Skip to content

pvarki/python-multikeyjwt

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

40 Commits

.github/workflows

.github/workflows

 
 

docker

docker

 
 

src/multikeyjwt

src/multikeyjwt

 
 

tests

tests

 
 

.bumpversion.cfg

.bumpversion.cfg

 
 

.dockerignore

.dockerignore

 
 

.gitignore

.gitignore

 
 

.gitlab-ci.yml

.gitlab-ci.yml

 
 

.pre-commit-config.yaml

.pre-commit-config.yaml

 
 

Dockerfile

Dockerfile

 
 

Dockerfile_alpine

Dockerfile_alpine

 
 

Dockerfile_debian

Dockerfile_debian

 
 

LICENSE

LICENSE

 
 

README.rst

README.rst

 
 

make_keypair.sh

make_keypair.sh

 
 

poetry.lock

poetry.lock

 
 

pyproject.toml

pyproject.toml

 
 

tox.ini

tox.ini

 
 

Repository files navigation

multikeyjwt

Verify JWTs with multiple public keys, FastAPI middleware for auth

NOTE: Due to encode/starlette#2446 .env file is no longer supported for configuration.

Creating signing keys

multikeyjwt genkey ./jwtsign.key

see --help for more info

Docker

For more controlled deployments and to get rid of "works on my computer" -syndrome, we always make sure our software works under docker.

It's also a quick way to get started with a standard development environment.

SSH agent forwarding

We need buildkit:

export DOCKER_BUILDKIT=1

And also the exact way for forwarding agent to running instance is different on OSX:

export DOCKER_SSHAGENT="-v /run/host-services/ssh-auth.sock:/run/host-services/ssh-auth.sock -e SSH_AUTH_SOCK=/run/host-services/ssh-auth.sock"

and Linux:

export DOCKER_SSHAGENT="-v $SSH_AUTH_SOCK:$SSH_AUTH_SOCK -e SSH_AUTH_SOCK"

Creating a development container

Build image, create container and start it:

docker build --ssh default --target devel_shell -t multikeyjwt:devel_shell .
docker create --name multikeyjwt_devel -v `pwd`":/app" -it `echo $DOCKER_SSHAGENT` multikeyjwt:devel_shell
docker start -i multikeyjwt_devel

pre-commit considerations

If working in Docker instead of native env you need to run the pre-commit checks in docker too:

docker exec -i multikeyjwt_devel /bin/bash -c "pre-commit install"
docker exec -i multikeyjwt_devel /bin/bash -c "pre-commit run --all-files"

You need to have the container running, see above. Or alternatively use the docker run syntax but using the running container is faster:

docker run --rm -it -v `pwd`":/app" multikeyjwt:devel_shell -c "pre-commit run --all-files"

Test suite

You can use the devel shell to run py.test when doing development, for CI use the "tox" target in the Dockerfile:

docker build --ssh default --target tox -t multikeyjwt:tox .
docker run --rm -it -v `pwd`":/app" `echo $DOCKER_SSHAGENT` multikeyjwt:tox

Production docker

There's a "production" target as well for running the application, remember to change that architecture tag to arm64 if building on ARM:

docker build --ssh default --target production -t multikeyjwt:latest .
docker run -it --name multikeyjwt multikeyjwt:amd64-latest

Development

TLDR:

  • Create and activate a Python 3.8 virtualenv (assuming virtualenvwrapper):

    mkvirtualenv -p `which python3.8` my_virtualenv

  • change to a branch:

    git checkout -b my_branch
  • install Poetry: https://python-poetry.org/docs/#installation

  • Install project deps and pre-commit hooks:

    poetry install
pre-commit install
pre-commit run --all-files
  • Ready to go.

Remember to activate your virtualenv whenever working on the repo, this is needed because pylint and mypy pre-commit hooks use the "system" python for now (because reasons).

About

Verify JWTs with multiple public keys, FastAPI middleware for auth

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

16 watching

Forks

0 forks
Report repository

Releases

3 tags

Packages

No packages published

Contributors 2

  •  
  •  

Languages