suou/src/suou/signing.py

"""
Utilities for signing/integrity, on top of ItsDangerous.

---

Copyright (c) 2025 Sakuragasaki46.

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
See LICENSE for the specific language governing permissions and
limitations under the License.

This software is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
"""

from abc import ABC
from base64 import b64decode
from typing import Any, Callable
from itsdangerous import TimestampSigner

from .codecs import want_str
from .iding import Siq

class UserSigner(TimestampSigner):
    """
    itsdangerous.TimestampSigner() instanced from a user ID, with token generation and validation capabilities.
    """
    user_id: int
    def __init__(self, master_secret: bytes, user_id: int, user_secret: bytes, **kwargs):
        super().__init__(master_secret + user_secret, salt=Siq(user_id).to_bytes(), **kwargs)
        self.user_id = user_id
    def token(self) -> str:
        return self.sign(Siq(self.user_id).to_base64()).decode('ascii')
    @classmethod
    def split_token(cls, /, token: str | bytes) :
        a, b, c = want_str(token).rsplit('.', 2)
        return b64decode(a), b, b64decode(c)


class HasSigner(ABC):
    '''
    Abstract base class for INTERNAL USE.
    '''
    signer: Callable[Any, UserSigner]

    @classmethod
    def __instancehook__(cls, obj) -> bool:
        return callable(getattr(obj, 'signer', None))


__all__ = ('UserSigner', )
initial commit 2025-05-23 21:23:54 +02:00			`"""`
			`Utilities for signing/integrity, on top of ItsDangerous.`

			`---`

			`Copyright (c) 2025 Sakuragasaki46.`

			`Licensed under the Apache License, Version 2.0 (the "License");`
			`you may not use this file except in compliance with the License.`
			`See LICENSE for the specific language governing permissions and`
			`limitations under the License.`

			`This software is distributed on an "AS IS" BASIS,`
			`WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`"""`

add token loader, .flask_sqlalchemy, jsonencode(), base2048 2025-06-01 10:51:32 +02:00			`from abc import ABC`
			`from base64 import b64decode`
			`from typing import Any, Callable`
initial commit 2025-05-23 21:23:54 +02:00			`from itsdangerous import TimestampSigner`

add token loader, .flask_sqlalchemy, jsonencode(), base2048 2025-06-01 10:51:32 +02:00			`from .codecs import want_str`
			`from .iding import Siq`
initial commit 2025-05-23 21:23:54 +02:00
			`class UserSigner(TimestampSigner):`
			`"""`
add token loader, .flask_sqlalchemy, jsonencode(), base2048 2025-06-01 10:51:32 +02:00			`itsdangerous.TimestampSigner() instanced from a user ID, with token generation and validation capabilities.`
initial commit 2025-05-23 21:23:54 +02:00			`"""`
			`user_id: int`
			`def __init__(self, master_secret: bytes, user_id: int, user_secret: bytes, **kwargs):`
			`super().__init__(master_secret + user_secret, salt=Siq(user_id).to_bytes(), **kwargs)`
			`self.user_id = user_id`
			`def token(self) -> str:`
			`return self.sign(Siq(self.user_id).to_base64()).decode('ascii')`
add token loader, .flask_sqlalchemy, jsonencode(), base2048 2025-06-01 10:51:32 +02:00			`@classmethod`
			`def split_token(cls, /, token: str \| bytes) :`
			`a, b, c = want_str(token).rsplit('.', 2)`
			`return b64decode(a), b, b64decode(c)`


			`class HasSigner(ABC):`
			`'''`
			`Abstract base class for INTERNAL USE.`
			`'''`
			`signer: Callable[Any, UserSigner]`

			`@classmethod`
			`def __instancehook__(cls, obj) -> bool:`
			`return callable(getattr(obj, 'signer', None))`

initial commit 2025-05-23 21:23:54 +02:00
add token loader, .flask_sqlalchemy, jsonencode(), base2048 2025-06-01 10:51:32 +02:00			`__all__ = ('UserSigner', )`