A FastAPI library for managing authentication, backed by PropelAuth

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for andrew-propelauth from gravatar.com andrew-propelauth

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Author: PropelAuth
  • Requires: Python >=3.9
Report project as malware

Project description

PropelAuth FastAPI SDK

A FastAPI library for managing authentication, backed by PropelAuth.

PropelAuth makes it easy to add authentication and authorization to your B2B/multi-tenant application.

Your frontend gets a beautiful, safe, and customizable login screen. Your backend gets easy authorization with just a few lines of code. You get an easy-to-use dashboard to config and manage everything.

Documentation

  • Full reference this library is here
  • Getting started guides for PropelAuth are here

Installation

pip install propelauth_fastapi

Initialize

init_auth performs a one-time initialization of the library. It will verify your api_key is correct and fetch the metadata needed to verify access tokens in require_user or optional_user.

from propelauth_fastapi import init_auth

auth = init_auth("YOUR_AUTH_URL", "YOUR_API_KEY")

Protect API Routes

Protecting an API route is as simple as adding a dependency to your route.

None of the dependencies make a external request to PropelAuth. They all are verified locally using the access token provided in the request, making it very fast.

require_user

A dependency that will verify the request was made by a valid user. If a valid access token is provided, it will return a User object. If not, the request is rejected with a 401 status code.

from fastapi import FastAPI, Depends
from propelauth_fastapi import init_auth, User

app = FastAPI()
auth = init_auth("AUTH_URL", "API_KEY")

@app.get("/")
async def root(current_user: User = Depends(auth.require_user)):
    return {"message": f"Hello {current_user.user_id}"}

optional_user

Similar to require_user, but will return None if no valid access token is provided.

from typing import Optional

from fastapi import FastAPI, Depends
from propelauth_fastapi import init_auth, User

app = FastAPI()
auth = init_auth("AUTH_URL", "API_KEY")

@app.get("/api/whoami_optional")
async def whoami_optional(current_user: Optional[User] = Depends(auth.optional_user)):
    if current_user:
        return {"user_id": current_user.user_id}
    return {}

Authorization / Organizations

You can also verify which organizations the user is in, and which roles and permissions they have in each organization all through the User or OrgMemberInfo objects.

Check Org Membership

Verify that the request was made by a valid user and that the user is a member of the specified organization. This can be done using the User object.

@app.get("/api/org/{org_id}")
async def org_membership(org_id: str, current_user: User = Depends(auth.require_user)):
    org = current_user.get_org(org_id)
    if org == None:
        raise HTTPException(status_code=403, detail="Forbidden")
    return f"You are in org {org.org_name}"

Check Org Membership and Role

Similar to checking org membership, but will also verify that the user has a specific Role in the organization. This can be done using either the User or OrgMemberInfo objects.

A user has a Role within an organization. By default, the available roles are Owner, Admin, or Member, but these can be configured. These roles are also hierarchical, so Owner > Admin > Member.

## Assuming a Role structure of Owner => Admin => Member

@app.get("/api/org/{org_id}")
def org_owner(org_id: str, current_user: User = Depends(auth.require_user)):
    org = current_user.get_org(org_id)
    if (org == None) or (org.user_is_role("Owner") == False):
        raise HTTPException(status_code=403, detail="Forbidden")
    return f"You are an Owner in org {org.org_name}"

Check Org Membership and Permission

Similar to checking org membership, but will also verify that the user has the specified permission in the organization. This can be done using either the User or OrgMemberInfo objects.

Permissions are arbitrary strings associated with a role. For example, can_view_billing, ProductA::CanCreate, and ReadOnly are all valid permissions. You can create these permissions in the PropelAuth dashboard.

@app.get("/api/org/{org_id}")
def org_billing(org_id: str, current_user: User = Depends(auth.require_user)):
    org = current_user.get_org(org_id)
    if (org == None) or (org.user_has_permission("can_view_billing") == False):
        raise HTTPException(status_code=403, detail="Forbidden")
    return Response(f"You can view billing information for org {org.org_name}")

Calling Backend APIs

You can also use the library to call the PropelAuth APIs directly, allowing you to fetch users, create orgs, and a lot more. See the API Reference for more information.

from propelauth_fastapi import init_auth

auth = init_auth("YOUR_AUTH_URL", "YOUR_API_KEY")

magic_link = auth.create_magic_link(email="test@example.com")

Questions?

Feel free to reach out at support@propelauth.com

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for andrew-propelauth from gravatar.com andrew-propelauth

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Author: PropelAuth
  • Requires: Python >=3.9

Release history Release notifications | RSS feed

This version

4.4.0

4.3.2

4.3.1

4.3.0

4.2.9

4.2.8

4.2.7

4.2.6

4.2.5

4.2.3

4.2.2

4.2.0

4.1.1

4.1.0

4.0.2

4.0.1

4.0.0 yanked

2.2.0

2.1.20

2.1.19

2.1.18

2.1.17

2.1.16

2.1.15

2.1.14

2.1.13

2.1.12

2.1.11

2.1.9

2.1.8

2.1.7

2.1.6

2.1.5

2.1.4

2.1.3

2.1.2

2.1.1

2.1.0

2.0.2

2.0.1

2.0.0

2.0.0b7 pre-release

2.0.0b1 pre-release

2.0.0b0 pre-release

1.1.4

1.1.3

1.1.2

1.1.1

1.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

propelauth_fastapi-4.4.0.tar.gz (65.6 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

propelauth_fastapi-4.4.0-py3-none-any.whl (9.2 kB view details)

Uploaded Python 3

File details

Details for the file propelauth_fastapi-4.4.0.tar.gz.

File metadata

  • Download URL: propelauth_fastapi-4.4.0.tar.gz
  • Upload date:
  • Size: 65.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.13

File hashes

Hashes for propelauth_fastapi-4.4.0.tar.gz
Algorithm Hash digest
SHA256 fbb64cd6f8ee9be110c30b1f59f46317d6a115d543c4e085915886703ffe2ff3
MD5 40e44bf3e4018de497f74cb7b03b3dac
BLAKE2b-256 59785a2e8c3a980af22e359a4b3762f0b5c07b210348ca92c77a9e8a86d79c8c

See more details on using hashes here.

Provenance

The following attestation bundles were made for propelauth_fastapi-4.4.0.tar.gz:

Publisher: publish.yml on PropelAuth/propelauth-fastapi

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file propelauth_fastapi-4.4.0-py3-none-any.whl.

File metadata

File hashes

Hashes for propelauth_fastapi-4.4.0-py3-none-any.whl
Algorithm Hash digest
SHA256 5fe039da1dd3c7027d991c61a9c8ca14bae2289bf10ae22d71f852b28b1dd0fc
MD5 0de5c00789a86ce10fe1c52a6fff07c3
BLAKE2b-256 c5c66ff1a4bda2b72737b67b3893d8e046eecc50a876e5576052823f67b3ba59

See more details on using hashes here.

Provenance

The following attestation bundles were made for propelauth_fastapi-4.4.0-py3-none-any.whl:

Publisher: publish.yml on PropelAuth/propelauth-fastapi

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page