Python utility functions and Django/Flask middlewares for validating JWT tokens from Google's Identity-Aware Proxy

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for jeremyjbowers from gravatar.com jeremyjbowers Avatar for rshorey from gravatar.com rshorey

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache License 2.0
  • Author: Jeremy Bowers
  • Tags google , identity-aware , proxy , iap , jwt
Classifiers
Report project as malware

Project description

Validating JWT tokens from the Google Identity-Aware Proxy as middleware.

Install

pip install -e git+git@github.com:newsdev/nyt-pyiap.git

Usage

Django

Add to settings

Update your settings.py file to add the Django middleware.

MIDDLEWARE_CLASSES = [
  ...
  'pyiap.django.VerifyJWTMiddleware',
  ...
]

The request object in views.py will have two new attributes added: - request.jwt_user_id: The Google internal ID of the user who has been verified by IAP. - request.jwt_user_email: The email address and email type of the user who has been verified by IAP.

Flask

Update your Flask app.py to wrap your instantiated Flask() application’s wsgi_app with the VerifyJWTMiddleware.

app = Flask(__name__)
app.wsgi_app = VerifyJWTMiddleware(app.wsgi_app)

The request.environ object in app.py will have two new attributes added: - request.environ['jwt_user_id']: The Google internal ID of the user who has been verified by IAP. - request.environ['jwt_user_email']: The email address and email type of the user who has been verified by IAP.

Contributing

TBD.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page