669397987c1f472417e09ea728e3c6fe3f0b0dcd7e2
MD5 61f292a7148028d3f618186d6ec988fe
BLAKE2b-256 6b9336aa384da42157a27c6d87f179ea4c24b23327849b0ed843eb67f1fbf621

See more details on using hashes here.

Provenance

The following attestation bundles were made for env_http_auth-0.0.1-py3-none-any.whl:

Publisher: main.yaml on FlavioAmurrioCS/env-http-auth

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page