Oceana API library to manage JWT token in Flask Restx applications
Project description
oceana_jwt_auth
Oceana API library to add authorization in Flask Restx applications using JWT tokens.
Setup
Install latest version
pip install oceana_jwt_auth
Usage
Code is provided in examples directory.
Create Flask application and JWTExtension:
from oceana_jwt_auth import JWTExtension, auth_guard, info
# App is available globally
app = Flask(__name__)
# Create namespace
ns_test = Namespace("Test", description="Test API", path="/v1")
@ns_test.route("/reader", methods=["GET"])
class TestReader(Resource):
@auth_guard(secured=True)
def get(self):
info("Get endpoint reached")
return jsonify({"status": "OK", "code": 200})
@ns_test.route("/writer", methods=["GET"])
class TestWriter(Resource):
@auth_guard(secured=True)
def get(self):
info("Get endpoint reached")
return jsonify({"status": "OK", "code": 200})
bp = Blueprint("test", __name__)
api = Api(
app=bp,
title="Test API",
version="1.0",
description="Test API",
)
# Add namespace
api.add_namespace(ns_test)
# Register blueprint
app.register_blueprint(bp)
# Create authorization extension from app and api objects
JWTExtension(app=app, api=api)
Create a decorator (also in examples directory):
from oceana_jwt_auth import JWTExtension, ConfigSqlite, info, \
handle_exceptions, verify_jwt
from oceana_jwt_auth.exceptions import ClientAuthenticationError
# App is available globally
app = Flask(__name__)
app.config["REGISTER_AUTH"] = True
# Create namespace
ns_test = Namespace("Test", description="Test API", path="/v1")
def required_last_minutes(minutes=10):
def wrapper(route_function):
@wraps(route_function)
def decorated_function(*args, **kwargs):
# Verify jwt
jwt_data, jwt_header = verify_jwt(optional=False)
# Get roles from jwt
iat = jwt_data.get("iat")
iat_dt = datetime.fromtimestamp(iat)
created = jwt_data.get("created")
info(f"Token created time: {created}")
now = datetime.now()
if (now - iat_dt).total_seconds() < int(minutes)*60:
return route_function(*args, **kwargs)
else:
raise ClientAuthenticationError(f"Invalid JWT: created before {minutes} minutes")
return decorated_function
return wrapper
@ns_test.route("/minutes", methods=["GET"])
class TestApp(Resource):
@handle_exceptions()
@required_last_minutes(minutes=2) # User defined decorator
def get(self):
info("Get endpoint reached")
return jsonify({"status": "OK", "code": 200})
bp = Blueprint("test", __name__)
api = Api(
app=bp,
title="Test API",
version="1.0",
description="Test API",
)
# Add namespace
api.add_namespace(ns_test)
# Register blueprint
app.register_blueprint(bp)
# Create authorization extension from app and api objects
jwt = JWTExtension(app=app, api=api, config_object=ConfigSqlite)
Environment
Properties in environment variables:
# Database provider and issuer of JWT tokens
OCEANA_API_PROVIDER=OceanaAPI
# Security properties, it enables global security
OCEANA_API_SECURED=true
# Oceana API Secret key
OCEANA_API_SECRET_KEY=secret_key
# Generate a JWT with valid within 1 hour by now (in minutes)
OCEANA_API_TOKEN_MAX_MINUTES=60
Packaging
Build package
# Using build package
python -m build
Run tests
# All tests
pytest -q -rP
# Partial tests
pytest tests/unit/test_application.py -v -rP
pytest tests/functional/test_validation.py -v -rP
pytest tests/unit/test_common.py -v -rP
# With coverage
coverage run -m pytest tests -v
coverage html
# Reinstall avoiding reinstalling dependencies
pip install --upgrade --no-deps --force-reinstall dist\oceana_jwt_auth-0.0.1-py3-none-any.whl
# Reinstall with dependencies
pip install dist\oceana_jwt_auth-0.0.1-py3-none-any.whl --force-reinstall
Check style guide enforcement
flake8 . --count --exit-zero --max-complexity=10 --max-line-length=127 --statistics
Tox
# Command to test only one python version
tox -e py39
Uninstall
pip uninstall oceana_jwt_auth
Dependencies
| Library | Version |
|---|---|
| build | 1.2.1 |
| setuptools | 67.8.0 |
| wheel | 0.38.4 |
| requests | 2.29.0 |
| flake8 | 4.0.1 |
| python-decouple | 3.8 |
| flask | 3.1.0 |
| flask-restx | 1.3.0 |
| typing-extensions | 4.12.2 |
| pyjwt | 2.8.0 |
| SQLAlchemy | 2.0.36 |
| Flask-SQLAlchemy | 3.1.1 |
| cryptography | 41.0.7 |
Tests requirements
| Library | Version |
|---|---|
| requests-mock | 1.21.1 |
| pytest | 7.4.0 |
| pytest-env | 1.1.5 |
| coverage | 6.4.4 |
| flake8 | 4.0.1 |
| tox | 4.23.2 |
Releases
Version 0.0.1:
- First version
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
oceana_jwt_auth-0.0.1.tar.gz
(26.0 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file oceana_jwt_auth-0.0.1.tar.gz.
File metadata
- Download URL: oceana_jwt_auth-0.0.1.tar.gz
- Upload date:
- Size: 26.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.9.21
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
83162c61b7e1bf6cd83690e0e32dc7a1dd0c45898d6e3e3d92d2851704bae33d
|
|
| MD5 |
b9e96f4f77714322755cb55d217d28f6
|
|
| BLAKE2b-256 |
58cd4fa7023d2356eb40c79667e2215803caafee5e367a1b592dea63ccb3a935
|
File details
Details for the file oceana_jwt_auth-0.0.1-py3-none-any.whl.
File metadata
- Download URL: oceana_jwt_auth-0.0.1-py3-none-any.whl
- Upload date:
- Size: 30.0 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.9.21
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
c67242bc50116a5a574e18f5e1815b8669c8709da97f34628171a49df5e766bc
|
|
| MD5 |
c771cd23d37d71a4675978026c105a1f
|
|
| BLAKE2b-256 |
15f297a9422b61928a7ae5f0eb90c545f08801dbca4c3f0763bb205d7685c0cf
|
