Lightweight client SDK for consuming Signet credentials

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for pylonpeng from gravatar.com pylonpeng

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT License (MIT)
  • Tags auth , credentials , sdk , signet
  • Requires: Python >=3.9
  • Provides-Extra: dev
Classifiers
Report project as malware

Project description

signet-auth-sdk

Lightweight Python client SDK for consuming Signet credentials.

Install

pip install signet-auth-sdk

Requires Python >= 3.9.

Quick start

from signet_auth_sdk import SignetClient

client = SignetClient()

# Get HTTP headers for an authenticated request
headers = client.get_headers("my-jira")
response = requests.get("https://jira.example.com/rest/api/2/search", headers=headers)

Watching for changes

from signet_auth_sdk import SignetClient

client = SignetClient()

def on_change(provider_id: str, headers: dict[str, str]):
    print(f"Credentials updated for {provider_id}")

client.on_change(on_change)
client.watch()

# Later:
client.close()

Or use as a context manager:

with SignetClient() as client:
    headers = client.get_headers("my-jira")

API reference

SignetClient(credentials_dir=None)

Parameter Type Default Description
credentials_dir str | Path | None ~/.signet/credentials Path to credentials directory

client.get_headers(provider_id) -> dict[str, str]

Returns HTTP headers ready to use with requests, httpx, etc. Raises CredentialNotFoundError if the provider has no stored credential.

client.get_credential(provider_id) -> Credential | None

Returns the raw credential object, or None if not found.

client.get_local_storage(provider_id) -> dict[str, str]

Returns extracted localStorage values (e.g. Slack's xoxc token). Empty dict if not found.

client.list_providers() -> list[ProviderInfo]

Lists all providers with stored credentials.

client.on_change(callback)

Register a callback for credential changes. Called with (provider_id, headers).

client.on_error(callback)

Register a callback for watcher errors. Called with (error,).

client.watch()

Start polling the credentials directory for changes.

client.close()

Stop watching and clean up resources.

format_headers(credential) -> dict[str, str]

Standalone function to convert a Credential into HTTP headers.

extract_local_storage(credential) -> dict[str, str]

Standalone function to extract localStorage values from a credential.

Return values by credential type

get_headers(provider_id) -- returns dict[str, str]

Credential Type Example Return Value
cookie {"Cookie": "sid=abc123; csrf=xyz789", "x-csrf-token": "tok", "origin": "https://..."}
bearer {"Authorization": "Bearer eyJhbG...", "x-csrf-token": "tok"}
api-key {"Authorization": "Bearer ghp_test123"} or {"X-API-Key": "key123"}
basic {"Authorization": "Basic YWRtaW46czNjcmV0"}

For cookie and bearer types, xHeaders (captured during browser authentication, e.g. CSRF tokens, origin headers) are merged into the result. The primary header (Cookie or Authorization) always takes precedence over xHeaders with the same name.

get_credential(provider_id) -- returns Optional[Credential]

Returns the full credential dataclass, discriminated by the type field. Returns None if not found.

CookieCredential:

CookieCredential(
    type="cookie",
    cookies=[Cookie(name="sid", value="abc123", domain=".example.com", path="/", expires=1735689600, httpOnly=True, secure=True, sameSite="Lax")],
    obtainedAt="2025-01-01T00:00:00Z",
    xHeaders={"x-csrf-token": "tok123", "origin": "https://example.com"},  # default: {}
    localStorage={"token": "xoxc-123-456"},                                 # default: {}
)

BearerCredential:

BearerCredential(
    type="bearer",
    accessToken="eyJhbGciOiJSUzI1NiIs...",
    refreshToken="dGhpcyBpcyBhIHJlZnJlc2g...",   # optional
    expiresAt="2025-01-02T00:00:00Z",              # optional
    scopes=["read", "write"],                       # optional
    tokenEndpoint="https://auth.example.com/token", # optional
    xHeaders={"x-csrf-token": "tok"},               # default: {}
    localStorage={"token": "xoxc-123"},             # default: {}
)

ApiKeyCredential:

ApiKeyCredential(
    type="api-key",
    key="ghp_xxxxxxxxxxxxxxxxxxxx",
    headerName="Authorization",      # configurable header name
    headerPrefix="Bearer",           # optional prefix before the key
)

BasicCredential:

BasicCredential(
    type="basic",
    username="admin",
    password="s3cret",
)

get_local_storage(provider_id) -- returns dict[str, str]

Returns extracted browser localStorage values. Only cookie and bearer credential types can carry localStorage; api-key and basic always return {}. Returns {} if the provider is not found.

# Example: Slack stores an xoxc token in localStorage alongside cookies
ls = client.get_local_storage("my-slack")
# {"token": "xoxc-123-456-789"}

Credential types

Type Headers produced
cookie Cookie: name=value; ... + any xHeaders
bearer Authorization: Bearer <token> + any xHeaders
api-key <headerName>: [prefix] <key>
basic Authorization: Basic <base64>

License

MIT

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for pylonpeng from gravatar.com pylonpeng

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT License (MIT)
  • Tags auth , credentials , sdk , signet
  • Requires: Python >=3.9
  • Provides-Extra: dev
Classifiers

Release history Release notifications | RSS feed

This version

0.1.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

signet_auth_sdk-0.1.1.tar.gz (10.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

signet_auth_sdk-0.1.1-py3-none-any.whl (10.0 kB view details)

Uploaded Python 3

File details

Details for the file signet_auth_sdk-0.1.1.tar.gz.

File metadata

  • Download URL: signet_auth_sdk-0.1.1.tar.gz
  • Upload date:
  • Size: 10.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for signet_auth_sdk-0.1.1.tar.gz
Algorithm Hash digest
SHA256 f820db3e32fd155ab1f1d7f85e6a81868cf3ddfdd1a050f0997ddf1d30cc99dc
MD5 b66a5d3e853368440d22c4f9ad9c6031
BLAKE2b-256 97f8fa725a4d04562724e53b2e2ec93faa22065ea1aaf332c47e04bcd3c682dd

See more details on using hashes here.

Provenance

The following attestation bundles were made for signet_auth_sdk-0.1.1.tar.gz:

Publisher: release-py.yml on signet-auth/signet-sdk

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file signet_auth_sdk-0.1.1-py3-none-any.whl.

File metadata

  • Download URL: signet_auth_sdk-0.1.1-py3-none-any.whl
  • Upload date:
  • Size: 10.0 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for signet_auth_sdk-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 d8588d837df3cc17a83a8f5e4ec5f235162e611bb2dd80a26133ef03758cf567
MD5 828ad701d05f7c93b33e67c15d6c0aee
BLAKE2b-256 5456afb59fee20d7d3187647ebc40890710dc33f73dc389037615691ad8b0bf2

See more details on using hashes here.

Provenance

The following attestation bundles were made for signet_auth_sdk-0.1.1-py3-none-any.whl:

Publisher: release-py.yml on signet-auth/signet-sdk

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page