Implement the core prototype (GH-2)

Author: ArtyomVancyan

.env

@@ -0,0 +1,7 @@
+OAUTH2_CLIENT_ID=eccd08d6736b7999a32a
+OAUTH2_CLIENT_SECRET=642999c1c5f2b3df8b877afdc78252ef5b594d31
+OAUTH2_CALLBACK_URL=http://127.0.0.1:8000/oauth2/token
+
+JWT_SECRET=secret
+JWT_ALGORITHM=HS256
+JWT_EXPIRES=900

README.md

@@ -1,18 +1,28 @@
 # fastapi-oauth2
 
-Easy to setup social authentication mechanism with support for several auth providers.
+Easy to setup OAuth2 social authentication mechanism with support for several auth providers.
 
-## Examples
+## Demo
 
-- [airnominal](./examples/airnominal) - [fastapi-sso](https://github.com/tomasvotava/fastapi-sso) based implementation
-- [dogeapi](./examples/DogeAPI) - [fastapi-allauth](https://github.com/K-villain/fastapi-allauth) based implementation
+This sample application is made to demonstrate the use of the [**fastapi-oauth2**](./fastapi_oauth2) package.
 
-Both can be run using the following command:
+## Running the application
 
 ```bash
 uvicorn main:app --reload
 ```
 
 ## TODO
 
-- Segregate the prototype of the `fastapi-oauth2` core.
+- Make the [**fastapi-oauth2**](./fastapi_oauth2) depend
+  on (overuse) the [**social-core**](https://github.com/python-social-auth/social-core)
+
+## Features
+
+- Integrate with any existing FastAPI project (no dependencies of the project should stop the work of
+  the `fastapi-oauth2`)
+    * Implementation must allow to provide a context for configurations (also, see how it is done in another projects)
+- Use multiple OAuth2 providers at the same time
+    * There need to be provided a way to configure the OAuth2 for multiple providers
+- Token -> user data, user data -> token easy conversion
+- Customize OAuth2 routes

build.sh

@@ -0,0 +1,8 @@
+#!/bin/bash
+
+# last version of `build` supporting Python 3.6
+pip install build==0.9.0
+
+# build the wheel and install it
+WHEEL_NAME=$(python -m build | grep -Po "fastapi_oauth2-.*\.whl" | tail -n 1)
+pip install dist/$WHEEL_NAME

examples/airnominal/fastapi_sso/__init__.py renamed to demo/__init__.py

@@ -0,0 +1,39 @@
+from typing import Optional
+
+from fastapi import HTTPException
+from fastapi.openapi.models import OAuthFlows as OAuthFlowsModel
+from fastapi.security import OAuth2
+from fastapi.security.utils import get_authorization_scheme_param
+from starlette.requests import Request
+from starlette.status import HTTP_403_FORBIDDEN
+
+
+class OAuth2PasswordBearerCookie(OAuth2):
+    def __init__(
+            self,
+            tokenUrl: str,
+            scheme_name: str = None,
+            scopes: dict = None,
+            auto_error: bool = True,
+    ):
+        flows = OAuthFlowsModel(password={"tokenUrl": tokenUrl, "scopes": scopes or {}})
+        super().__init__(flows=flows, scheme_name=scheme_name, auto_error=auto_error)
+
+    async def __call__(self, request: Request) -> Optional[str]:
+        scheme, param = get_authorization_scheme_param(request.headers.get("Authorization"))
+        authorization = scheme.lower() == "bearer"
+        if not authorization:
+            scheme, param = get_authorization_scheme_param(request.cookies.get("Authorization"))
+            authorization = scheme.lower() == "bearer"
+
+        if not authorization:
+            if self.auto_error:
+                raise HTTPException(
+                    status_code=HTTP_403_FORBIDDEN, detail="Not authenticated"
+                )
+            else:
+                return None
+        return param
+
+
+oauth2_scheme = OAuth2PasswordBearerCookie(tokenUrl="/token")

demo/dependencies.py

@@ -0,0 +1,17 @@
+from fastapi import APIRouter
+from fastapi import Depends
+from starlette.requests import Request
+
+from .dependencies import oauth2_scheme
+
+router = APIRouter()
+
+
+@router.get("/user")
+def user(request: Request, _: str = Depends(oauth2_scheme)):
+    return request.user
+
+
+@router.post("/token")
+def token(request: Request):
+    return request.cookies.get("Authorization")