New Research: Supply Chain Attack on Axios Pulls Malicious Dependency from npm.Details → →
Authlib
Artifacts are distributable versions of a package. It typically includes the source code and metadata
Advanced tools
Authlib - pypi Package Compare versions
| Metadata-Version: 2.4 | ||
| Name: Authlib | ||
| Version: 1.6.3 | ||
| Version: 1.6.4 | ||
| Summary: The ultimate Python library in building OAuth and OpenID Connect servers and clients. | ||
@@ -33,5 +33,147 @@ Author-email: Hsiaoming Yang <me@lepture.com> | ||
| Requires-Python: >=3.9 | ||
| Description-Content-Type: text/x-rst | ||
| Description-Content-Type: text/markdown | ||
| License-File: LICENSE | ||
| Requires-Dist: cryptography | ||
| Dynamic: license-file | ||
| <div align="center"> | ||
| <picture> | ||
| <source media="(prefers-color-scheme: dark)" srcset="docs/_static/dark-logo.svg" /> | ||
| <img alt="Authlib" src="docs/_static/light-logo.svg" height="68" /> | ||
| </picture> | ||
| [](https://github.com/authlib/authlib/actions) | ||
| [](https://pypi.org/project/authlib) | ||
| [](https://anaconda.org/conda-forge/authlib) | ||
| [](https://pepy.tech/projects/authlib) | ||
| [](https://codecov.io/gh/authlib/authlib) | ||
| [](https://sonarcloud.io/summary/new_code?id=authlib_authlib) | ||
| </div> | ||
| The ultimate Python library in building OAuth and OpenID Connect servers. | ||
| JWS, JWK, JWA, JWT are included. | ||
| Authlib is compatible with Python3.9+. | ||
| ## Migrations | ||
| Authlib will deprecate `authlib.jose` module, please read: | ||
| - [Migrating from `authlib.jose` to `joserfc`](https://jose.authlib.org/en/dev/migrations/authlib/) | ||
| ## Sponsors | ||
| <table> | ||
| <tr> | ||
| <td><img align="middle" width="48" src="https://cdn.auth0.com/website/website/favicons/auth0-favicon.svg"></td> | ||
| <td>If you want to quickly add secure token-based authentication to Python projects, feel free to check Auth0's Python SDK and free plan at <a href="https://auth0.com/overview?utm_source=GHsponsor&utm_medium=GHsponsor&utm_campaign=authlib&utm_content=auth">auth0.com/overview</a>.</td> | ||
| </tr> | ||
| <tr> | ||
| <td><img align="middle" width="48" src="https://typlog.com/assets/icon-white.svg"></td> | ||
| <td>A blogging and podcast hosting platform with minimal design but powerful features. Host your blog and Podcast with <a href="https://typlog.com/">Typlog.com</a>. | ||
| </td> | ||
| </tr> | ||
| </table> | ||
| [**Fund Authlib to access additional features**](https://docs.authlib.org/en/latest/community/funding.html) | ||
| ## Features | ||
| Generic, spec-compliant implementation to build clients and providers: | ||
| - [The OAuth 1.0 Protocol](https://docs.authlib.org/en/latest/basic/oauth1.html) | ||
| - [RFC5849: The OAuth 1.0 Protocol](https://docs.authlib.org/en/latest/specs/rfc5849.html) | ||
| - [The OAuth 2.0 Authorization Framework](https://docs.authlib.org/en/latest/basic/oauth2.html) | ||
| - [RFC6749: The OAuth 2.0 Authorization Framework](https://docs.authlib.org/en/latest/specs/rfc6749.html) | ||
| - [RFC6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage](https://docs.authlib.org/en/latest/specs/rfc6750.html) | ||
| - [RFC7009: OAuth 2.0 Token Revocation](https://docs.authlib.org/en/latest/specs/rfc7009.html) | ||
| - [RFC7523: JWT Profile for OAuth 2.0 Client Authentication and Authorization Grants](https://docs.authlib.org/en/latest/specs/rfc7523.html) | ||
| - [RFC7591: OAuth 2.0 Dynamic Client Registration Protocol](https://docs.authlib.org/en/latest/specs/rfc7591.html) | ||
| - [RFC7592: OAuth 2.0 Dynamic Client Registration Management Protocol](https://docs.authlib.org/en/latest/specs/rfc7592.html) | ||
| - [RFC7636: Proof Key for Code Exchange by OAuth Public Clients](https://docs.authlib.org/en/latest/specs/rfc7636.html) | ||
| - [RFC7662: OAuth 2.0 Token Introspection](https://docs.authlib.org/en/latest/specs/rfc7662.html) | ||
| - [RFC8414: OAuth 2.0 Authorization Server Metadata](https://docs.authlib.org/en/latest/specs/rfc8414.html) | ||
| - [RFC8628: OAuth 2.0 Device Authorization Grant](https://docs.authlib.org/en/latest/specs/rfc8628.html) | ||
| - [RFC9068: JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens](https://docs.authlib.org/en/latest/specs/rfc9068.html) | ||
| - [RFC9101: The OAuth 2.0 Authorization Framework: JWT-Secured Authorization Request (JAR)](https://docs.authlib.org/en/latest/specs/rfc9101.html) | ||
| - [RFC9207: OAuth 2.0 Authorization Server Issuer Identification](https://docs.authlib.org/en/latest/specs/rfc9207.html) | ||
| - [Javascript Object Signing and Encryption](https://docs.authlib.org/en/latest/jose/index.html) | ||
| - [RFC7515: JSON Web Signature](https://docs.authlib.org/en/latest/jose/jws.html) | ||
| - [RFC7516: JSON Web Encryption](https://docs.authlib.org/en/latest/jose/jwe.html) | ||
| - [RFC7517: JSON Web Key](https://docs.authlib.org/en/latest/jose/jwk.html) | ||
| - [RFC7518: JSON Web Algorithms](https://docs.authlib.org/en/latest/specs/rfc7518.html) | ||
| - [RFC7519: JSON Web Token](https://docs.authlib.org/en/latest/jose/jwt.html) | ||
| - [RFC7638: JSON Web Key (JWK) Thumbprint](https://docs.authlib.org/en/latest/specs/rfc7638.html) | ||
| - [ ] RFC7797: JSON Web Signature (JWS) Unencoded Payload Option | ||
| - [RFC8037: ECDH in JWS and JWE](https://docs.authlib.org/en/latest/specs/rfc8037.html) | ||
| - [ ] draft-madden-jose-ecdh-1pu-04: Public Key Authenticated Encryption for JOSE: ECDH-1PU | ||
| - [OpenID Connect 1.0](https://docs.authlib.org/en/latest/specs/oidc.html) | ||
| - [x] OpenID Connect Core 1.0 | ||
| - [x] OpenID Connect Discovery 1.0 | ||
| - [x] OpenID Connect Dynamic Client Registration 1.0 | ||
| Connect third party OAuth providers with Authlib built-in client integrations: | ||
| - Requests | ||
| - [OAuth1Session](https://docs.authlib.org/en/latest/client/requests.html#requests-oauth-1-0) | ||
| - [OAuth2Session](https://docs.authlib.org/en/latest/client/requests.html#requests-oauth-2-0) | ||
| - [OpenID Connect](https://docs.authlib.org/en/latest/client/requests.html#requests-openid-connect) | ||
| - [AssertionSession](https://docs.authlib.org/en/latest/client/requests.html#requests-service-account) | ||
| - HTTPX | ||
| - [AsyncOAuth1Client](https://docs.authlib.org/en/latest/client/httpx.html#httpx-oauth-1-0) | ||
| - [AsyncOAuth2Client](https://docs.authlib.org/en/latest/client/httpx.html#httpx-oauth-2-0) | ||
| - [OpenID Connect](https://docs.authlib.org/en/latest/client/httpx.html#httpx-oauth-2-0) | ||
| - [AsyncAssertionClient](https://docs.authlib.org/en/latest/client/httpx.html#async-service-account) | ||
| - [Flask OAuth Client](https://docs.authlib.org/en/latest/client/flask.html) | ||
| - [Django OAuth Client](https://docs.authlib.org/en/latest/client/django.html) | ||
| - [Starlette OAuth Client](https://docs.authlib.org/en/latest/client/starlette.html) | ||
| - [FastAPI OAuth Client](https://docs.authlib.org/en/latest/client/fastapi.html) | ||
| Build your own OAuth 1.0, OAuth 2.0, and OpenID Connect providers: | ||
| - Flask | ||
| - [Flask OAuth 1.0 Provider](https://docs.authlib.org/en/latest/flask/1/) | ||
| - [Flask OAuth 2.0 Provider](https://docs.authlib.org/en/latest/flask/2/) | ||
| - [Flask OpenID Connect 1.0 Provider](https://docs.authlib.org/en/latest/flask/2/openid-connect.html) | ||
| - Django | ||
| - [Django OAuth 1.0 Provider](https://docs.authlib.org/en/latest/django/1/) | ||
| - [Django OAuth 2.0 Provider](https://docs.authlib.org/en/latest/django/2/) | ||
| - [Django OpenID Connect 1.0 Provider](https://docs.authlib.org/en/latest/django/2/openid-connect.html) | ||
| ## Useful Links | ||
| 1. Homepage: <https://authlib.org/>. | ||
| 2. Documentation: <https://docs.authlib.org/>. | ||
| 3. Purchase Commercial License: <https://authlib.org/plans>. | ||
| 4. Blog: <https://blog.authlib.org/>. | ||
| 5. Twitter: <https://twitter.com/authlib>. | ||
| 6. StackOverflow: <https://stackoverflow.com/questions/tagged/authlib>. | ||
| 7. Other Repositories: <https://github.com/authlib>. | ||
| 8. Subscribe Tidelift: [https://tidelift.com/subscription/pkg/pypi-authlib](https://tidelift.com/subscription/pkg/pypi-authlib?utm_source=pypi-authlib&utm_medium=referral&utm_campaign=links). | ||
| ## Security Reporting | ||
| If you found security bugs, please do not send a public issue or patch. | ||
| You can send me email at <me@lepture.com>. Attachment with patch is welcome. | ||
| My PGP Key fingerprint is: | ||
| ``` | ||
| 72F8 E895 A70C EBDF 4F2A DFE0 7E55 E3E0 118B 2B4C | ||
| ``` | ||
| Or, you can use the [Tidelift security contact](https://tidelift.com/security). | ||
| Tidelift will coordinate the fix and disclosure. | ||
| ## License | ||
| Authlib offers two licenses: | ||
| 1. BSD LICENSE | ||
| 2. COMMERCIAL-LICENSE | ||
| Any project, open or closed source, can use the BSD license. | ||
| If your company needs commercial support, you can purchase a commercial license at | ||
| [Authlib Plans](https://authlib.org/plans). You can find more information at | ||
| <https://authlib.org/support>. |
| name = "Authlib" | ||
| version = "1.6.3" | ||
| version = "1.6.4" | ||
| author = "Hsiaoming Yang <me@lepture.com>" | ||
@@ -4,0 +4,0 @@ homepage = "https://authlib.org" |
@@ -27,7 +27,11 @@ from django.conf import settings | ||
| def __init__(self, client_model, token_model): | ||
| self.config = getattr(settings, "AUTHLIB_OAUTH2_PROVIDER", {}) | ||
| super().__init__() | ||
| self.client_model = client_model | ||
| self.token_model = token_model | ||
| self.load_config(getattr(settings, "AUTHLIB_OAUTH2_PROVIDER", {})) | ||
| def load_config(self, config): | ||
| self.config = config | ||
| scopes_supported = self.config.get("scopes_supported") | ||
| super().__init__(scopes_supported=scopes_supported) | ||
| self.scopes_supported = scopes_supported | ||
| # add default token generator | ||
@@ -34,0 +38,0 @@ self.register_token_generator("default", self.create_bearer_token_generator()) |
@@ -56,8 +56,10 @@ from flask import Response | ||
| self._save_token = save_token | ||
| self.load_config(app.config) | ||
| def load_config(self, config): | ||
| self.register_token_generator( | ||
| "default", self.create_bearer_token_generator(app.config) | ||
| "default", self.create_bearer_token_generator(config) | ||
| ) | ||
| self.scopes_supported = app.config.get("OAUTH2_SCOPES_SUPPORTED") | ||
| self._error_uris = app.config.get("OAUTH2_ERROR_URIS") | ||
| self.scopes_supported = config.get("OAUTH2_SCOPES_SUPPORTED") | ||
| self._error_uris = config.get("OAUTH2_ERROR_URIS") | ||
@@ -64,0 +66,0 @@ def query_client(self, client_id): |
@@ -66,11 +66,18 @@ from starlette.datastructures import URL | ||
| async def authorize_access_token(self, request, **kwargs): | ||
| error = request.query_params.get("error") | ||
| if error: | ||
| description = request.query_params.get("error_description") | ||
| raise OAuthError(error=error, description=description) | ||
| if request.scope.get("method", "GET") == "GET": | ||
| error = request.query_params.get("error") | ||
| if error: | ||
| description = request.query_params.get("error_description") | ||
| raise OAuthError(error=error, description=description) | ||
| params = { | ||
| "code": request.query_params.get("code"), | ||
| "state": request.query_params.get("state"), | ||
| } | ||
| params = { | ||
| "code": request.query_params.get("code"), | ||
| "state": request.query_params.get("state"), | ||
| } | ||
| else: | ||
| async with request.form() as form: | ||
| params = { | ||
| "code": form.get("code"), | ||
| "state": form.get("state"), | ||
| } | ||
@@ -77,0 +84,0 @@ if self.framework.cache: |
@@ -36,2 +36,10 @@ from authlib.common.errors import AuthlibBaseError | ||
| class InvalidCritHeaderParameterNameError(JoseError): | ||
| error = "invalid_crit_header_parameter_name" | ||
| def __init__(self, name): | ||
| description = f"Invalid Header Parameter Name: {name}" | ||
| super().__init__(description=description) | ||
| class InvalidEncryptionAlgorithmForECDH1PUWithKeyWrappingError(JoseError): | ||
@@ -38,0 +46,0 @@ error = "invalid_encryption_algorithm_for_ECDH_1PU_with_key_wrapping" |
@@ -7,2 +7,3 @@ from authlib.common.encoding import json_b64encode | ||
| from authlib.jose.errors import DecodeError | ||
| from authlib.jose.errors import InvalidCritHeaderParameterNameError | ||
| from authlib.jose.errors import InvalidHeaderParameterNameError | ||
@@ -68,2 +69,3 @@ from authlib.jose.errors import MissingAlgorithmError | ||
| self._validate_private_headers(protected) | ||
| self._validate_crit_headers(protected) | ||
| algorithm, key = self._prepare_algorithm_key(protected, payload, key) | ||
@@ -100,2 +102,3 @@ | ||
| protected = _extract_header(protected_segment) | ||
| self._validate_crit_headers(protected) | ||
| jws_header = JWSHeader(protected, None) | ||
@@ -138,2 +141,7 @@ | ||
| self._validate_private_headers(jws_header) | ||
| # RFC 7515 §4.1.11: 'crit' MUST be integrity-protected. | ||
| # Reject if present in unprotected header, and validate only | ||
| # against the protected header parameters. | ||
| self._reject_unprotected_crit(jws_header.header) | ||
| self._validate_crit_headers(jws_header.protected) | ||
| _alg, _key = self._prepare_algorithm_key(jws_header, payload, key) | ||
@@ -279,2 +287,24 @@ | ||
| def _reject_unprotected_crit(self, unprotected_header): | ||
| """Reject 'crit' when found in the unprotected header (RFC 7515 §4.1.11).""" | ||
| if unprotected_header and "crit" in unprotected_header: | ||
| raise InvalidHeaderParameterNameError("crit") | ||
| def _validate_crit_headers(self, header): | ||
| if "crit" in header: | ||
| crit_headers = header["crit"] | ||
| # Type enforcement for robustness and predictable errors | ||
| if not isinstance(crit_headers, list) or not all( | ||
| isinstance(x, str) for x in crit_headers | ||
| ): | ||
| raise InvalidHeaderParameterNameError("crit") | ||
| names = self.REGISTERED_HEADER_PARAMETER_NAMES.copy() | ||
| if self._private_headers: | ||
| names = names.union(self._private_headers) | ||
| for k in crit_headers: | ||
| if k not in names: | ||
| raise InvalidCritHeaderParameterNameError(k) | ||
| elif k not in header: | ||
| raise InvalidCritHeaderParameterNameError(k) | ||
| def _validate_json_jws(self, payload_segment, payload, header_obj, key): | ||
@@ -294,3 +324,10 @@ protected_segment = header_obj.get("protected") | ||
| raise DecodeError('Invalid "header" value') | ||
| # RFC 7515 §4.1.11: 'crit' MUST be integrity-protected. If present in | ||
| # the unprotected header object, reject the JWS. | ||
| self._reject_unprotected_crit(header) | ||
| # Enforce must-understand semantics for names listed in protected | ||
| # 'crit'. This will also ensure each listed name is present in the | ||
| # protected header. | ||
| self._validate_crit_headers(protected) | ||
| jws_header = JWSHeader(protected, header) | ||
@@ -297,0 +334,0 @@ algorithm, key = self._prepare_algorithm_key(jws_header, payload, key) |
@@ -53,6 +53,6 @@ class JWSAlgorithm: | ||
| obj = {} | ||
| if header: | ||
| obj.update(header) | ||
| if protected: | ||
| obj.update(protected) | ||
| if header: | ||
| obj.update(header) | ||
| super().__init__(obj) | ||
@@ -59,0 +59,0 @@ self.protected = protected |
@@ -120,6 +120,6 @@ import os | ||
| obj = {} | ||
| if unprotected: | ||
| obj.update(unprotected) | ||
| if protected: | ||
| obj.update(protected) | ||
| if unprotected: | ||
| obj.update(unprotected) | ||
| super().__init__(obj) | ||
@@ -149,4 +149,2 @@ self.protected = protected if protected else {} | ||
| obj = {} | ||
| if protected: | ||
| obj.update(protected) | ||
| if unprotected: | ||
@@ -156,2 +154,4 @@ obj.update(unprotected) | ||
| obj.update(header) | ||
| if protected: | ||
| obj.update(protected) | ||
| super().__init__(obj) | ||
@@ -158,0 +158,0 @@ self.protected = protected if protected else {} |
@@ -254,4 +254,5 @@ from authlib.common.errors import ContinueIteration | ||
| """ | ||
| request = self.create_oauth2_request(request) | ||
| try: | ||
| request = self.create_oauth2_request(request) | ||
| request.user = end_user | ||
@@ -258,0 +259,0 @@ |
+144
-2
| Metadata-Version: 2.4 | ||
| Name: Authlib | ||
| Version: 1.6.3 | ||
| Version: 1.6.4 | ||
| Summary: The ultimate Python library in building OAuth and OpenID Connect servers and clients. | ||
@@ -33,5 +33,147 @@ Author-email: Hsiaoming Yang <me@lepture.com> | ||
| Requires-Python: >=3.9 | ||
| Description-Content-Type: text/x-rst | ||
| Description-Content-Type: text/markdown | ||
| License-File: LICENSE | ||
| Requires-Dist: cryptography | ||
| Dynamic: license-file | ||
| <div align="center"> | ||
| <picture> | ||
| <source media="(prefers-color-scheme: dark)" srcset="docs/_static/dark-logo.svg" /> | ||
| <img alt="Authlib" src="docs/_static/light-logo.svg" height="68" /> | ||
| </picture> | ||
| [](https://github.com/authlib/authlib/actions) | ||
| [](https://pypi.org/project/authlib) | ||
| [](https://anaconda.org/conda-forge/authlib) | ||
| [](https://pepy.tech/projects/authlib) | ||
| [](https://codecov.io/gh/authlib/authlib) | ||
| [](https://sonarcloud.io/summary/new_code?id=authlib_authlib) | ||
| </div> | ||
| The ultimate Python library in building OAuth and OpenID Connect servers. | ||
| JWS, JWK, JWA, JWT are included. | ||
| Authlib is compatible with Python3.9+. | ||
| ## Migrations | ||
| Authlib will deprecate `authlib.jose` module, please read: | ||
| - [Migrating from `authlib.jose` to `joserfc`](https://jose.authlib.org/en/dev/migrations/authlib/) | ||
| ## Sponsors | ||
| <table> | ||
| <tr> | ||
| <td><img align="middle" width="48" src="https://cdn.auth0.com/website/website/favicons/auth0-favicon.svg"></td> | ||
| <td>If you want to quickly add secure token-based authentication to Python projects, feel free to check Auth0's Python SDK and free plan at <a href="https://auth0.com/overview?utm_source=GHsponsor&utm_medium=GHsponsor&utm_campaign=authlib&utm_content=auth">auth0.com/overview</a>.</td> | ||
| </tr> | ||
| <tr> | ||
| <td><img align="middle" width="48" src="https://typlog.com/assets/icon-white.svg"></td> | ||
| <td>A blogging and podcast hosting platform with minimal design but powerful features. Host your blog and Podcast with <a href="https://typlog.com/">Typlog.com</a>. | ||
| </td> | ||
| </tr> | ||
| </table> | ||
| [**Fund Authlib to access additional features**](https://docs.authlib.org/en/latest/community/funding.html) | ||
| ## Features | ||
| Generic, spec-compliant implementation to build clients and providers: | ||
| - [The OAuth 1.0 Protocol](https://docs.authlib.org/en/latest/basic/oauth1.html) | ||
| - [RFC5849: The OAuth 1.0 Protocol](https://docs.authlib.org/en/latest/specs/rfc5849.html) | ||
| - [The OAuth 2.0 Authorization Framework](https://docs.authlib.org/en/latest/basic/oauth2.html) | ||
| - [RFC6749: The OAuth 2.0 Authorization Framework](https://docs.authlib.org/en/latest/specs/rfc6749.html) | ||
| - [RFC6750: The OAuth 2.0 Authorization Framework: Bearer Token Usage](https://docs.authlib.org/en/latest/specs/rfc6750.html) | ||
| - [RFC7009: OAuth 2.0 Token Revocation](https://docs.authlib.org/en/latest/specs/rfc7009.html) | ||
| - [RFC7523: JWT Profile for OAuth 2.0 Client Authentication and Authorization Grants](https://docs.authlib.org/en/latest/specs/rfc7523.html) | ||
| - [RFC7591: OAuth 2.0 Dynamic Client Registration Protocol](https://docs.authlib.org/en/latest/specs/rfc7591.html) | ||
| - [RFC7592: OAuth 2.0 Dynamic Client Registration Management Protocol](https://docs.authlib.org/en/latest/specs/rfc7592.html) | ||
| - [RFC7636: Proof Key for Code Exchange by OAuth Public Clients](https://docs.authlib.org/en/latest/specs/rfc7636.html) | ||
| - [RFC7662: OAuth 2.0 Token Introspection](https://docs.authlib.org/en/latest/specs/rfc7662.html) | ||
| - [RFC8414: OAuth 2.0 Authorization Server Metadata](https://docs.authlib.org/en/latest/specs/rfc8414.html) | ||
| - [RFC8628: OAuth 2.0 Device Authorization Grant](https://docs.authlib.org/en/latest/specs/rfc8628.html) | ||
| - [RFC9068: JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens](https://docs.authlib.org/en/latest/specs/rfc9068.html) | ||
| - [RFC9101: The OAuth 2.0 Authorization Framework: JWT-Secured Authorization Request (JAR)](https://docs.authlib.org/en/latest/specs/rfc9101.html) | ||
| - [RFC9207: OAuth 2.0 Authorization Server Issuer Identification](https://docs.authlib.org/en/latest/specs/rfc9207.html) | ||
| - [Javascript Object Signing and Encryption](https://docs.authlib.org/en/latest/jose/index.html) | ||
| - [RFC7515: JSON Web Signature](https://docs.authlib.org/en/latest/jose/jws.html) | ||
| - [RFC7516: JSON Web Encryption](https://docs.authlib.org/en/latest/jose/jwe.html) | ||
| - [RFC7517: JSON Web Key](https://docs.authlib.org/en/latest/jose/jwk.html) | ||
| - [RFC7518: JSON Web Algorithms](https://docs.authlib.org/en/latest/specs/rfc7518.html) | ||
| - [RFC7519: JSON Web Token](https://docs.authlib.org/en/latest/jose/jwt.html) | ||
| - [RFC7638: JSON Web Key (JWK) Thumbprint](https://docs.authlib.org/en/latest/specs/rfc7638.html) | ||
| - [ ] RFC7797: JSON Web Signature (JWS) Unencoded Payload Option | ||
| - [RFC8037: ECDH in JWS and JWE](https://docs.authlib.org/en/latest/specs/rfc8037.html) | ||
| - [ ] draft-madden-jose-ecdh-1pu-04: Public Key Authenticated Encryption for JOSE: ECDH-1PU | ||
| - [OpenID Connect 1.0](https://docs.authlib.org/en/latest/specs/oidc.html) | ||
| - [x] OpenID Connect Core 1.0 | ||
| - [x] OpenID Connect Discovery 1.0 | ||
| - [x] OpenID Connect Dynamic Client Registration 1.0 | ||
| Connect third party OAuth providers with Authlib built-in client integrations: | ||
| - Requests | ||
| - [OAuth1Session](https://docs.authlib.org/en/latest/client/requests.html#requests-oauth-1-0) | ||
| - [OAuth2Session](https://docs.authlib.org/en/latest/client/requests.html#requests-oauth-2-0) | ||
| - [OpenID Connect](https://docs.authlib.org/en/latest/client/requests.html#requests-openid-connect) | ||
| - [AssertionSession](https://docs.authlib.org/en/latest/client/requests.html#requests-service-account) | ||
| - HTTPX | ||
| - [AsyncOAuth1Client](https://docs.authlib.org/en/latest/client/httpx.html#httpx-oauth-1-0) | ||
| - [AsyncOAuth2Client](https://docs.authlib.org/en/latest/client/httpx.html#httpx-oauth-2-0) | ||
| - [OpenID Connect](https://docs.authlib.org/en/latest/client/httpx.html#httpx-oauth-2-0) | ||
| - [AsyncAssertionClient](https://docs.authlib.org/en/latest/client/httpx.html#async-service-account) | ||
| - [Flask OAuth Client](https://docs.authlib.org/en/latest/client/flask.html) | ||
| - [Django OAuth Client](https://docs.authlib.org/en/latest/client/django.html) | ||
| - [Starlette OAuth Client](https://docs.authlib.org/en/latest/client/starlette.html) | ||
| - [FastAPI OAuth Client](https://docs.authlib.org/en/latest/client/fastapi.html) | ||
| Build your own OAuth 1.0, OAuth 2.0, and OpenID Connect providers: | ||
| - Flask | ||
| - [Flask OAuth 1.0 Provider](https://docs.authlib.org/en/latest/flask/1/) | ||
| - [Flask OAuth 2.0 Provider](https://docs.authlib.org/en/latest/flask/2/) | ||
| - [Flask OpenID Connect 1.0 Provider](https://docs.authlib.org/en/latest/flask/2/openid-connect.html) | ||
| - Django | ||
| - [Django OAuth 1.0 Provider](https://docs.authlib.org/en/latest/django/1/) | ||
| - [Django OAuth 2.0 Provider](https://docs.authlib.org/en/latest/django/2/) | ||
| - [Django OpenID Connect 1.0 Provider](https://docs.authlib.org/en/latest/django/2/openid-connect.html) | ||
| ## Useful Links | ||
| 1. Homepage: <https://authlib.org/>. | ||
| 2. Documentation: <https://docs.authlib.org/>. | ||
| 3. Purchase Commercial License: <https://authlib.org/plans>. | ||
| 4. Blog: <https://blog.authlib.org/>. | ||
| 5. Twitter: <https://twitter.com/authlib>. | ||
| 6. StackOverflow: <https://stackoverflow.com/questions/tagged/authlib>. | ||
| 7. Other Repositories: <https://github.com/authlib>. | ||
| 8. Subscribe Tidelift: [https://tidelift.com/subscription/pkg/pypi-authlib](https://tidelift.com/subscription/pkg/pypi-authlib?utm_source=pypi-authlib&utm_medium=referral&utm_campaign=links). | ||
| ## Security Reporting | ||
| If you found security bugs, please do not send a public issue or patch. | ||
| You can send me email at <me@lepture.com>. Attachment with patch is welcome. | ||
| My PGP Key fingerprint is: | ||
| ``` | ||
| 72F8 E895 A70C EBDF 4F2A DFE0 7E55 E3E0 118B 2B4C | ||
| ``` | ||
| Or, you can use the [Tidelift security contact](https://tidelift.com/security). | ||
| Tidelift will coordinate the fix and disclosure. | ||
| ## License | ||
| Authlib offers two licenses: | ||
| 1. BSD LICENSE | ||
| 2. COMMERCIAL-LICENSE | ||
| Any project, open or closed source, can use the BSD license. | ||
| If your company needs commercial support, you can purchase a commercial license at | ||
| [Authlib Plans](https://authlib.org/plans). You can find more information at | ||
| <https://authlib.org/support>. |
+2
-2
@@ -15,3 +15,3 @@ [build-system] | ||
| dynamic = ["version"] | ||
| readme = "README.rst" | ||
| readme = "README.md" | ||
| classifiers = [ | ||
@@ -66,3 +66,3 @@ "Development Status :: 5 - Production/Stable", | ||
| "requests", | ||
| "starlette", | ||
| "starlette[full]", | ||
| # there is an incompatibility with asgiref, pypy and coverage, | ||
@@ -69,0 +69,0 @@ # see https://github.com/django/asgiref/issues/393 for details |
Alert delta unavailable
Currently unable to show alert delta for PyPI packages.
Improved metrics
- Total package byte prevSize
757360
2.58%- Lines of code
16392
0.32%