AshGw/fastauth

RFC 6749 implementation for ASGI frameworks (prototype phase, still)

PythonMIT

Issues

Take CSRF seriously G fr
#107 opened 2 months ago
0
Raise `NotImplementedError` for all `@abstract` objects
#106 opened 3 months ago
0
Add one logger per module, keep it specific
#105 opened 3 months ago
0
Prefix cookies with `_Host` & `_Secure`
#104 opened 3 months ago
0
Check the `Origin` header along with the signed double submit cookie for `CSRF` mitigation
#103 opened 3 months ago
0
Provide a more comprehensive stack trace upon throwing exceptions
#102 opened 3 months ago
0
Make `Pydantic` a required dependency, and use `compat` module for it
#101 opened 3 months ago
0
Get rid of static methods and global variables
#100 opened 3 months ago
0
log all like the csrf module logs
#99 opened 4 months ago
0
Overload UserInfo return type for all provider types
#98 opened 4 months ago
0
Add `error_uri` & all the drilled args into conf
#97 opened 4 months ago
0
Add more docs for type ignore comments
#96 opened 4 months ago
0
Have `_types.py` be `types.py` before release
#91 opened 5 months ago
0
Set up the double submit cookie middleware for CSRF token
#89 opened 5 months ago
0
Add research issue type
#88 opened 5 months ago
0
Move base redirect to base provider
#87 opened 5 months ago
0
Make all callbacks async even user defined ones
#83 opened 5 months ago
0
Clean up the `utils` package
#82 opened 5 months ago
0
Use `hasattr` instead of `isinstance` for performance reasons to check if the signin user defined function adheres to `SignIn` protocol
#81 opened 5 months ago
0
Bound the ``SignIn` protocol to `UserId`
#80 opened 5 months ago
0
Make it a mono-repo with the core package and other framework adapters instead of just one facade
#77 opened 5 months ago
0
Allow for a list of providers within one route not just one
#76 opened 5 months ago
0
add subdomains inclusion option
#74 opened 5 months ago
0
add `FastAuth` to all logs
#71 opened 5 months ago
0
Have a base class that encapsulates all options
#69 opened 5 months ago
0
add a license
#65 opened 5 months ago
0
Always redirect relative to the baseURL
#61 opened 5 months ago
0
Have logger & debug in one ingle shared state
#59 opened 5 months ago
0
Cut short on errors, not too much explaining leave it in comments
#56 opened 5 months ago
0
Tests look kinda messy, cleanem up
#54 opened 5 months ago
0
Type all tests don't leave it loose
#53 opened 5 months ago
0
`how_log_till_user_session_expires()`
#52 opened 5 months ago
0
CSRF should be 256-bit here
#51 opened 5 months ago
0
use `Cookie` for tests too
#47 opened 5 months ago
0
Add all the useable method to ``JWTHandler`
#46 opened 5 months ago
0
Let the user decide how long the session persists
#45 opened 5 months ago
0
Create your own `Response` & `Request` objects from scratch, no matter the framework it works
#44 opened 5 months ago
0
Go back and add `Protocol` , `ParamSpec` & `Literal` for Python 3.9
#43 opened 5 months ago
0
Have a native logger; don't prompt the user for theirs
#42 opened 5 months ago
0
Load test with heavy user info like Reddit's
#41 opened 5 months ago
0
Have the whole lib run asynchronously
#40 opened 5 months ago
0
Signed double submit cookie method as a middleware
#39 opened 5 months ago
0
provide `getUserInfo()`
#38 opened 5 months ago
0
provide `is_signed_in()` & `is_signed_out()`. Have them in a base class u define as `Protocol`
#37 opened 5 months ago
0
Provide a way for users to have an a sign in/out function
#36 opened 5 months ago
0
Allow for optional async calls, depending on the framework to be used
#35 opened 5 months ago
0
Fix comments G
#34 opened 5 months ago
0
Secret key fallback, provided as a list, where u try with each key
#33 opened 5 months ago
0
Cater for `Pydantic`'s versions 1 & 2
#32 opened 5 months ago
0
Leniency for provider JSON schemas so scopes can be set dynamically
#28 opened 5 months ago
0