Security utilities plugin for Spakky framework

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Spakky from gravatar.com Spakky
Meta

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Author: Spakky
  • Requires: Python >=3.11
Report project as malware

Project description

Spakky Security

Security utilities plugin for Spakky Framework.

Installation

pip install spakky-security

Or install via Spakky extras:

pip install spakky[security]

Features

  • Password Hashing: Argon2, bcrypt, scrypt, PBKDF2
  • Symmetric Encryption: AES-CBC, AES-GCM
  • Asymmetric Encryption: RSA
  • JWT Tokens: Create, sign, verify, and parse JWT tokens
  • HMAC Signing: Secure message authentication
  • Key Generation: Cryptographically secure random keys

Usage

Password Hashing

from spakky_security.password import (
    Argon2PasswordEncoder,
    BcryptPasswordEncoder,
    ScryptPasswordEncoder,
    Pbkdf2PasswordEncoder,
)

# Argon2 (recommended)
encoder = Argon2PasswordEncoder(password="my_password")
hashed = encoder.encode()  # Returns formatted hash string

# Verify password
encoder_verify = Argon2PasswordEncoder(password_hash=hashed)
is_valid = encoder_verify.verify("my_password")

# bcrypt
bcrypt_encoder = BcryptPasswordEncoder(password="my_password")
hashed = bcrypt_encoder.encode()

# scrypt
scrypt_encoder = ScryptPasswordEncoder(password="my_password")
hashed = scrypt_encoder.encode()

# PBKDF2
pbkdf2_encoder = Pbkdf2PasswordEncoder(password="my_password")
hashed = pbkdf2_encoder.encode()

Symmetric Encryption (AES)

from spakky_security.cryptography import Aes, Gcm
from spakky_security.key import Key

# Generate a 256-bit key
key = Key(size=32)

# AES-CBC
aes = Aes(key)
encrypted = aes.encrypt("Hello, World!")
decrypted = aes.decrypt(encrypted)  # "Hello, World!"

# AES-GCM (authenticated encryption)
gcm = Gcm(key)
encrypted = gcm.encrypt("Hello, World!")
decrypted = gcm.decrypt(encrypted)  # "Hello, World!"

Asymmetric Encryption (RSA)

from spakky_security.cryptography import Rsa

# Generate RSA key pair
rsa = Rsa.generate(key_size=2048)

# Encrypt with public key
encrypted = rsa.encrypt("Secret message")

# Decrypt with private key
decrypted = rsa.decrypt(encrypted)  # "Secret message"

# Export keys
public_key_pem = rsa.public_key_pem
private_key_pem = rsa.private_key_pem

# Import from PEM
rsa_imported = Rsa(private_key_pem=private_key_pem)

JWT Tokens

from spakky_security.jwt import JWT
from spakky_security.hmac_signer import HMACType
from spakky_security.key import Key
from datetime import timedelta

# Create a JWT
jwt = JWT()
jwt.set_payload({"user_id": 123, "role": "admin"})
jwt.set_expiration(timedelta(hours=1))

# Sign the token
key = Key(size=32)
token_string = jwt.sign(key, HMACType.HS256)

# Parse and verify a token
parsed_jwt = JWT(token=token_string)
is_valid = parsed_jwt.verify(key)

# Access claims
user_id = parsed_jwt.payload.get("user_id")
is_expired = parsed_jwt.is_expired

HMAC Signing

from spakky_security.hmac_signer import HMAC, HMACType
from spakky_security.key import Key

key = Key(size=32)
hmac = HMAC(key, HMACType.HS256)

# Sign a message
signature = hmac.sign("message to sign")

# Verify signature
is_valid = hmac.verify("message to sign", signature)

Key Generation

from spakky_security.key import Key

# Generate random key
key = Key(size=32)  # 256-bit key

# Access key data
raw_bytes = key.binary
base64_encoded = key.b64
url_safe_base64 = key.b64_urlsafe
hex_encoded = key.hex

# Create key from existing data
key_from_bytes = Key(binary=existing_bytes)
key_from_base64 = Key(base64=encoded_string)

Components

Component Description
Argon2PasswordEncoder Argon2 password hashing (recommended)
BcryptPasswordEncoder bcrypt password hashing
ScryptPasswordEncoder scrypt password hashing
Pbkdf2PasswordEncoder PBKDF2 password hashing
Aes AES-CBC encryption/decryption
Gcm AES-GCM authenticated encryption
Rsa RSA asymmetric encryption
JWT JSON Web Token creation and validation
HMAC HMAC message signing and verification
Key Secure key generation and management

Security Best Practices

  1. Use Argon2 for passwords: It's the winner of the Password Hashing Competition
  2. Use AES-GCM for encryption: Provides both confidentiality and integrity
  3. Generate secure keys: Always use Key(size=N) for cryptographic keys
  4. Set JWT expiration: Always set an expiration time for tokens
  5. Store keys securely: Use environment variables or secret managers

License

MIT

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Spakky from gravatar.com Spakky
Meta

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Author: Spakky
  • Requires: Python >=3.11

Release history Release notifications | RSS feed

6.5.0

6.4.0

6.3.1

6.3.0

6.2.0

6.1.3

6.1.2

6.1.1

6.1.0

6.0.0

5.0.1

5.0.0

4.0.0

This version

3.4.0

3.3.3

3.3.2

3.3.1

3.3.0

3.1.5

3.1.4

3.1.3

3.1.2

3.1.1

3.1.0

3.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

spakky_security-3.4.0.tar.gz (12.4 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

spakky_security-3.4.0-py3-none-any.whl (22.1 kB view details)

Uploaded Python 3

File details

Details for the file spakky_security-3.4.0.tar.gz.

File metadata

  • Download URL: spakky_security-3.4.0.tar.gz
  • Upload date:
  • Size: 12.4 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for spakky_security-3.4.0.tar.gz
Algorithm Hash digest
SHA256 2a0c1d228c2bcc72c09ffeb65759a7bd0585b4bd24a23faffbe79a2c61e6fead
MD5 e43fcb1067bc8acd55069659b25753d0
BLAKE2b-256 5db9ef6bf9f29a292c7f5c723d57fbe36c27a8a3df7a22f83f02b8613b419e04

See more details on using hashes here.

Provenance

The following attestation bundles were made for spakky_security-3.4.0.tar.gz:

Publisher: release.yml on E5presso/spakky-framework

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file spakky_security-3.4.0-py3-none-any.whl.

File metadata

File hashes

Hashes for spakky_security-3.4.0-py3-none-any.whl
Algorithm Hash digest
SHA256 83a5318bf0bd50c0e49190e9586db3c83fc1745a24b0a0f894e75b1223bbeebe
MD5 204749a381e10d0186ce3dbafb61211b
BLAKE2b-256 e37435db77547fd911d208acb2ea1ea57652124f4dc1a397a4db2e88e4f6e099

See more details on using hashes here.

Provenance

The following attestation bundles were made for spakky_security-3.4.0-py3-none-any.whl:

Publisher: release.yml on E5presso/spakky-framework

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page