wsgiauth0

Auth0 middleware for multiple client configurations

Project description

https://gitlab.com/dialogue/wsgiauth0/badges/master/build.svg

https://gitlab.com/dialogue/wsgiauth0/badges/master/coverage.svg?job=Run%20py.test

This is an Auth0 middleware for multiple client configurations.

It adds 4 keys to environ mapping:

JWT_CLAIMS: The decoded claims dict or None if any error occurred. Example:

{
    'iss': 'issuer',
    'sub': 'auth0|user_id',
    'aud': 'https://example.com,
    'exp': 1234567890,
    'iat': 1134567890,
}

JWT_ERROR: A mapping with keys code and description or None if no error occurred, Example:

{
    'code': 'invalid_header',
    'description': 'Authorization header must be "Bearer token".',
}

JWT_CLIENT: A mapping with the client info used if any info were successfully deduced from json web token received:
```
{
    'id': 'NieY4eekoo3aed2fe9ei',
    'audience': 'https://example.com',
    'secret': 'shei6eehuF2ui9OphahW',
}
```
REMOTE_USER: The decoded subject from JWT_CLAIMS or None if any error occurred.

Usage

Configure your wsgi pipeline in paste deploy ini file:

[filter:wsgiauth0]
use = egg:wsgiauth0#middleware
clients_config_file = %(here)s/auth0_clients_config.yml

[pipeline:main]
pipeline =
    wsgiauth0
    myapp

[app:myapp]
use = egg:wsgiapp#main

[server:main]
use = egg:waitress#main
host = 0.0.0.0
port = 6543

It expects a clients_config_file key pointing to auth0 client configuration yaml file.

Here is an example of a yaml configuration file.

Client 1:
    id: oZ0ahm4Thoh1Oghiqu4oe9qu
    audience: oZ0ahm4Thoh1Oghiqu4oe9qu
    secret:
        value: noh4feibaighikeeD0inah9Rei3nei6yeenoa7uar2Dah2yaeKioph8Jux8ahte
        type: base64_url_encoded

Client 2:
    id: Aen1XobahDoh7queing3eaS0@clients
    audience: https://example.com/
    secret:
        value: |
            -----BEGIN CERTIFICATE REQUEST-----
            MIIBZjCB0AIBADANMQswCQYDVQQGEwJDQTCBnzANBgkqhkiG9w0BAQEFAAOBjQAw
            gYkCgYEAx2LwsUexPKQ/0GIHqugXZtIGZxSOovO754KWn3ZWBbDvm/wuh+QfmMj8
            ZTxnxRymHjSNJ04nCMcqtzl3VDwapMkM433CnyZjoJjA/fRwLRjUepLAMbmoqkOG
            k1BKNAyidyko7DBnkMayzJRfmnCwFy1hsuikh6oFSinU7MP3LBsCAwEAAaAaMBgG
            CSqGSIb3DQEJBzELEwljaGFsbGVuZ2UwDQYJKoZIhvcNAQELBQADgYEAP819zy3q
            1gh5z5FLeFanc3TpdlcGHCQxcTMC/x9iyMpbSd2XkKLrZ02Is1Y8Ox/XeT8zNjOg
            /nulPg6YrIsywpKFR4orMvuUUMZ8uT8UVNj1pnatmXy9ikjdGtBXeU+EKkMZ4q6a
            OrG8qyB4o/WETphyxfneazWt3jrLHkKBvXA=
            -----END CERTIFICATE REQUEST-----
        type: certiticate

Project details

Release history Release notifications | RSS feed

0.0.19

Jan 25, 2018

0.0.18

Nov 14, 2017

0.0.17

Aug 28, 2017

0.0.16

Aug 11, 2017

0.0.15

Jul 24, 2017

0.0.14

Apr 28, 2017

0.0.13

Apr 2, 2017

0.0.12

Mar 31, 2017

0.0.11

Mar 30, 2017

0.0.10

Dec 16, 2016

0.0.9

Dec 16, 2016

0.0.8

Dec 15, 2016

This version

0.0.7

Nov 18, 2016

0.0.6

Nov 17, 2016

0.0.5

Nov 17, 2016

0.0.4

Nov 17, 2016

0.0.3

Nov 17, 2016

0.0.2

Nov 17, 2016

0.0.1

Nov 17, 2016

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

wsgiauth0-0.0.7.tar.gz (4.8 kB view details)

Uploaded Nov 18, 2016 Source

File details

Details for the file wsgiauth0-0.0.7.tar.gz.

File metadata

Download URL: wsgiauth0-0.0.7.tar.gz
Upload date: Nov 18, 2016
Size: 4.8 kB
Tags: Source
Uploaded using Trusted Publishing? No

File hashes

Hashes for wsgiauth0-0.0.7.tar.gz
Algorithm	Hash digest
SHA256	`cc69f6b9f85faafb893b3eaf389b9b6d01234ecfb4913429c06e92aa65b613f8`
MD5	`2d82786d8de3b498b706c7e379e0711e`
BLAKE2b-256	`6a2063d39486ad2f5576d7990ff966cdb7002bc96bd0da8e9ab4c8e0598eed4e`