tessl/pypi-requests-oauth
OAuth v1.0 authentication hook for the Python requests HTTP library
- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
- Describes
'%3e%3cpath%20d='M3.389%209.069c0-.009.043-.033.029-.044L.029%207.77l3.287-1.197L6.574%207.77l.106.083.005%204-3.297%201.185V9.068ZM13.582%209.32V2.74l3.405%201.238v4.104L13.583%209.32ZM10.253%2014.66l-3.476%201.268v-4.027l3.476-1.313v4.072ZM10.253%2010.558l-3.476%201.239V7.784l3.476-1.268v4.042ZM10.253%2014.719v3.968L6.777%2020v-3.998l3.476-1.283ZM17%208.139v4.042l-3.418%201.239V9.378L17%208.138ZM3.3%2017.168%200%2015.943v-4.027l3.3%201.224v4.028ZM6.69%2011.916v4.027l-3.302%201.225v-4.072l3.301-1.18ZM6.69%203.743v4.012l-3.33-1.21V2.564l3.33%201.18Z'/%3e%3cpath%20d='M3.3%2013.066%200%2011.842V7.844l3.3%201.224v3.998ZM13.524%209.334l-.175.088.175-.014v4.027l-3.152%201.183-.06-.032v-3.983l1.986-.767-.111.006-1.876.657V6.531l3.213-1.224v4.027Zm-.263.133c-.065.008-.198.023-.233.088.065-.008.198-.023.233-.088Zm-.321.118c-.065.008-.198.023-.233.088.065-.009.198-.023.233-.088Zm-.321.118c-.066.008-.199.023-.234.088.065-.008.199-.023.234-.088ZM13.524%201.266v3.968l-3.213%201.195V2.46l3.213-1.194ZM10.253%202.475v3.968L6.777%207.726V3.743l3.476-1.268ZM8.2%204.458c-.304.064-.627.5-.708.79-.27.963.636%201.081%201.091.364.277-.437.354-1.308-.383-1.154ZM13.524%2013.51v3.983l-3.17%201.177c-.011%200-.043-.067-.043-.07v-3.895l3.213-1.195Zm-.884%201.63c-.495.085-1.068%201.015-.676%201.435.483.517%201.502-.636%201.147-1.246-.098-.169-.286-.221-.47-.19ZM10.165%202.387l-.037.065-3.395%201.249-3.345-1.212L6.88%201.21l3.285%201.178ZM13.437%201.177l-.088.073-3.057%201.127-3.034-1.082-.277-.133L10.151%200l3.286%201.177Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h17v20H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
To install, run
npx @tessl/cli install tessl/pypi-requests-oauth@0.4.0index.mddocs/
requests-oauth
OAuth v1.0 authentication hook for the Python requests HTTP library. This package provides both header-based and URL-encoded authentication methods for OAuth-protected APIs, with header authentication being the preferred approach following RFC 5849 specifications.
Package Information
- Package Name: requests-oauth
- Language: Python
- Installation:
pip install requests-oauth
Core Imports
from oauth_hook import OAuthHookAlternative imports:
from oauth_hook.hook import OAuthHook
from oauth_hook.auth import Consumer, Token, SignatureMethod_HMAC_SHA1
from oauth_hook.hook import CustomSignatureMethod_HMAC_SHA1Basic Usage
from oauth_hook import OAuthHook
import requests
# Initialize with access token and consumer credentials
oauth_hook = OAuthHook(
access_token="your_access_token",
access_token_secret="your_access_token_secret",
consumer_key="your_consumer_key",
consumer_secret="your_consumer_secret",
header_auth=True # Use Authorization header (preferred)
)
# Attach hook to requests session
client = requests.session(hooks={'pre_request': oauth_hook})
# Make authenticated requests
response = client.get('https://api.twitter.com/1/account/rate_limit_status.json')
response = client.post('https://api.twitter.com/1/statuses/update.json',
{'status': 'Hello OAuth!'})Class-level configuration for reuse:
# Set consumer credentials once
OAuthHook.consumer_key = "your_consumer_key"
OAuthHook.consumer_secret = "your_consumer_secret"
# Initialize with only token parameters
oauth_hook = OAuthHook("access_token", "access_token_secret", header_auth=True)Capabilities
OAuth Hook Creation
Creates OAuth authentication hooks for signing HTTP requests.
class OAuthHook:
def __init__(
self,
access_token: str = None,
access_token_secret: str = None,
consumer_key: str = None,
consumer_secret: str = None,
header_auth: bool = None
):
"""
Initialize OAuth hook with credentials and authentication method.
Parameters:
- access_token: OAuth access token (optional for 3-legged auth flow)
- access_token_secret: OAuth access token secret (optional for 3-legged auth flow)
- consumer_key: OAuth consumer key (uses class attribute if None)
- consumer_secret: OAuth consumer secret (uses class attribute if None)
- header_auth: Use Authorization header if True, URL encoding if False
"""Request Signing
Signs HTTP requests with OAuth authentication parameters.
def __call__(self, request) -> requests.Request:
"""
Pre-request hook that signs a requests.Request for OAuth authentication.
Parameters:
- request: requests.Request object to be signed
Returns:
Modified requests.Request with OAuth authentication
"""Three-Legged OAuth Flow
Support for the complete OAuth authorization flow including request token acquisition, user authorization, and access token retrieval.
# Step 1: Request token acquisition
oauth_hook = OAuthHook(consumer_key="key", consumer_secret="secret")
client = requests.session(hooks={'pre_request': oauth_hook})
response = client.post('https://api.service.com/oauth/request_token',
data={'oauth_callback': 'oob'})
# Step 2: User authorization (redirect user to authorization URL)
# User provides verifier/PIN after authorization
# Step 3: Access token exchange
oauth_hook = OAuthHook(request_token, request_token_secret,
consumer_key, consumer_secret)
response = client.post('https://api.service.com/oauth/access_token',
{'oauth_verifier': verifier})URL Utilities
Static methods for URL and parameter processing during OAuth signing.
@staticmethod
def get_normalized_url(url: str) -> str:
"""
Returns a normalized URL without query parameters, ports, or fragments.
Parameters:
- url: URL to normalize
Returns:
Normalized URL string
Raises:
ValueError: For unsupported URL schemes (non-HTTP/HTTPS)
"""
@staticmethod
def get_normalized_parameters(request) -> str:
"""
Returns URL-encoded parameter string for OAuth signature generation.
Parameters:
- request: requests.Request object
Returns:
URL-encoded parameter string for signing
"""
@staticmethod
def to_url(request) -> str:
"""
Serialize request as URL with OAuth parameters for GET requests.
Parameters:
- request: requests.Request object
Returns:
Complete URL with OAuth parameters
"""
@staticmethod
def to_postdata(request) -> str:
"""
Serialize request as POST data with OAuth parameters.
Parameters:
- request: requests.Request object
Returns:
URL-encoded POST data string
"""
@staticmethod
def authorization_header(oauth_params: dict) -> str:
"""
Generate OAuth Authorization header from parameters.
Parameters:
- oauth_params: Dictionary of OAuth parameters
Returns:
OAuth Authorization header string
"""
@staticmethod
def _split_url_string(query_string: str) -> dict:
"""
Parse query string into dictionary with unquoted values.
Parameters:
- query_string: URL query string to parse
Returns:
Dictionary with unquoted parameter values
"""Class Attributes and Configuration
Global configuration options for OAuth authentication.
# Class attributes for global configuration
OAuthHook.consumer_key = None # Global consumer key
OAuthHook.consumer_secret = None # Global consumer secret
OAuthHook.header_auth = False # Default authentication method
OAuthHook.OAUTH_VERSION = '1.0' # OAuth version
OAuthHook.signature = CustomSignatureMethod_HMAC_SHA1() # Signature method instanceAuthentication Methods
Header Authentication (Recommended)
Uses the Authorization header with OAuth parameters. This is the preferred method following RFC 5849 and supported by services like Twitter.
oauth_hook = OAuthHook(
access_token, access_token_secret,
consumer_key, consumer_secret,
header_auth=True
)URL-encoded Authentication
Embeds OAuth parameters in the URL query string or POST body. This is the default method and more widely supported across different services.
oauth_hook = OAuthHook(
access_token, access_token_secret,
consumer_key, consumer_secret,
header_auth=False # Default
)Types
class Consumer:
"""OAuth consumer representation."""
def __init__(self, key: str, secret: str):
"""
Initialize consumer with key and secret.
Parameters:
- key: Consumer key
- secret: Consumer secret
"""
self.key: str
self.secret: str
class Token:
"""OAuth token representation."""
def __init__(self, key: str, secret: str):
"""
Initialize token with key and secret.
Parameters:
- key: Token key
- secret: Token secret
"""
self.key: str
self.secret: str
class SignatureMethod_HMAC_SHA1:
"""HMAC-SHA1 signature method for OAuth."""
name: str = 'HMAC-SHA1'
def sign(self, request, consumer: Consumer, token: Token) -> str:
"""
Generate OAuth signature for request.
Parameters:
- request: Request object to sign
- consumer: OAuth consumer
- token: OAuth token
Returns:
Base64-encoded HMAC-SHA1 signature
"""
def check(self, request, consumer: Consumer, token: Token, signature: str) -> bool:
"""
Verify OAuth signature.
Parameters:
- request: Request object
- consumer: OAuth consumer
- token: OAuth token
- signature: Signature to verify
Returns:
True if signature is valid
"""
def signing_base(self, request, consumer: Consumer, token: Token):
"""
Generate the signing base for OAuth signature.
Parameters:
- request: Request object to sign
- consumer: OAuth consumer
- token: OAuth token
Returns:
Tuple of (key, raw) for signature generation
"""
class CustomSignatureMethod_HMAC_SHA1(SignatureMethod_HMAC_SHA1):
"""
Custom HMAC-SHA1 signature method that extends the base implementation
with OAuth-specific signing base generation.
"""
def signing_base(self, request, consumer: Consumer, token: Token) -> tuple:
"""
Generate the OAuth signature base string and signing key.
This method creates the signature base string according to OAuth 1.0
specification, combining HTTP method, normalized URL, and normalized parameters.
Parameters:
- request: Request object containing method, URL, and parameters
- consumer: OAuth consumer with secret for signing
- token: OAuth token with secret for signing (optional)
Returns:
Tuple of (signing_key, base_string) for HMAC-SHA1 signature generation
"""Utility Functions
def to_utf8(x):
"""
Convert input to UTF-8 encoding.
Parameters:
- x: String, unicode, or iterable containing strings
Returns:
UTF-8 encoded string or list of UTF-8 encoded strings
"""
def escape(url: str) -> str:
"""
URL escape string with safe='~' for OAuth parameter encoding.
Parameters:
- url: String to escape
Returns:
URL-escaped string
"""
def generate_verifier(length: int = 8) -> str:
"""
Generate random numeric verifier string for OAuth.
Parameters:
- length: Length of verifier (default: 8)
Returns:
Random numeric string
"""Error Handling
The package raises the following exceptions:
- ValueError: Raised for unsupported URL schemes (non-HTTP/HTTPS) in
get_normalized_url() - TypeError: May be raised for invalid parameter types during request processing
Dependencies
- requests >= 0.12.1: Python HTTP library for making requests
- Standard library modules: time, datetime, random, urllib, urlparse, binascii, hmac, hashlib/sha