# FastAPI Wallet Authentication
fastapi-walletauth provides a simple way to authenticate users in FastAPI applications using a wallet.
It currently supports Ethereum and Solana wallets/signatures.
## Installation
```shell
pip install fastapi-walletauth
```
## Usage
Adding the authentication endpoints is as simple as importing the `authorization_routes` from `fastapi_walletauth`:
```python
from fastapi import FastAPI
from fastapi_walletauth import jwt_authorization_router
app = FastAPI()
app.include_router(jwt_authorization_router)
```
This will add the following endpoints to your application:
- `POST /authentication/challenge`: Returns a challenge for the user to sign
- `POST /authentication/solve`: Returns a Bearer token if the signature is valid
- `POST /authentication/logout`: Invalidates the current token
- `POST /authentication/refresh`: Returns a new token if the current token is valid
You can then use `WalletAuthDep` to protect your endpoints:
```python
from fastapi import FastAPI
from fastapi_walletauth import JWTWalletAuthDep, jwt_authorization_router
app = FastAPI()
app.include_router(jwt_authorization_router)
@app.get("/protected")
def protected(wa: JWTWalletAuthDep):
return wa.address
```
## Signing the challenge
The challenge is a serialized JSON object containing the following fields:
```python
message = {
"chain": "ETH",
"address": "0x...",
"app": "myapp",
"time": 1688819493.8691394
}
```
**PLEASE NOTE**: The `app` field needs to be set to the name of your application. This is used to prevent replay attacks.
```shell
export FASTAPI_WALLETAUTH_APP=myapp
```
The signature format depends on the wallet type and is specified in the `chain` field. This signature is then sent to the
`/authentication/solve` endpoint to obtain a Bearer token.
## Liability
This software is provided "as is" and "with all faults." I make no representations or warranties of any kind concerning
the safety, suitability, inaccuracies, typographical errors, or other harmful components of this
software. There are inherent dangers in the use of any software, especially cryptographic implementations. You are solely
responsible for determining whether this software is compatible with your machine and other software installed on your
computer. You are also solely responsible for the choice of a wallet and the security of your private keys. You
acknowledge and agree to waive any liability claim against me from any loss or damage of any kind arising out of or in
connection with your use of this software.
Raw data
{
"_id": null,
"home_page": null,
"name": "fastapi-walletauth",
"maintainer": null,
"docs_url": null,
"requires_python": "<4.0,>=3.8.1",
"maintainer_email": null,
"keywords": "FastAPI, authentication, signature, wallet, ethereum, solana, web3, jwt",
"author": "mhh",
"author_email": "mike.hukiewitz@robotter.ai",
"download_url": "https://files.pythonhosted.org/packages/ac/29/b1610cdffe93a5b3ac5b60323b5753da75bd2d57bf2da3eed3b96c95bb48/fastapi_walletauth-1.2.3.tar.gz",
"platform": null,
"description": "# FastAPI Wallet Authentication\n\nfastapi-walletauth provides a simple way to authenticate users in FastAPI applications using a wallet.\nIt currently supports Ethereum and Solana wallets/signatures.\n\n## Installation\n\n```shell\npip install fastapi-walletauth\n```\n\n## Usage\n\nAdding the authentication endpoints is as simple as importing the `authorization_routes` from `fastapi_walletauth`:\n\n```python\nfrom fastapi import FastAPI\nfrom fastapi_walletauth import jwt_authorization_router\n\napp = FastAPI()\n\napp.include_router(jwt_authorization_router)\n```\n\nThis will add the following endpoints to your application:\n\n- `POST /authentication/challenge`: Returns a challenge for the user to sign\n- `POST /authentication/solve`: Returns a Bearer token if the signature is valid\n- `POST /authentication/logout`: Invalidates the current token\n- `POST /authentication/refresh`: Returns a new token if the current token is valid\n\nYou can then use `WalletAuthDep` to protect your endpoints:\n\n```python\nfrom fastapi import FastAPI\nfrom fastapi_walletauth import JWTWalletAuthDep, jwt_authorization_router\n\napp = FastAPI()\napp.include_router(jwt_authorization_router)\n\n@app.get(\"/protected\")\ndef protected(wa: JWTWalletAuthDep):\n return wa.address\n```\n\n## Signing the challenge\n\nThe challenge is a serialized JSON object containing the following fields:\n\n```python\nmessage = {\n \"chain\": \"ETH\",\n \"address\": \"0x...\",\n \"app\": \"myapp\",\n \"time\": 1688819493.8691394\n}\n```\n\n**PLEASE NOTE**: The `app` field needs to be set to the name of your application. This is used to prevent replay attacks.\n```shell\nexport FASTAPI_WALLETAUTH_APP=myapp\n```\n\nThe signature format depends on the wallet type and is specified in the `chain` field. This signature is then sent to the\n`/authentication/solve` endpoint to obtain a Bearer token.\n\n## Liability\n\nThis software is provided \"as is\" and \"with all faults.\" I make no representations or warranties of any kind concerning\nthe safety, suitability, inaccuracies, typographical errors, or other harmful components of this\nsoftware. There are inherent dangers in the use of any software, especially cryptographic implementations. You are solely\nresponsible for determining whether this software is compatible with your machine and other software installed on your\ncomputer. You are also solely responsible for the choice of a wallet and the security of your private keys. You\nacknowledge and agree to waive any liability claim against me from any loss or damage of any kind arising out of or in\nconnection with your use of this software.",
"bugtrack_url": null,
"license": null,
"summary": "FastAPI extension for user authentication through signature challenges",
"version": "1.2.3",
"project_urls": null,
"split_keywords": [
"fastapi",
" authentication",
" signature",
" wallet",
" ethereum",
" solana",
" web3",
" jwt"
],
"urls": [
{
"comment_text": "",
"digests": {
"blake2b_256": "9682e3727cbe6e23d95b8900b3c3b0522b6e65c316a0e108971f429c8cc8e50c",
"md5": "ee4e09c5e6ebd5f73c7ccce6fea264d5",
"sha256": "4771e53e6320eae5d1eeb56f1b530e95076fecda867ccdb9c66401ed14dc07d8"
},
"downloads": -1,
"filename": "fastapi_walletauth-1.2.3-py3-none-any.whl",
"has_sig": false,
"md5_digest": "ee4e09c5e6ebd5f73c7ccce6fea264d5",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": "<4.0,>=3.8.1",
"size": 9216,
"upload_time": "2024-10-05T04:54:38",
"upload_time_iso_8601": "2024-10-05T04:54:38.754645Z",
"url": "https://files.pythonhosted.org/packages/96/82/e3727cbe6e23d95b8900b3c3b0522b6e65c316a0e108971f429c8cc8e50c/fastapi_walletauth-1.2.3-py3-none-any.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": "",
"digests": {
"blake2b_256": "ac29b1610cdffe93a5b3ac5b60323b5753da75bd2d57bf2da3eed3b96c95bb48",
"md5": "f5b8bb86dd767e4d3acb3339b01e4fcc",
"sha256": "4a41fc2c27a6cabccd9c38fabd78dfb3acc57b49e6a89527963dffb07d72bd25"
},
"downloads": -1,
"filename": "fastapi_walletauth-1.2.3.tar.gz",
"has_sig": false,
"md5_digest": "f5b8bb86dd767e4d3acb3339b01e4fcc",
"packagetype": "sdist",
"python_version": "source",
"requires_python": "<4.0,>=3.8.1",
"size": 7761,
"upload_time": "2024-10-05T04:54:40",
"upload_time_iso_8601": "2024-10-05T04:54:40.476321Z",
"url": "https://files.pythonhosted.org/packages/ac/29/b1610cdffe93a5b3ac5b60323b5753da75bd2d57bf2da3eed3b96c95bb48/fastapi_walletauth-1.2.3.tar.gz",
"yanked": false,
"yanked_reason": null
}
],
"upload_time": "2024-10-05 04:54:40",
"github": false,
"gitlab": false,
"bitbucket": false,
"codeberg": false,
"lcname": "fastapi-walletauth"
}
JSON