Generate, Sign and verify JWTs using GCP KMS.
Project description
GCP-JWT
GCP-JWT is a library to create and sign tokens using the Google Cloud Platform's Key Management Service. It handles the signing and verification of the token.
Key Features
- Token Signage
- Signature Verification
- Expiry Verification
- Auto Rotating Asymmetric Key
- Batch Token Generation
- Compression Option
- Symmetrically Encrypted Layer
- Pretty API
GCP Roles Needed
To be able to use this library you'll need a GCP service account with at least the following roles:
- cloudkms.cryptoKeyVersions.list
- cloudkms.cryptoKeyVersions.useToSign
- cloudkms.cryptoKeyVersions.viewPublicKey
Why not using GCP integrated auth ?
Some projects require more flexibility, I've also personally came across a case where a company didn't want Google to manage the authentication process. Whether or not this should be used in production is outside the scope of this project.
Install
Using PIP :
pip install gcp-jwt
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
gcp-jwt-0.1.7.tar.gz
(4.1 kB
view hashes)
Built Distribution
gcp_jwt-0.1.7-py3-none-any.whl
(17.5 kB
view hashes)
