Module supertokens_python.supertokens
Expand source code
# Copyright (c) 2021, VRAI Labs and/or its affiliates. All rights reserved.
#
# This software is licensed under the Apache License, Version 2.0 (the
# "License") as published by the Apache Software Foundation.
#
# You may not use this file except in compliance with the License. You may
# obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
from __future__ import annotations
from typing import TYPE_CHECKING, Any, Callable, List, Set, Union
from typing_extensions import Literal
from supertokens_python.logger import get_maybe_none_as_str, log_debug_message
from .constants import (FDI_KEY_HEADER, RID_KEY_HEADER, TELEMETRY,
TELEMETRY_SUPERTOKENS_API_URL,
TELEMETRY_SUPERTOKENS_API_VERSION, USER_COUNT,
USER_DELETE, USERS)
from .exceptions import SuperTokensError
from .normalised_url_domain import NormalisedURLDomain
from .normalised_url_path import NormalisedURLPath
from .querier import Querier
from .recipe.session.cookie_and_header import (
attach_access_token_to_cookie, attach_anti_csrf_header,
attach_id_refresh_token_to_cookie_and_header,
attach_refresh_token_to_cookie, clear_cookies, set_front_token_in_headers)
from .types import ThirdPartyInfo, User, UsersResponse
from .utils import (execute_async, get_rid_from_request, is_version_gte,
normalise_http_method, send_non_200_response)
if TYPE_CHECKING:
from .recipe_module import RecipeModule
from supertokens_python.framework.request import BaseRequest
from supertokens_python.framework.response import BaseResponse
from supertokens_python.recipe.session import SessionContainer
import json
from os import environ
from httpx import AsyncClient
from .exceptions import BadInputError, GeneralError, raise_general_exception
from .recipe.session import SessionRecipe
class SupertokensConfig:
def __init__(self, connection_uri: str, api_key: Union[str, None] = None): # We keep this = None here because this is directly used by the user.
self.connection_uri = connection_uri
self.api_key = api_key
class Host:
def __init__(self, domain: NormalisedURLDomain,
base_path: NormalisedURLPath):
self.domain = domain
self.base_path = base_path
class InputAppInfo:
def __init__(self,
app_name: str,
api_domain: str,
website_domain: str,
api_gateway_path: str = '',
api_base_path: str = '/auth',
website_base_path: str = '/auth',
):
self.app_name = app_name
self.api_gateway_path = api_gateway_path
self.api_domain = api_domain
self.website_domain = website_domain
self.api_base_path = api_base_path
self.website_base_path = website_base_path
class AppInfo:
def __init__(self, app_name: str, api_domain: str, website_domain: str,
framework: Literal['fastapi', 'flask', 'django'], api_gateway_path: str,
api_base_path: str, website_base_path: str,
mode: Union[Literal['asgi', 'wsgi'], None]):
self.app_name = app_name
self.api_gateway_path: NormalisedURLPath = NormalisedURLPath(
api_gateway_path)
self.api_domain: NormalisedURLDomain = NormalisedURLDomain(api_domain)
self.website_domain: NormalisedURLDomain = NormalisedURLDomain(
website_domain)
self.api_base_path: NormalisedURLPath = self.api_gateway_path.append(
NormalisedURLPath(api_base_path))
self.website_base_path: NormalisedURLPath = NormalisedURLPath(
website_base_path)
if mode is not None:
self.mode = mode
elif framework == 'fastapi':
mode = 'asgi'
else:
mode = 'wsgi'
self.framework = framework
self.mode = mode
def toJSON(self):
def defaultImpl(o: Any):
if isinstance(o, (NormalisedURLDomain, NormalisedURLPath)):
return o.get_as_string_dangerous()
return o.__dict__
return json.dumps(self, default=defaultImpl,
sort_keys=True, indent=4)
def manage_cookies_post_response(session: SessionContainer, response: BaseResponse):
recipe = SessionRecipe.get_instance()
if session['remove_cookies']:
clear_cookies(recipe, response)
else:
access_token = session['new_access_token_info']
if access_token is not None:
attach_access_token_to_cookie(
recipe,
response,
access_token['token'],
access_token['expiry']
)
set_front_token_in_headers(
response,
session['user_id'],
access_token['expiry'],
session['access_token_payload']
)
refresh_token = session['new_refresh_token_info']
if refresh_token is not None:
attach_refresh_token_to_cookie(
recipe,
response,
refresh_token['token'],
refresh_token['expiry']
)
id_refresh_token = session['new_id_refresh_token_info']
if id_refresh_token is not None:
attach_id_refresh_token_to_cookie_and_header(
recipe,
response,
id_refresh_token['token'],
id_refresh_token['expiry']
)
anti_csrf_token = session['new_anti_csrf_token']
if anti_csrf_token is not None:
attach_anti_csrf_header(response, anti_csrf_token)
class Supertokens:
__instance = None
def __init__(self,
app_info: InputAppInfo,
framework: Literal['fastapi', 'flask', 'django'],
supertokens_config: SupertokensConfig,
recipe_list: List[Callable[[AppInfo], RecipeModule]],
mode: Union[Literal['asgi', 'wsgi'], None],
telemetry: Union[bool, None]
):
if not isinstance(app_info, InputAppInfo): # type: ignore
raise ValueError('app_info must be an instance of InputAppInfo')
self.app_info = AppInfo(
app_info.app_name,
app_info.api_domain,
app_info.website_domain,
framework,
app_info.api_gateway_path,
app_info.api_base_path,
app_info.website_base_path,
mode
)
self._telemetry_status: str = 'NONE'
log_debug_message("Started SuperTokens with debug logging (supertokens.init called)")
log_debug_message("app_info: %s", self.app_info.toJSON())
log_debug_message("framework: %s", framework)
hosts = list(map(lambda h: Host(NormalisedURLDomain(h.strip()), NormalisedURLPath(h.strip())),
filter(lambda x: x != '', supertokens_config.connection_uri.split(';'))))
Querier.init(hosts, supertokens_config.api_key)
if len(recipe_list) == 0:
raise_general_exception(
'Please provide at least one recipe to the supertokens.init function call')
self.recipe_modules: List[RecipeModule] = list(
map(lambda func: func(self.app_info), recipe_list))
if telemetry is None:
# If telemetry is not provided, enable it by default for production environment
telemetry = ('SUPERTOKENS_ENV' not in environ) or (
environ['SUPERTOKENS_ENV'] != 'testing')
if telemetry:
try:
execute_async(self.app_info.mode, self.send_telemetry)
except Exception:
pass # Do not stop app startup if telemetry fails
async def send_telemetry(self):
# If telemetry is enabled manually and the app is running in testing mode,
# do not send the telemetry
skip_telemetry = ('SUPERTOKENS_ENV' in environ) and (
environ['SUPERTOKENS_ENV'] == 'testing')
if skip_telemetry:
self._telemetry_status = 'SKIPPED'
return
try:
querier = Querier.get_instance(None)
response = await querier.send_get_request(NormalisedURLPath(TELEMETRY), {})
telemetry_id = None
if 'exists' in response and response['exists'] and 'telemetryId' in response:
telemetry_id = response['telemetryId']
data = {
'appName': self.app_info.app_name,
'websiteDomain': self.app_info.website_domain.get_as_string_dangerous(),
'sdk': 'python'
}
if telemetry_id is not None:
data = {
**data,
'telemetryId': telemetry_id
}
async with AsyncClient() as client:
await client.post(url=TELEMETRY_SUPERTOKENS_API_URL, json=data, # type: ignore
headers={'api-version': TELEMETRY_SUPERTOKENS_API_VERSION})
self._telemetry_status = 'SUCCESS'
except Exception:
self._telemetry_status = 'EXCEPTION'
@staticmethod
def init(app_info: InputAppInfo,
framework: Literal['fastapi', 'flask', 'django'],
supertokens_config: SupertokensConfig,
recipe_list: List[Callable[[AppInfo], RecipeModule]],
mode: Union[Literal['asgi', 'wsgi'], None],
telemetry: Union[bool, None]):
if Supertokens.__instance is None:
Supertokens.__instance = Supertokens(
app_info, framework, supertokens_config, recipe_list, mode, telemetry)
@staticmethod
def reset():
if ('SUPERTOKENS_ENV' not in environ) or (
environ['SUPERTOKENS_ENV'] != 'testing'):
raise_general_exception(
'calling testing function in non testing env')
Querier.reset()
Supertokens.__instance = None
@staticmethod
def get_instance() -> Supertokens:
if Supertokens.__instance is not None:
return Supertokens.__instance
raise_general_exception(
'Initialisation not done. Did you forget to call the SuperTokens.init function?')
def get_all_cors_headers(self) -> List[str]:
headers_set: Set[str] = set()
headers_set.add(RID_KEY_HEADER)
headers_set.add(FDI_KEY_HEADER)
for recipe in self.recipe_modules:
headers = recipe.get_all_cors_headers()
for header in headers:
headers_set.add(header)
return list(headers_set)
async def get_user_count(self, include_recipe_ids: Union[None, List[str]]) -> int: # pylint: disable=no-self-use
querier = Querier.get_instance(None)
include_recipe_ids_str = None
if include_recipe_ids is not None:
include_recipe_ids_str = ','.join(include_recipe_ids)
response = await querier.send_get_request(NormalisedURLPath(USER_COUNT), {
"includeRecipeIds": include_recipe_ids_str
})
return int(response['count'])
async def delete_user(self, user_id: str) -> None: # pylint: disable=no-self-use
querier = Querier.get_instance(None)
cdi_version = await querier.get_api_version()
if is_version_gte(cdi_version, "2.10"):
await querier.send_post_request(NormalisedURLPath(USER_DELETE), {
"userId": user_id
})
return None
raise_general_exception(
'Please upgrade the SuperTokens core to >= 3.7.0')
async def get_users(self, time_joined_order: Literal['ASC', 'DESC'], # pylint: disable=no-self-use
limit: Union[int, None], pagination_token: Union[str, None],
include_recipe_ids: Union[None, List[str]]) -> UsersResponse:
querier = Querier.get_instance(None)
params = {
'timeJoinedOrder': time_joined_order
}
if limit is not None:
params = {
'limit': limit,
**params
}
if pagination_token is not None:
params = {
'paginationToken': pagination_token,
**params
}
include_recipe_ids_str = None
if include_recipe_ids is not None:
include_recipe_ids_str = ','.join(include_recipe_ids)
params = {
'includeRecipeIds': include_recipe_ids_str,
**params
}
response = await querier.send_get_request(NormalisedURLPath(USERS), params)
next_pagination_token = None
if 'nextPaginationToken' in response:
next_pagination_token = response['nextPaginationToken']
users_list = response['users']
users: List[User] = []
for user in users_list:
recipe_id = user['recipeId']
user_obj = user['user']
third_party = None
if 'thirdParty' in user_obj:
third_party = ThirdPartyInfo(
user_obj['thirdParty']['userId'],
user_obj['thirdParty']['id']
)
email = None
if 'email' in user_obj:
email = user_obj['email']
phone_number = None
if 'phoneNumber' in user_obj:
phone_number = user_obj['phoneNumber']
users.append(User(
recipe_id, user_obj['id'], user_obj['timeJoined'], email, phone_number, third_party))
return UsersResponse(users, next_pagination_token)
async def middleware(self, request: BaseRequest, response: BaseResponse) -> Union[BaseResponse, None]: # pylint: disable=no-self-use
log_debug_message("middleware: Started")
path = Supertokens.get_instance().app_info.api_gateway_path.append(
NormalisedURLPath(
request.get_path()))
method = normalise_http_method(request.method())
if not path.startswith(
Supertokens.get_instance().app_info.api_base_path):
log_debug_message(
"middleware: Not handling because request path did not start with config path. Request path: %s", path.get_as_string_dangerous()
)
return None
request_rid = get_rid_from_request(request)
log_debug_message("middleware: requestRID is: %s", get_maybe_none_as_str(request_rid))
if request_rid is not None and request_rid == 'anti-csrf':
# see
# https://github.com/supertokens/supertokens-python/issues/54
request_rid = None
request_id = None
matched_recipe = None
if request_rid is not None:
for recipe in Supertokens.get_instance().recipe_modules:
log_debug_message("middleware: Checking recipe ID for match: %s", recipe.get_recipe_id())
if recipe.get_recipe_id() == request_rid:
matched_recipe = recipe
break
if matched_recipe is not None:
request_id = matched_recipe.return_api_id_if_can_handle_request(
path, method)
else:
for recipe in Supertokens.get_instance().recipe_modules:
log_debug_message("middleware: Checking recipe ID for match: %s", recipe.get_recipe_id())
request_id = recipe.return_api_id_if_can_handle_request(
path, method)
if request_id is not None:
matched_recipe = recipe
break
if matched_recipe is not None:
log_debug_message("middleware: Matched with recipe ID: %s", matched_recipe.get_recipe_id())
else:
log_debug_message("middleware: Not handling because no recipe matched")
if matched_recipe is not None and request_id is None:
log_debug_message("middleware: Not handling because recipe doesn't handle request path or method. Request path: %s, request method: %s", path.get_as_string_dangerous(), method)
if request_id is not None and matched_recipe is not None:
log_debug_message("middleware: Request being handled by recipe. ID is: %s", request_id)
api_resp = await matched_recipe.handle_api_request(request_id, request, path, method, response)
if api_resp is None:
log_debug_message("middleware: Not handled because API returned None")
else:
log_debug_message("middleware: Ended")
return api_resp
return None
async def handle_supertokens_error(self, request: BaseRequest, err: Exception, response: BaseResponse):
log_debug_message("errorHandler: Started")
log_debug_message("errorHandler: Error is from SuperTokens recipe. Message: %s", str(err))
if isinstance(err, GeneralError):
raise err
if isinstance(err, BadInputError):
log_debug_message("errorHandler: Sending 400 status code response")
return send_non_200_response(str(err), 400, response)
for recipe in self.recipe_modules:
log_debug_message("errorHandler: Checking recipe for match: %s", recipe.get_recipe_id())
if recipe.is_error_from_this_recipe_based_on_instance(
err) and isinstance(err, SuperTokensError):
log_debug_message("errorHandler: Matched with recipeID: %s", recipe.get_recipe_id())
return await recipe.handle_error(request, err, response)
raise errFunctions
-
Expand source code
def manage_cookies_post_response(session: SessionContainer, response: BaseResponse): recipe = SessionRecipe.get_instance() if session['remove_cookies']: clear_cookies(recipe, response) else: access_token = session['new_access_token_info'] if access_token is not None: attach_access_token_to_cookie( recipe, response, access_token['token'], access_token['expiry'] ) set_front_token_in_headers( response, session['user_id'], access_token['expiry'], session['access_token_payload'] ) refresh_token = session['new_refresh_token_info'] if refresh_token is not None: attach_refresh_token_to_cookie( recipe, response, refresh_token['token'], refresh_token['expiry'] ) id_refresh_token = session['new_id_refresh_token_info'] if id_refresh_token is not None: attach_id_refresh_token_to_cookie_and_header( recipe, response, id_refresh_token['token'], id_refresh_token['expiry'] ) anti_csrf_token = session['new_anti_csrf_token'] if anti_csrf_token is not None: attach_anti_csrf_header(response, anti_csrf_token)
Classes
class AppInfo (app_name: str, api_domain: str, website_domain: str, framework: "Literal['fastapi', 'flask', 'django']", api_gateway_path: str, api_base_path: str, website_base_path: str, mode: "Union[Literal['asgi', 'wsgi'], None]")-
Expand source code
class AppInfo: def __init__(self, app_name: str, api_domain: str, website_domain: str, framework: Literal['fastapi', 'flask', 'django'], api_gateway_path: str, api_base_path: str, website_base_path: str, mode: Union[Literal['asgi', 'wsgi'], None]): self.app_name = app_name self.api_gateway_path: NormalisedURLPath = NormalisedURLPath( api_gateway_path) self.api_domain: NormalisedURLDomain = NormalisedURLDomain(api_domain) self.website_domain: NormalisedURLDomain = NormalisedURLDomain( website_domain) self.api_base_path: NormalisedURLPath = self.api_gateway_path.append( NormalisedURLPath(api_base_path)) self.website_base_path: NormalisedURLPath = NormalisedURLPath( website_base_path) if mode is not None: self.mode = mode elif framework == 'fastapi': mode = 'asgi' else: mode = 'wsgi' self.framework = framework self.mode = mode def toJSON(self): def defaultImpl(o: Any): if isinstance(o, (NormalisedURLDomain, NormalisedURLPath)): return o.get_as_string_dangerous() return o.__dict__ return json.dumps(self, default=defaultImpl, sort_keys=True, indent=4)Methods
def toJSON(self)-
Expand source code
def toJSON(self): def defaultImpl(o: Any): if isinstance(o, (NormalisedURLDomain, NormalisedURLPath)): return o.get_as_string_dangerous() return o.__dict__ return json.dumps(self, default=defaultImpl, sort_keys=True, indent=4)
class Host (domain: NormalisedURLDomain, base_path: NormalisedURLPath)-
Expand source code
class Host: def __init__(self, domain: NormalisedURLDomain, base_path: NormalisedURLPath): self.domain = domain self.base_path = base_path class InputAppInfo (app_name: str, api_domain: str, website_domain: str, api_gateway_path: str = '', api_base_path: str = '/auth', website_base_path: str = '/auth')-
Expand source code
class InputAppInfo: def __init__(self, app_name: str, api_domain: str, website_domain: str, api_gateway_path: str = '', api_base_path: str = '/auth', website_base_path: str = '/auth', ): self.app_name = app_name self.api_gateway_path = api_gateway_path self.api_domain = api_domain self.website_domain = website_domain self.api_base_path = api_base_path self.website_base_path = website_base_path class Supertokens (app_info: InputAppInfo, framework: "Literal['fastapi', 'flask', 'django']", supertokens_config: SupertokensConfig, recipe_list: List[Callable[[AppInfo], RecipeModule]], mode: "Union[Literal['asgi', 'wsgi'], None]", telemetry: Union[bool, None])-
Expand source code
class Supertokens: __instance = None def __init__(self, app_info: InputAppInfo, framework: Literal['fastapi', 'flask', 'django'], supertokens_config: SupertokensConfig, recipe_list: List[Callable[[AppInfo], RecipeModule]], mode: Union[Literal['asgi', 'wsgi'], None], telemetry: Union[bool, None] ): if not isinstance(app_info, InputAppInfo): # type: ignore raise ValueError('app_info must be an instance of InputAppInfo') self.app_info = AppInfo( app_info.app_name, app_info.api_domain, app_info.website_domain, framework, app_info.api_gateway_path, app_info.api_base_path, app_info.website_base_path, mode ) self._telemetry_status: str = 'NONE' log_debug_message("Started SuperTokens with debug logging (supertokens.init called)") log_debug_message("app_info: %s", self.app_info.toJSON()) log_debug_message("framework: %s", framework) hosts = list(map(lambda h: Host(NormalisedURLDomain(h.strip()), NormalisedURLPath(h.strip())), filter(lambda x: x != '', supertokens_config.connection_uri.split(';')))) Querier.init(hosts, supertokens_config.api_key) if len(recipe_list) == 0: raise_general_exception( 'Please provide at least one recipe to the supertokens.init function call') self.recipe_modules: List[RecipeModule] = list( map(lambda func: func(self.app_info), recipe_list)) if telemetry is None: # If telemetry is not provided, enable it by default for production environment telemetry = ('SUPERTOKENS_ENV' not in environ) or ( environ['SUPERTOKENS_ENV'] != 'testing') if telemetry: try: execute_async(self.app_info.mode, self.send_telemetry) except Exception: pass # Do not stop app startup if telemetry fails async def send_telemetry(self): # If telemetry is enabled manually and the app is running in testing mode, # do not send the telemetry skip_telemetry = ('SUPERTOKENS_ENV' in environ) and ( environ['SUPERTOKENS_ENV'] == 'testing') if skip_telemetry: self._telemetry_status = 'SKIPPED' return try: querier = Querier.get_instance(None) response = await querier.send_get_request(NormalisedURLPath(TELEMETRY), {}) telemetry_id = None if 'exists' in response and response['exists'] and 'telemetryId' in response: telemetry_id = response['telemetryId'] data = { 'appName': self.app_info.app_name, 'websiteDomain': self.app_info.website_domain.get_as_string_dangerous(), 'sdk': 'python' } if telemetry_id is not None: data = { **data, 'telemetryId': telemetry_id } async with AsyncClient() as client: await client.post(url=TELEMETRY_SUPERTOKENS_API_URL, json=data, # type: ignore headers={'api-version': TELEMETRY_SUPERTOKENS_API_VERSION}) self._telemetry_status = 'SUCCESS' except Exception: self._telemetry_status = 'EXCEPTION' @staticmethod def init(app_info: InputAppInfo, framework: Literal['fastapi', 'flask', 'django'], supertokens_config: SupertokensConfig, recipe_list: List[Callable[[AppInfo], RecipeModule]], mode: Union[Literal['asgi', 'wsgi'], None], telemetry: Union[bool, None]): if Supertokens.__instance is None: Supertokens.__instance = Supertokens( app_info, framework, supertokens_config, recipe_list, mode, telemetry) @staticmethod def reset(): if ('SUPERTOKENS_ENV' not in environ) or ( environ['SUPERTOKENS_ENV'] != 'testing'): raise_general_exception( 'calling testing function in non testing env') Querier.reset() Supertokens.__instance = None @staticmethod def get_instance() -> Supertokens: if Supertokens.__instance is not None: return Supertokens.__instance raise_general_exception( 'Initialisation not done. Did you forget to call the SuperTokens.init function?') def get_all_cors_headers(self) -> List[str]: headers_set: Set[str] = set() headers_set.add(RID_KEY_HEADER) headers_set.add(FDI_KEY_HEADER) for recipe in self.recipe_modules: headers = recipe.get_all_cors_headers() for header in headers: headers_set.add(header) return list(headers_set) async def get_user_count(self, include_recipe_ids: Union[None, List[str]]) -> int: # pylint: disable=no-self-use querier = Querier.get_instance(None) include_recipe_ids_str = None if include_recipe_ids is not None: include_recipe_ids_str = ','.join(include_recipe_ids) response = await querier.send_get_request(NormalisedURLPath(USER_COUNT), { "includeRecipeIds": include_recipe_ids_str }) return int(response['count']) async def delete_user(self, user_id: str) -> None: # pylint: disable=no-self-use querier = Querier.get_instance(None) cdi_version = await querier.get_api_version() if is_version_gte(cdi_version, "2.10"): await querier.send_post_request(NormalisedURLPath(USER_DELETE), { "userId": user_id }) return None raise_general_exception( 'Please upgrade the SuperTokens core to >= 3.7.0') async def get_users(self, time_joined_order: Literal['ASC', 'DESC'], # pylint: disable=no-self-use limit: Union[int, None], pagination_token: Union[str, None], include_recipe_ids: Union[None, List[str]]) -> UsersResponse: querier = Querier.get_instance(None) params = { 'timeJoinedOrder': time_joined_order } if limit is not None: params = { 'limit': limit, **params } if pagination_token is not None: params = { 'paginationToken': pagination_token, **params } include_recipe_ids_str = None if include_recipe_ids is not None: include_recipe_ids_str = ','.join(include_recipe_ids) params = { 'includeRecipeIds': include_recipe_ids_str, **params } response = await querier.send_get_request(NormalisedURLPath(USERS), params) next_pagination_token = None if 'nextPaginationToken' in response: next_pagination_token = response['nextPaginationToken'] users_list = response['users'] users: List[User] = [] for user in users_list: recipe_id = user['recipeId'] user_obj = user['user'] third_party = None if 'thirdParty' in user_obj: third_party = ThirdPartyInfo( user_obj['thirdParty']['userId'], user_obj['thirdParty']['id'] ) email = None if 'email' in user_obj: email = user_obj['email'] phone_number = None if 'phoneNumber' in user_obj: phone_number = user_obj['phoneNumber'] users.append(User( recipe_id, user_obj['id'], user_obj['timeJoined'], email, phone_number, third_party)) return UsersResponse(users, next_pagination_token) async def middleware(self, request: BaseRequest, response: BaseResponse) -> Union[BaseResponse, None]: # pylint: disable=no-self-use log_debug_message("middleware: Started") path = Supertokens.get_instance().app_info.api_gateway_path.append( NormalisedURLPath( request.get_path())) method = normalise_http_method(request.method()) if not path.startswith( Supertokens.get_instance().app_info.api_base_path): log_debug_message( "middleware: Not handling because request path did not start with config path. Request path: %s", path.get_as_string_dangerous() ) return None request_rid = get_rid_from_request(request) log_debug_message("middleware: requestRID is: %s", get_maybe_none_as_str(request_rid)) if request_rid is not None and request_rid == 'anti-csrf': # see # https://github.com/supertokens/supertokens-python/issues/54 request_rid = None request_id = None matched_recipe = None if request_rid is not None: for recipe in Supertokens.get_instance().recipe_modules: log_debug_message("middleware: Checking recipe ID for match: %s", recipe.get_recipe_id()) if recipe.get_recipe_id() == request_rid: matched_recipe = recipe break if matched_recipe is not None: request_id = matched_recipe.return_api_id_if_can_handle_request( path, method) else: for recipe in Supertokens.get_instance().recipe_modules: log_debug_message("middleware: Checking recipe ID for match: %s", recipe.get_recipe_id()) request_id = recipe.return_api_id_if_can_handle_request( path, method) if request_id is not None: matched_recipe = recipe break if matched_recipe is not None: log_debug_message("middleware: Matched with recipe ID: %s", matched_recipe.get_recipe_id()) else: log_debug_message("middleware: Not handling because no recipe matched") if matched_recipe is not None and request_id is None: log_debug_message("middleware: Not handling because recipe doesn't handle request path or method. Request path: %s, request method: %s", path.get_as_string_dangerous(), method) if request_id is not None and matched_recipe is not None: log_debug_message("middleware: Request being handled by recipe. ID is: %s", request_id) api_resp = await matched_recipe.handle_api_request(request_id, request, path, method, response) if api_resp is None: log_debug_message("middleware: Not handled because API returned None") else: log_debug_message("middleware: Ended") return api_resp return None async def handle_supertokens_error(self, request: BaseRequest, err: Exception, response: BaseResponse): log_debug_message("errorHandler: Started") log_debug_message("errorHandler: Error is from SuperTokens recipe. Message: %s", str(err)) if isinstance(err, GeneralError): raise err if isinstance(err, BadInputError): log_debug_message("errorHandler: Sending 400 status code response") return send_non_200_response(str(err), 400, response) for recipe in self.recipe_modules: log_debug_message("errorHandler: Checking recipe for match: %s", recipe.get_recipe_id()) if recipe.is_error_from_this_recipe_based_on_instance( err) and isinstance(err, SuperTokensError): log_debug_message("errorHandler: Matched with recipeID: %s", recipe.get_recipe_id()) return await recipe.handle_error(request, err, response) raise errStatic methods
def get_instance() ‑> Supertokens-
Expand source code
@staticmethod def get_instance() -> Supertokens: if Supertokens.__instance is not None: return Supertokens.__instance raise_general_exception( 'Initialisation not done. Did you forget to call the SuperTokens.init function?') def init(app_info: InputAppInfo, framework: "Literal['fastapi', 'flask', 'django']", supertokens_config: SupertokensConfig, recipe_list: List[Callable[[AppInfo], RecipeModule]], mode: "Union[Literal['asgi', 'wsgi'], None]", telemetry: Union[bool, None])-
Expand source code
@staticmethod def init(app_info: InputAppInfo, framework: Literal['fastapi', 'flask', 'django'], supertokens_config: SupertokensConfig, recipe_list: List[Callable[[AppInfo], RecipeModule]], mode: Union[Literal['asgi', 'wsgi'], None], telemetry: Union[bool, None]): if Supertokens.__instance is None: Supertokens.__instance = Supertokens( app_info, framework, supertokens_config, recipe_list, mode, telemetry) def reset()-
Expand source code
@staticmethod def reset(): if ('SUPERTOKENS_ENV' not in environ) or ( environ['SUPERTOKENS_ENV'] != 'testing'): raise_general_exception( 'calling testing function in non testing env') Querier.reset() Supertokens.__instance = None
Methods
async def delete_user(self, user_id: str) ‑> None-
Expand source code
async def delete_user(self, user_id: str) -> None: # pylint: disable=no-self-use querier = Querier.get_instance(None) cdi_version = await querier.get_api_version() if is_version_gte(cdi_version, "2.10"): await querier.send_post_request(NormalisedURLPath(USER_DELETE), { "userId": user_id }) return None raise_general_exception( 'Please upgrade the SuperTokens core to >= 3.7.0') def get_all_cors_headers(self) ‑> List[str]-
Expand source code
def get_all_cors_headers(self) -> List[str]: headers_set: Set[str] = set() headers_set.add(RID_KEY_HEADER) headers_set.add(FDI_KEY_HEADER) for recipe in self.recipe_modules: headers = recipe.get_all_cors_headers() for header in headers: headers_set.add(header) return list(headers_set) async def get_user_count(self, include_recipe_ids: Union[None, List[str]]) ‑> int-
Expand source code
async def get_user_count(self, include_recipe_ids: Union[None, List[str]]) -> int: # pylint: disable=no-self-use querier = Querier.get_instance(None) include_recipe_ids_str = None if include_recipe_ids is not None: include_recipe_ids_str = ','.join(include_recipe_ids) response = await querier.send_get_request(NormalisedURLPath(USER_COUNT), { "includeRecipeIds": include_recipe_ids_str }) return int(response['count']) async def get_users(self, time_joined_order: "Literal['ASC', 'DESC']", limit: Union[int, None], pagination_token: Union[str, None], include_recipe_ids: Union[None, List[str]]) ‑> UsersResponse-
Expand source code
async def get_users(self, time_joined_order: Literal['ASC', 'DESC'], # pylint: disable=no-self-use limit: Union[int, None], pagination_token: Union[str, None], include_recipe_ids: Union[None, List[str]]) -> UsersResponse: querier = Querier.get_instance(None) params = { 'timeJoinedOrder': time_joined_order } if limit is not None: params = { 'limit': limit, **params } if pagination_token is not None: params = { 'paginationToken': pagination_token, **params } include_recipe_ids_str = None if include_recipe_ids is not None: include_recipe_ids_str = ','.join(include_recipe_ids) params = { 'includeRecipeIds': include_recipe_ids_str, **params } response = await querier.send_get_request(NormalisedURLPath(USERS), params) next_pagination_token = None if 'nextPaginationToken' in response: next_pagination_token = response['nextPaginationToken'] users_list = response['users'] users: List[User] = [] for user in users_list: recipe_id = user['recipeId'] user_obj = user['user'] third_party = None if 'thirdParty' in user_obj: third_party = ThirdPartyInfo( user_obj['thirdParty']['userId'], user_obj['thirdParty']['id'] ) email = None if 'email' in user_obj: email = user_obj['email'] phone_number = None if 'phoneNumber' in user_obj: phone_number = user_obj['phoneNumber'] users.append(User( recipe_id, user_obj['id'], user_obj['timeJoined'], email, phone_number, third_party)) return UsersResponse(users, next_pagination_token) async def handle_supertokens_error(self, request: BaseRequest, err: Exception, response: BaseResponse)-
Expand source code
async def handle_supertokens_error(self, request: BaseRequest, err: Exception, response: BaseResponse): log_debug_message("errorHandler: Started") log_debug_message("errorHandler: Error is from SuperTokens recipe. Message: %s", str(err)) if isinstance(err, GeneralError): raise err if isinstance(err, BadInputError): log_debug_message("errorHandler: Sending 400 status code response") return send_non_200_response(str(err), 400, response) for recipe in self.recipe_modules: log_debug_message("errorHandler: Checking recipe for match: %s", recipe.get_recipe_id()) if recipe.is_error_from_this_recipe_based_on_instance( err) and isinstance(err, SuperTokensError): log_debug_message("errorHandler: Matched with recipeID: %s", recipe.get_recipe_id()) return await recipe.handle_error(request, err, response) raise err async def middleware(self, request: BaseRequest, response: BaseResponse) ‑> Union[BaseResponse, None]-
Expand source code
async def middleware(self, request: BaseRequest, response: BaseResponse) -> Union[BaseResponse, None]: # pylint: disable=no-self-use log_debug_message("middleware: Started") path = Supertokens.get_instance().app_info.api_gateway_path.append( NormalisedURLPath( request.get_path())) method = normalise_http_method(request.method()) if not path.startswith( Supertokens.get_instance().app_info.api_base_path): log_debug_message( "middleware: Not handling because request path did not start with config path. Request path: %s", path.get_as_string_dangerous() ) return None request_rid = get_rid_from_request(request) log_debug_message("middleware: requestRID is: %s", get_maybe_none_as_str(request_rid)) if request_rid is not None and request_rid == 'anti-csrf': # see # https://github.com/supertokens/supertokens-python/issues/54 request_rid = None request_id = None matched_recipe = None if request_rid is not None: for recipe in Supertokens.get_instance().recipe_modules: log_debug_message("middleware: Checking recipe ID for match: %s", recipe.get_recipe_id()) if recipe.get_recipe_id() == request_rid: matched_recipe = recipe break if matched_recipe is not None: request_id = matched_recipe.return_api_id_if_can_handle_request( path, method) else: for recipe in Supertokens.get_instance().recipe_modules: log_debug_message("middleware: Checking recipe ID for match: %s", recipe.get_recipe_id()) request_id = recipe.return_api_id_if_can_handle_request( path, method) if request_id is not None: matched_recipe = recipe break if matched_recipe is not None: log_debug_message("middleware: Matched with recipe ID: %s", matched_recipe.get_recipe_id()) else: log_debug_message("middleware: Not handling because no recipe matched") if matched_recipe is not None and request_id is None: log_debug_message("middleware: Not handling because recipe doesn't handle request path or method. Request path: %s, request method: %s", path.get_as_string_dangerous(), method) if request_id is not None and matched_recipe is not None: log_debug_message("middleware: Request being handled by recipe. ID is: %s", request_id) api_resp = await matched_recipe.handle_api_request(request_id, request, path, method, response) if api_resp is None: log_debug_message("middleware: Not handled because API returned None") else: log_debug_message("middleware: Ended") return api_resp return None async def send_telemetry(self)-
Expand source code
async def send_telemetry(self): # If telemetry is enabled manually and the app is running in testing mode, # do not send the telemetry skip_telemetry = ('SUPERTOKENS_ENV' in environ) and ( environ['SUPERTOKENS_ENV'] == 'testing') if skip_telemetry: self._telemetry_status = 'SKIPPED' return try: querier = Querier.get_instance(None) response = await querier.send_get_request(NormalisedURLPath(TELEMETRY), {}) telemetry_id = None if 'exists' in response and response['exists'] and 'telemetryId' in response: telemetry_id = response['telemetryId'] data = { 'appName': self.app_info.app_name, 'websiteDomain': self.app_info.website_domain.get_as_string_dangerous(), 'sdk': 'python' } if telemetry_id is not None: data = { **data, 'telemetryId': telemetry_id } async with AsyncClient() as client: await client.post(url=TELEMETRY_SUPERTOKENS_API_URL, json=data, # type: ignore headers={'api-version': TELEMETRY_SUPERTOKENS_API_VERSION}) self._telemetry_status = 'SUCCESS' except Exception: self._telemetry_status = 'EXCEPTION'
class SupertokensConfig (connection_uri: str, api_key: Union[str, None] = None)-
Expand source code
class SupertokensConfig: def __init__(self, connection_uri: str, api_key: Union[str, None] = None): # We keep this = None here because this is directly used by the user. self.connection_uri = connection_uri self.api_key = api_key