tessl/pypi-requests-oauthlib
OAuthlib authentication support for Requests.
- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
- Describes
'%3e%3cpath%20d='M3.389%209.069c0-.009.043-.033.029-.044L.029%207.77l3.287-1.197L6.574%207.77l.106.083.005%204-3.297%201.185V9.068ZM13.582%209.32V2.74l3.405%201.238v4.104L13.583%209.32ZM10.253%2014.66l-3.476%201.268v-4.027l3.476-1.313v4.072ZM10.253%2010.558l-3.476%201.239V7.784l3.476-1.268v4.042ZM10.253%2014.719v3.968L6.777%2020v-3.998l3.476-1.283ZM17%208.139v4.042l-3.418%201.239V9.378L17%208.138ZM3.3%2017.168%200%2015.943v-4.027l3.3%201.224v4.028ZM6.69%2011.916v4.027l-3.302%201.225v-4.072l3.301-1.18ZM6.69%203.743v4.012l-3.33-1.21V2.564l3.33%201.18Z'/%3e%3cpath%20d='M3.3%2013.066%200%2011.842V7.844l3.3%201.224v3.998ZM13.524%209.334l-.175.088.175-.014v4.027l-3.152%201.183-.06-.032v-3.983l1.986-.767-.111.006-1.876.657V6.531l3.213-1.224v4.027Zm-.263.133c-.065.008-.198.023-.233.088.065-.008.198-.023.233-.088Zm-.321.118c-.065.008-.198.023-.233.088.065-.009.198-.023.233-.088Zm-.321.118c-.066.008-.199.023-.234.088.065-.008.199-.023.234-.088ZM13.524%201.266v3.968l-3.213%201.195V2.46l3.213-1.194ZM10.253%202.475v3.968L6.777%207.726V3.743l3.476-1.268ZM8.2%204.458c-.304.064-.627.5-.708.79-.27.963.636%201.081%201.091.364.277-.437.354-1.308-.383-1.154ZM13.524%2013.51v3.983l-3.17%201.177c-.011%200-.043-.067-.043-.07v-3.895l3.213-1.195Zm-.884%201.63c-.495.085-1.068%201.015-.676%201.435.483.517%201.502-.636%201.147-1.246-.098-.169-.286-.221-.47-.19ZM10.165%202.387l-.037.065-3.395%201.249-3.345-1.212L6.88%201.21l3.285%201.178ZM13.437%201.177l-.088.073-3.057%201.127-3.034-1.082-.277-.133L10.151%200l3.286%201.177Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h17v20H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
To install, run
npx @tessl/cli install tessl/pypi-requests-oauthlib@2.0.0index.mddocs/
Requests-OAuthlib
A first-class OAuth library that integrates OAuth 1.0a and OAuth 2.0 authentication support seamlessly with the Requests HTTP library. It provides session-based OAuth clients and authentication classes that handle token management, signature generation, and protocol-specific requirements automatically.
Package Information
- Package Name: requests-oauthlib
- Language: Python
- Installation:
pip install requests-oauthlib
Core Imports
from requests_oauthlib import OAuth1Session, OAuth2Session, OAuth1, OAuth2, __version__For OAuth 1.0 constants:
from oauthlib.oauth1 import SIGNATURE_HMAC, SIGNATURE_RSA, SIGNATURE_PLAIN
from oauthlib.oauth1 import SIGNATURE_TYPE_AUTH_HEADER, SIGNATURE_TYPE_QUERY, SIGNATURE_TYPE_BODYFor provider-specific compliance fixes:
from requests_oauthlib.compliance_fixes import facebook_compliance_fix, slack_compliance_fixBasic Usage
OAuth 1.0a Session Example
from requests_oauthlib import OAuth1Session
# Create OAuth 1 session
oauth = OAuth1Session(
'client_key',
client_secret='client_secret',
callback_uri='https://example.com/callback'
)
# Fetch request token
request_token_url = 'https://api.provider.com/oauth/request_token'
token = oauth.fetch_request_token(request_token_url)
# Get authorization URL
authorization_url = 'https://api.provider.com/oauth/authorize'
auth_url = oauth.authorization_url(authorization_url)
print(f'Please go to {auth_url} and authorize access.')
# After user authorization, fetch access token
access_token_url = 'https://api.provider.com/oauth/access_token'
access_token = oauth.fetch_access_token(access_token_url)
# Make authenticated requests
response = oauth.get('https://api.provider.com/protected_resource')OAuth 2.0 Session Example
from requests_oauthlib import OAuth2Session
# Create OAuth 2 session
oauth = OAuth2Session(
'client_id',
redirect_uri='https://example.com/callback',
scope=['read', 'write']
)
# Get authorization URL
authorization_url = 'https://api.provider.com/oauth/authorize'
auth_url, state = oauth.authorization_url(authorization_url)
print(f'Please go to {auth_url} and authorize access.')
# Fetch access token using authorization code
token_url = 'https://api.provider.com/oauth/token'
token = oauth.fetch_token(
token_url,
authorization_response='https://example.com/callback?code=AUTH_CODE&state=STATE'
)
# Make authenticated requests
response = oauth.get('https://api.provider.com/protected_resource')Architecture
The library follows a dual-layer architecture:
- Authentication Classes (
OAuth1,OAuth2): Low-level authentication handlers that implement therequests.auth.AuthBaseinterface for signing individual requests - Session Classes (
OAuth1Session,OAuth2Session): High-level workflow managers that extendrequests.Sessionwith OAuth-specific methods for token management and the complete authentication flow - Compliance Fixes: Provider-specific modifications to handle non-standard OAuth implementations
This design enables both simple authentication of existing requests and full OAuth workflow management through convenient session-based interfaces.
Capabilities
OAuth 1.0a Authentication
Comprehensive OAuth 1.0a support including request signing, token workflows, and session management with support for HMAC-SHA1, RSA-SHA1, and PLAINTEXT signature methods.
class OAuth1(requests.auth.AuthBase):
def __init__(
self,
client_key: str,
client_secret: str = None,
resource_owner_key: str = None,
resource_owner_secret: str = None,
callback_uri: str = None,
signature_method: str = SIGNATURE_HMAC,
signature_type: str = SIGNATURE_TYPE_AUTH_HEADER,
rsa_key: str = None,
verifier: str = None,
decoding: str = "utf-8",
client_class = None,
force_include_body: bool = False,
**kwargs
): ...
class OAuth1Session(requests.Session):
def __init__(
self,
client_key: str,
client_secret: str = None,
resource_owner_key: str = None,
resource_owner_secret: str = None,
callback_uri: str = None,
signature_method: str = SIGNATURE_HMAC,
signature_type: str = SIGNATURE_TYPE_AUTH_HEADER,
rsa_key: str = None,
verifier: str = None,
client_class = None,
force_include_body: bool = False,
**kwargs
): ...OAuth 2.0 Authentication
Full OAuth 2.0 support with automatic token refresh, PKCE extension, compliance hooks, and support for all standard grant types including Authorization Code, Implicit, Resource Owner Password, and Client Credentials.
class OAuth2(requests.auth.AuthBase):
def __init__(
self,
client_id: str = None,
client = None,
token: dict = None
): ...
class OAuth2Session(requests.Session):
def __init__(
self,
client_id: str = None,
client = None,
auto_refresh_url: str = None,
auto_refresh_kwargs: dict = None,
scope: list = None,
redirect_uri: str = None,
token: dict = None,
state = None,
token_updater = None,
pkce: str = None,
**kwargs
): ...Provider Compliance Fixes
Pre-built compliance fixes for popular OAuth providers that implement non-standard OAuth behaviors, enabling seamless integration with services like Facebook, Slack, Instagram, and others.
def facebook_compliance_fix(session: OAuth2Session) -> OAuth2Session: ...
def slack_compliance_fix(session: OAuth2Session) -> OAuth2Session: ...
def instagram_compliance_fix(session: OAuth2Session) -> OAuth2Session: ...
def mailchimp_compliance_fix(session: OAuth2Session) -> OAuth2Session: ...
def fitbit_compliance_fix(session: OAuth2Session) -> OAuth2Session: ...
def weibo_compliance_fix(session: OAuth2Session) -> OAuth2Session: ...
def plentymarkets_compliance_fix(session: OAuth2Session) -> OAuth2Session: ...
def ebay_compliance_fix(session: OAuth2Session) -> OAuth2Session: ...Types
class TokenRequestDenied(ValueError):
def __init__(self, message: str, response): ...
@property
def status_code(self) -> int: ...
class TokenMissing(ValueError):
def __init__(self, message: str, response): ...
class VerifierMissing(ValueError): ...
class TokenUpdated(Warning):
def __init__(self, token: dict): ...
# Package version constant
__version__: str = "2.0.0"Constants
# OAuth 1.0 Signature Methods
SIGNATURE_HMAC: str = "HMAC-SHA1"
SIGNATURE_RSA: str = "RSA-SHA1"
SIGNATURE_PLAIN: str = "PLAINTEXT"
# OAuth 1.0 Signature Types
SIGNATURE_TYPE_AUTH_HEADER: str = "AUTH_HEADER"
SIGNATURE_TYPE_QUERY: str = "QUERY"
SIGNATURE_TYPE_BODY: str = "BODY"