🔐 aioauth

aioauth is a spec-compliant OAuth 2.0 asynchronous Python module. aioauth works out-of-the-box with asynchronous server frameworks like FastAPI, Starlette, aiohttp, and others, as well as asynchronous database modules like Motor (MongoDB), aiopg (PostgreSQL), aiomysql (MySQL), or ORMs like Gino, sqlalchemy, or Tortoise.

The magic of aioauth is its plug-and-play methods that allow the use of virtually any server or database framework.

Installing

To install aioauth at the command line:

$ pip install aioauth

To install pre-releases:

$ pip install git+https://github.com/aliev/aioauth

Supported RFC

aioauth supports the following RFCs:

• RFC 6749 - The OAuth 2.0 Authorization Framework

• RFC 7662 - OAuth 2.0 Token Introspection

• RFC 7636 - Proof Key for Code Exchange by OAuth Public Clients

Pages

• Github Project

• Issues

• Discussion

---

Sections

Understanding

• Plug-and-Play

Using

• Configuration
• Server & Database

Examples

• Aiohttp
• FastAPI
  • Installing

Documentation

• Collections
  • HTTPHeaderDict
• Config
  • Settings
    • Settings.TOKEN_EXPIRES_IN
    • Settings.REFRESH_TOKEN_EXPIRES_IN
    • Settings.AUTHORIZATION_CODE_EXPIRES_IN
    • Settings.INSECURE_TRANSPORT
    • Settings.ERROR_URI
    • Settings.AVAILABLE
• Constances
  • default_headers
• Errors
  • MethodNotAllowedError
    • MethodNotAllowedError.description
    • MethodNotAllowedError.status_code
    • MethodNotAllowedError.error
  • InvalidRequestError
    • InvalidRequestError.error
  • InvalidClientError
    • InvalidClientError.error
    • InvalidClientError.status_code
  • InsecureTransportError
    • InsecureTransportError.description
    • InsecureTransportError.error
  • UnsupportedGrantTypeError
    • UnsupportedGrantTypeError.error
  • UnsupportedResponseTypeError
    • UnsupportedResponseTypeError.error
  • InvalidGrantError
    • InvalidGrantError.error
  • MismatchingStateError
    • MismatchingStateError.description
    • MismatchingStateError.error
  • UnauthorizedClientError
    • UnauthorizedClientError.error
  • InvalidScopeError
    • InvalidScopeError.error
  • ServerError
    • ServerError.error
  • TemporarilyUnavailableError
    • TemporarilyUnavailableError.error
  • InvalidRedirectURIError
    • InvalidRedirectURIError.error
  • UnsupportedTokenTypeError
    • UnsupportedTokenTypeError.error
• Grant Type
  • GrantTypeBase
    • GrantTypeBase.create_token_response()
    • GrantTypeBase.validate_request()
  • AuthorizationCodeGrantType
    • AuthorizationCodeGrantType.validate_request()
    • AuthorizationCodeGrantType.create_token_response()
  • PasswordGrantType
    • PasswordGrantType.validate_request()
  • RefreshTokenGrantType
    • RefreshTokenGrantType.create_token_response()
    • RefreshTokenGrantType.validate_request()
  • ClientCredentialsGrantType
    • ClientCredentialsGrantType.validate_request()
• Models
  • Client
    • Client.client_id
    • Client.client_secret
    • Client.grant_types
    • Client.response_types
    • Client.redirect_uris
    • Client.scope
    • Client.user
    • Client.check_redirect_uri()
    • Client.check_grant_type()
    • Client.check_response_type()
    • Client.get_allowed_scope()
    • Client.check_scope()
  • AuthorizationCode
    • AuthorizationCode.code
    • AuthorizationCode.client_id
    • AuthorizationCode.redirect_uri
    • AuthorizationCode.response_type
    • AuthorizationCode.scope
    • AuthorizationCode.auth_time
    • AuthorizationCode.expires_in
    • AuthorizationCode.code_challenge
    • AuthorizationCode.code_challenge_method
    • AuthorizationCode.nonce
    • AuthorizationCode.user
    • AuthorizationCode.check_code_challenge()
    • AuthorizationCode.is_expired
  • Token
    • Token.access_token
    • Token.refresh_token
    • Token.scope
    • Token.issued_at
    • Token.expires_in
    • Token.refresh_token_expires_in
    • Token.client_id
    • Token.token_type
    • Token.revoked
    • Token.user
    • Token.is_expired
    • Token.refresh_token_expired
• Requests
  • Query
    • Query.client_id
    • Query.redirect_uri
    • Query.response_type
    • Query.state
    • Query.scope
    • Query.nonce
    • Query.code_challenge_method
    • Query.code_challenge
    • Query.response_mode
  • Post
    • Post.grant_type
    • Post.client_id
    • Post.client_secret
    • Post.redirect_uri
    • Post.scope
    • Post.username
    • Post.password
    • Post.refresh_token
    • Post.code
    • Post.token
    • Post.token_type_hint
    • Post.code_verifier
  • BaseRequest
    • BaseRequest.method
    • BaseRequest.query
    • BaseRequest.post
    • BaseRequest.headers
    • BaseRequest.url
    • BaseRequest.user
    • BaseRequest.settings
  • Request
    • Request.query
    • Request.post
    • Request.user
• Response Type
  • ResponseTypeBase
    • ResponseTypeBase.validate_request()
  • ResponseTypeToken
    • ResponseTypeToken.create_authorization_response()
  • ResponseTypeAuthorizationCode
    • ResponseTypeAuthorizationCode.create_authorization_response()
  • ResponseTypeIdToken
    • ResponseTypeIdToken.validate_request()
    • ResponseTypeIdToken.create_authorization_response()
  • ResponseTypeNone
    • ResponseTypeNone.create_authorization_response()
• Responses
  • ErrorResponse
    • ErrorResponse.error
    • ErrorResponse.description
    • ErrorResponse.error_uri
  • AuthorizationCodeResponse
    • AuthorizationCodeResponse.code
    • AuthorizationCodeResponse.scope
  • NoneResponse
  • TokenResponse
    • TokenResponse.expires_in
    • TokenResponse.refresh_token_expires_in
    • TokenResponse.access_token
    • TokenResponse.refresh_token
    • TokenResponse.scope
    • TokenResponse.token_type
  • IdTokenResponse
    • IdTokenResponse.id_token
  • TokenActiveIntrospectionResponse
    • TokenActiveIntrospectionResponse.scope
    • TokenActiveIntrospectionResponse.client_id
    • TokenActiveIntrospectionResponse.token_type
    • TokenActiveIntrospectionResponse.expires_in
    • TokenActiveIntrospectionResponse.active
  • TokenInactiveIntrospectionResponse
    • TokenInactiveIntrospectionResponse.active
  • Response
    • Response.content
    • Response.status_code
    • Response.headers
• Server
  • AuthorizationServer
    • AuthorizationServer.response_types
    • AuthorizationServer.grant_types
    • AuthorizationServer.is_secure_transport()
    • AuthorizationServer.validate_request()
    • AuthorizationServer.create_token_introspection_response()
    • AuthorizationServer.get_client_credentials()
    • AuthorizationServer.create_token_response()
    • AuthorizationServer.create_authorization_response()
    • AuthorizationServer.revoke_token()
• Storage
  • BaseStorage
    • BaseStorage.create_token()
    • BaseStorage.get_token()
    • BaseStorage.create_authorization_code()
    • BaseStorage.get_id_token()
    • BaseStorage.get_client()
    • BaseStorage.authenticate()
    • BaseStorage.get_authorization_code()
    • BaseStorage.delete_authorization_code()
    • BaseStorage.revoke_token()
• Types
• Utils
  • get_authorization_scheme_param()
  • enforce_str()
  • enforce_list()
  • generate_token()
  • build_uri()
  • encode_auth_headers()
  • decode_auth_headers()
  • create_s256_code_challenge()
  • catch_errors_and_unavailability()

Indices and tables

• Index

• Module Index

• Search Page