aio-alf

Release 0.4.0

OAuth Client For aiohttp

Homepage PyPI Python

Keywords
oauth, client, client_credentials, aiohttp, asyncio, oauth2-server, python, python36
License
MIT
Install
pip install aio-alf==0.4.0

Documentation

aio-alf build-status

aiohttp OAuth 2 Client

aio-alf is a OAuth 2 Client base on the aiohttp's AsyncHTTPClient

Features

  • Automatic token retrieving and renewing
  • Token expiration control
  • Automatic retry on status 401 (UNAUTHORIZED)

Usage

Initialize the client and use it as a AsyncHTTPClient object.

from aioalf.client import Client
from aioalf.httpclient import HTTPRequest

client = Client(
    token_endpoint='http://example.com/token',
    client_id='client-id',
    client_secret='secret')

resource_uri = 'http://example.com/resource'

response = await client.request(
    'POST',
    resource_uri,
    data='{"name": "alf"}',
    headers={'Content-Type': 'application/json'}
)

Alternatively one can pass directly a string to the fetch client

# ...
response = await client.request(
    'POST',
    'http://example.com/resource',
    data='{"name": "alf"}',
    headers={'Content-Type': 'application/json'}
)

Implicit Flow

Support for OAuth2 implict flow to enable it, call use_implicit_flow with a TokenStorage object and a port range, it defaults to the range (32000, 32009).

Example:

await use_implicit_flow(TokenStorage(), (30000, 30009))

async with Client(token_endpoint='https://token.endpoint',
                  client_id='glBQ3nYU/8/kaVi/bIgXGA==',
                  client_secret='') as client:
    response = await client.request('GET', 'http://example.com/resource')
    text = await response.text()
    print(response.status)

The library has a really simple in memory token storage, you should subclass and overwrite its methods if you need to persist the token for a longer period.

How it works?

Before any request the client tries to retrieve a token on the endpoint, expecting a JSON response with the access_token and expires_in keys.

The client keeps the token until it is expired, according to the expires_in value.

After getting the token, the request is issued with a Bearer authorization header:

GET /resource/1 HTTP/1.1
Host: example.com
Authorization: Bearer token

If the request fails with a 401 (UNAUTHORIZED) status, a new token is retrieved from the endpoint and the request is retried. This happens only once, if it fails again the error response is returned.

Troubleshooting

In case of an error retrieving a token, the error response will be returned, the real request won't happen.

Related projects

This project tries to be an adaptation to aiohttp of alf

Stats

Dependencies
0
Dependent packages
0
Dependent repositories
0
Total releases
9
Latest release
First release
Stars
7
Forks
3
Watchers
13
Contributors
2
Repository size
29.3 KB
SourceRank
8

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

0.4.0
0.3.3
0.3.2
0.3.1
0.3.0
0.2.3
0.2.2
0.1.5
0.1.3

Contributors

Pedro Kiefer Silas Coker


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2023-11-29 23:00:41 UTC

Login to resync this project