Apple OAuth 2.0 / OAuth 2.1 / OIDC 1.0 identity provider implementations for Swarmauri
Project description
Swarmauri Auth IDP Apple
Apple Sign-In OAuth 2.0, OAuth 2.1, and OIDC 1.0 flows packaged for the Swarmauri ecosystem.
Features
- PKCE-enabled authorization code flows with signed state payloads to prevent tampering.
- Automatic OpenID Connect discovery and JWKS verification for ID token integrity.
- Reusable async HTTP client with retry and jitter to tolerate transient Apple API issues.
- Typed, ComponentBase-derived classes that register with Swarmauri plugin discovery.
- Explicit app-client stubs that document unsupported Apple client credentials grants.
Installation
pip
pip install swarmauri_auth_idp_apple
uv (project)
uv add swarmauri_auth_idp_apple
uv (environment)
uv pip install swarmauri_auth_idp_apple
Usage
The login classes expose the same asynchronous interface as the core IOAuth*Login
contracts. Instantiate them with your Apple developer credentials, persist the state
returned by auth_url, and provide it back during the exchange step.
from pydantic import SecretBytes
from swarmauri_auth_idp_apple import AppleOAuth21Login
login = AppleOAuth21Login(
team_id="ABCD123456",
key_id="XYZ7890",
client_id="com.example.web",
private_key_pem=SecretBytes(b"""-----BEGIN PRIVATE KEY-----\n...\n-----END PRIVATE KEY-----\n"""),
redirect_uri="https://example.com/callback",
state_secret=SecretBytes(b"super-secret-state-key"),
)
# In your application, call `await login.auth_url()` to initiate the flow and
# `await login.exchange_and_identity(...)` inside an async context.
print(login.client_id)
Expected Workflow
- Call
auth_url()and redirect the user-agent to the returned URL. - Persist the
statefor later validation (cookie, session, encrypted store, etc.). - On the redirect back to your service, validate the returned
stateandcodeby callingexchange_and_identity()(orexchange()for the OIDC login). - Consume the normalized identity payload to provision sessions or tokens.
The package includes app-client classes which raise NotImplementedError to highlight
that Apple does not support generic client credential grants for Sign in with Apple.
Entry Points
The distribution registers the following entry points:
swarmauri.auth_idp:AppleOAuth20Loginswarmauri.auth_idp:AppleOAuth21Loginswarmauri.auth_idp:AppleOIDC10Loginswarmauri.auth_idp:AppleOAuth20AppClientswarmauri.auth_idp:AppleOAuth21AppClientswarmauri.auth_idp:AppleOIDC10AppClient
Contributing
To contribute to swarmauri-sdk, review the guidelines for contributing which cover development workflow, testing, and coding standards.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file swarmauri_auth_idp_apple-0.2.0.dev4.tar.gz.
File metadata
- Download URL: swarmauri_auth_idp_apple-0.2.0.dev4.tar.gz
- Upload date:
- Size: 9.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.10.12 {"installer":{"name":"uv","version":"0.10.12","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
c63616cd99eecb255cd9aa224ef2af19074a3b6bfc1b28ea34cb876b35949c2f
|
|
| MD5 |
ba307000c0600e3aa34a70088d3f0ca4
|
|
| BLAKE2b-256 |
53d0571e94d47a513e359c28f332b249e60b56094dfe83b0baf4a2d960f36785
|
File details
Details for the file swarmauri_auth_idp_apple-0.2.0.dev4-py3-none-any.whl.
File metadata
- Download URL: swarmauri_auth_idp_apple-0.2.0.dev4-py3-none-any.whl
- Upload date:
- Size: 15.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.10.12 {"installer":{"name":"uv","version":"0.10.12","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
b26353a4369fe01dbe1ab65ad2a7403c653eb3026fddf5444b4fadee65afcbdd
|
|
| MD5 |
64f09ef70466d00e3ceeb761eb45ae28
|
|
| BLAKE2b-256 |
2e5ac41cdfdf3575e9a8c48d42e122f86895dcfc7e2a637c63faf55afd7e8ecd
|