Simple JWT token flask service security library.
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Project description
[
jwt_authenticator
jwt_authenticator is a simply python library for adding JWT token authentication/authorization in flask web sites/services. It controls access either by checking for just a validated token, or optionally, a single role claim from the token. Access is controlled by decorating the endpoint functions with an attribute.
Installation
Use the package manager pip to install jwt_authenticator.
pip install jwt-authenticator
If using RS256, you must also:
pip install cryptography
Usage
In the main application initialization area
from flask import Flask
from jwt_authenticator import AuthenticationHandler
APP = Flask(__name__)
AuthenticationHandler.load_configuration(APP)
In the endpoints
from jwt_authenticator import AuthenticationHandler, AuthError
@api.route('/<name>', methods=['GET'])
@AuthenticationHandler.requires_auth("admin")
def get_one(name):
return f"Hello {name}"
@api.route('/<name>', methods=['GET'])
@AuthenticationHandler.requires_auth()
def get_one(name):
return f"Hello {name}"
Configuration
jwt_authenticator requires two configuration values to work. These can be specified either in the normal Flask application configuration or as environment variables. Environment variable values will override application configuration values, when
AuthenticationHanlder.load_configuration(app)
is called.
APP.config (i.e. flask application configuration)
- SECRET - the key used to sign the JWT token. Option if JWKS_URL specified.
- AUDIENCE - the audience claim used in the JWT token
- JKWS_URL - [OPTIONAL] OIDC key discovery URL
- GROUPS_CLAIM - [OPTIONAL] which claim has the list of groups. Defaults to "groups"
Environment Variables
- JWT_SECRET - will override SECRET
- JWT_AUDIENCE - will override AUDIENCE
- JWKS_URL - will override JWKS_URL
- GROUPS_CLAIM - will override GROUPS_CLAIM
Contributing
Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.
Please make sure to update tests as appropriate.
Building
- Requires 'make'
make init
make test
make package
License
Project details
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file jwt_authenticator-1.11.0.tar.gz.
File metadata
- Download URL: jwt_authenticator-1.11.0.tar.gz
- Upload date:
- Size: 39.6 kB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/5.1.1 CPython/3.12.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 083d6759844248f0bfd26e03fdd78722c9f7105f4fd4e679a60b99fd01971585 |
|
| MD5 | 2ae5008c28311191a50e3af731767cf6 |
|
| BLAKE2b-256 | b701100497f1b8a1d883f6dc74ba8832b53ef4f6a56d54f5da0b10b427d3ae93 |
File details
Details for the file jwt_authenticator-1.11.0-py3-none-any.whl.
File metadata
- Download URL: jwt_authenticator-1.11.0-py3-none-any.whl
- Upload date:
- Size: 6.0 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/5.1.1 CPython/3.12.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | fc19b5bb33515a61e1194bd6db8df8473ce58cb2f642dc5e674717878009319c |
|
| MD5 | b14986f4db9cf3291c8b1abdd2421ae3 |
|
| BLAKE2b-256 | 8f808e6e839e3a9d7dffc5932040593ce57e0c1739d0a4c31128ad6b61787a0f |
