From 4d38f396bef7568b7e900af4d95cf50f633775ed Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sat, 15 Jul 2023 18:47:59 +0400
Subject: [PATCH 01/29] Make `redirect_uri` override `base_url` if set

---
 src/fastapi_oauth2/core.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/fastapi_oauth2/core.py b/src/fastapi_oauth2/core.py
index e8676de..f8d8ccf 100644
--- a/src/fastapi_oauth2/core.py
+++ b/src/fastapi_oauth2/core.py
@@ -58,6 +58,7 @@ def __init__(self, client: OAuth2Client) -> None:
         self.client_secret = client.client_secret
         self.scope = client.scope or self.scope
         self.provider = client.backend.name
+        self.redirect_uri = client.redirect_uri
         self.backend = client.backend(OAuth2Strategy())
         self.authorization_endpoint = client.backend.AUTHORIZATION_URL
         self.token_endpoint = client.backend.ACCESS_TOKEN_URL
@@ -115,7 +116,7 @@ async def get_token_data(self, request: Request) -> Optional[Dict[str, Any]]:
     async def token_redirect(self, request: Request) -> RedirectResponse:
         token_data = await self.get_token_data(request)
         access_token = request.auth.jwt_create(token_data)
-        response = RedirectResponse(request.base_url)
+        response = RedirectResponse(self.redirect_uri or request.base_url)
         response.set_cookie(
             "Authorization",
             value=f"Bearer {access_token}",

From 0b1ec580e46355c7ffc2d46b7dcfa39fc49a7fcb Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sat, 15 Jul 2023 20:17:43 +0400
Subject: [PATCH 02/29] Create a `User` model and API endpoints for creating
 and getting

---
 examples/demonstration/database.py | 21 +++++++++++++++++++++
 examples/demonstration/main.py     |  4 ++++
 examples/demonstration/models.py   | 23 +++++++++++++++++++++++
 examples/demonstration/router.py   | 18 ++++++++++++++++--
 4 files changed, 64 insertions(+), 2 deletions(-)
 create mode 100644 examples/demonstration/database.py
 create mode 100644 examples/demonstration/models.py

diff --git a/examples/demonstration/database.py b/examples/demonstration/database.py
new file mode 100644
index 0000000..a22915f
--- /dev/null
+++ b/examples/demonstration/database.py
@@ -0,0 +1,21 @@
+from sqlalchemy import create_engine
+from sqlalchemy.ext.declarative import declarative_base
+from sqlalchemy.orm import sessionmaker
+
+engine = create_engine(
+    "sqlite:///./database.sqlite",
+    connect_args={
+        "check_same_thread": False,
+    },
+)
+
+Base = declarative_base()
+SessionLocal = sessionmaker(bind=engine, autoflush=False)
+
+
+def get_db():
+    db = SessionLocal()
+    try:
+        yield db
+    finally:
+        db.close()
diff --git a/examples/demonstration/main.py b/examples/demonstration/main.py
index 1fd1291..d8648b8 100644
--- a/examples/demonstration/main.py
+++ b/examples/demonstration/main.py
@@ -2,10 +2,14 @@
 from fastapi import FastAPI
 
 from config import oauth2_config
+from database import Base
+from database import engine
 from fastapi_oauth2.middleware import OAuth2Middleware
 from fastapi_oauth2.router import router as oauth2_router
 from router import router as app_router
 
+Base.metadata.create_all(bind=engine)
+
 router = APIRouter()
 
 app = FastAPI()
diff --git a/examples/demonstration/models.py b/examples/demonstration/models.py
new file mode 100644
index 0000000..911b22a
--- /dev/null
+++ b/examples/demonstration/models.py
@@ -0,0 +1,23 @@
+from sqlalchemy import Column
+from sqlalchemy import Integer
+from sqlalchemy import String
+from sqlalchemy.orm import Session
+
+from database import Base
+
+
+class BaseModel(Base):
+    __abstract__ = True
+
+    def save(self, db: Session):
+        db.add(self)
+        db.commit()
+        db.refresh(self)
+        return self
+
+
+class User(BaseModel):
+    __tablename__ = "users"
+
+    id = Column(Integer, primary_key=True, index=True)
+    username = Column(String)
diff --git a/examples/demonstration/router.py b/examples/demonstration/router.py
index fb8cf24..090e5e7 100644
--- a/examples/demonstration/router.py
+++ b/examples/demonstration/router.py
@@ -1,12 +1,15 @@
 import json
 
+from fastapi import APIRouter
 from fastapi import Depends
 from fastapi import Request
-from fastapi import APIRouter
 from fastapi.responses import HTMLResponse
 from fastapi.templating import Jinja2Templates
+from sqlalchemy.orm import Session
 
+from database import get_db
 from fastapi_oauth2.security import OAuth2
+from models import User
 
 oauth2 = OAuth2()
 router = APIRouter()
@@ -19,5 +22,16 @@ async def root(request: Request):
 
 
 @router.get("/user")
-def user(request: Request, _: str = Depends(oauth2)):
+def user_get(request: Request, _: str = Depends(oauth2)):
     return request.user
+
+
+@router.get("/users")
+def users_get(request: Request, db: Session = Depends(get_db), _: str = Depends(oauth2)):
+    return db.query(User).all()
+
+
+@router.post("/users")
+async def users_post(request: Request, db: Session = Depends(get_db), _: str = Depends(oauth2)):
+    data = await request.json()
+    return User(**data).save(db)

From cc35c8f7ce43be92e6db16ee314da239e2853342 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Mon, 17 Jul 2023 19:52:43 +0400
Subject: [PATCH 03/29] Add an auth simulation

---
 examples/demonstration/router.py            | 22 +++++++++++++++++++++
 examples/demonstration/templates/index.html |  9 ++++++++-
 2 files changed, 30 insertions(+), 1 deletion(-)

diff --git a/examples/demonstration/router.py b/examples/demonstration/router.py
index 090e5e7..7a7fa72 100644
--- a/examples/demonstration/router.py
+++ b/examples/demonstration/router.py
@@ -6,6 +6,7 @@
 from fastapi.responses import HTMLResponse
 from fastapi.templating import Jinja2Templates
 from sqlalchemy.orm import Session
+from starlette.responses import RedirectResponse
 
 from database import get_db
 from fastapi_oauth2.security import OAuth2
@@ -21,6 +22,27 @@ async def root(request: Request):
     return templates.TemplateResponse("index.html", {"request": request, "user": request.user, "json": json})
 
 
+@router.get("/auth")
+def sim_auth(request: Request):
+    access_token = request.auth.jwt_create({
+        "id": 0,
+        "avatar_url": None,
+        "name": "John Doe",
+        "email": "john.doe@auth.sim",
+        "login": "JohnDoe",
+        "exp": 3689609839,
+    })
+    response = RedirectResponse("/")
+    response.set_cookie(
+        "Authorization",
+        value=f"Bearer {access_token}",
+        max_age=request.auth.expires,
+        expires=request.auth.expires,
+        httponly=request.auth.http,
+    )
+    return response
+
+
 @router.get("/user")
 def user_get(request: Request, _: str = Depends(oauth2)):
     return request.user
diff --git a/examples/demonstration/templates/index.html b/examples/demonstration/templates/index.html
index c42adf1..1768e05 100644
--- a/examples/demonstration/templates/index.html
+++ b/examples/demonstration/templates/index.html
@@ -12,8 +12,15 @@
     <div style="display: flex; align-items: center; margin: auto 50px auto auto;">
         {% if request.user.is_authenticated %}
             <a href="/oauth2/logout" style="text-decoration: none; color: #dfdfd6; margin-right: 20px;">Sign out</a>
-            <img style="height: 50px; width: 50px;" src="{{ request.user.avatar_url }}" alt="Pic">
+            {% if request.user.avatar_url %}
+                <img style="height: 50px; width: 50px;" src="{{ request.user.avatar_url }}" alt="Pic">
+            {% else %}
+                <img style="height: 50px; width: 50px;" src="data:image/jpeg;base64,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" alt="Pic">
+            {% endif %}
         {% else %}
+            <a href="/auth" style="display: flex; align-items: center; color: #dfdfd6; margin-right: 1rem; text-decoration: none;">
+                Simulate Login
+            </a>
             <a href="/oauth2/github/auth" style="display: flex; align-items: center;">
                 <svg style="height: 50px; width: 50px;" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16">
                     <path fill="#dfdfd6" d="M7.499,1C3.91,1,1,3.906,1,7.49c0,2.867,1.862,5.299,4.445,6.158C5.77,13.707,6,13.375,6,13.125 c0-0.154,0.003-0.334,0-0.875c-1.808,0.392-2.375-0.875-2.375-0.875c-0.296-0.75-0.656-0.963-0.656-0.963 c-0.59-0.403,0.044-0.394,0.044-0.394C3.666,10.064,4,10.625,4,10.625c0.5,0.875,1.63,0.791,2,0.625 c0-0.397,0.044-0.688,0.154-0.873C4.111,10.02,2.997,8.84,3,7.208c0.002-0.964,0.335-1.715,0.876-2.269 C3.639,4.641,3.479,3.625,3.961,3c1.206,0,1.927,0.873,1.927,0.873s0.565-0.248,1.61-0.248c1.045,0,1.608,0.234,1.608,0.234 S9.829,3,11.035,3c0.482,0.625,0.322,1.641,0.132,1.918C11.684,5.461,12,6.21,12,7.208c0,1.631-1.11,2.81-3.148,3.168 C8.982,10.572,9,10.842,9,11.25c0,0.867,0,1.662,0,1.875c0,0.25,0.228,0.585,0.558,0.522C12.139,12.787,14,10.356,14,7.49 C14,3.906,11.09,1,7.499,1z"></path>

From 7606da67826e551ccadfcb9eded140c6a680bc96 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Mon, 17 Jul 2023 23:40:05 +0400
Subject: [PATCH 04/29] Extend from `AuthCredentials` and `BaseUser`
 superclasses

---
 src/fastapi_oauth2/middleware.py | 27 +++++++++++++++++++--------
 1 file changed, 19 insertions(+), 8 deletions(-)

diff --git a/src/fastapi_oauth2/middleware.py b/src/fastapi_oauth2/middleware.py
index dc47017..f50e82e 100644
--- a/src/fastapi_oauth2/middleware.py
+++ b/src/fastapi_oauth2/middleware.py
@@ -9,7 +9,9 @@
 from fastapi.security.utils import get_authorization_scheme_param
 from jose.jwt import decode as jwt_decode
 from jose.jwt import encode as jwt_encode
+from starlette.authentication import AuthCredentials
 from starlette.authentication import AuthenticationBackend
+from starlette.authentication import BaseUser
 from starlette.middleware.authentication import AuthenticationMiddleware
 from starlette.requests import Request
 from starlette.types import ASGIApp
@@ -22,7 +24,7 @@
 from .core import OAuth2Core
 
 
-class Auth:
+class Auth(AuthCredentials):
     http: bool
     secret: str
     expires: int
@@ -30,9 +32,6 @@ class Auth:
     scopes: List[str]
     clients: Dict[str, OAuth2Core] = {}
 
-    def __init__(self, scopes: Optional[List[str]] = None) -> None:
-        self.scopes = scopes or []
-
     @classmethod
     def set_http(cls, http: bool) -> None:
         cls.http = http
@@ -67,13 +66,25 @@ def jwt_create(cls, token_data: dict) -> str:
         return cls.jwt_encode({**token_data, "exp": expire})
 
 
-class User(dict):
-    is_authenticated: bool
-
+class User(BaseUser, dict):
     def __init__(self, seq: Optional[dict] = None, **kwargs) -> None:
-        self.is_authenticated = seq is not None
+        self._is_authenticated = seq is not None
+        self._display_name = ""
+        self._identity = ""
         super().__init__(seq or {}, **kwargs)
 
+    @property
+    def is_authenticated(self) -> bool:
+        return self._is_authenticated
+
+    @property
+    def display_name(self) -> str:
+        return self._display_name
+
+    @property
+    def identity(self) -> str:
+        return self._identity
+
 
 class OAuth2Backend(AuthenticationBackend):
     def __init__(self, config: OAuth2Config) -> None:

From 124114072d38d67cc04c4069c9775f1ddc549c8b Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Mon, 17 Jul 2023 23:41:11 +0400
Subject: [PATCH 05/29] GH-9: Add `callback` argument to middleware

---
 src/fastapi_oauth2/middleware.py | 38 ++++++++++++++++++++++++++++----
 1 file changed, 34 insertions(+), 4 deletions(-)

diff --git a/src/fastapi_oauth2/middleware.py b/src/fastapi_oauth2/middleware.py
index f50e82e..80c1c5f 100644
--- a/src/fastapi_oauth2/middleware.py
+++ b/src/fastapi_oauth2/middleware.py
@@ -1,5 +1,7 @@
 from datetime import datetime
 from datetime import timedelta
+from typing import Awaitable
+from typing import Callable
 from typing import Dict
 from typing import List
 from typing import Optional
@@ -87,13 +89,20 @@ def identity(self) -> str:
 
 
 class OAuth2Backend(AuthenticationBackend):
-    def __init__(self, config: OAuth2Config) -> None:
+    """Authentication backend for AuthenticationMiddleware."""
+
+    def __init__(
+            self,
+            config: OAuth2Config,
+            callback: Callable[[User], Union[Awaitable[None], None]] = None,
+    ) -> None:
         Auth.set_http(config.allow_http)
         Auth.set_secret(config.jwt_secret)
         Auth.set_expires(config.jwt_expires)
         Auth.set_algorithm(config.jwt_algorithm)
         for client in config.clients:
             Auth.register_client(client)
+        self.callback = callback
 
     async def authenticate(self, request: Request) -> Optional[Tuple["Auth", "User"]]:
         authorization = request.headers.get(
@@ -106,18 +115,39 @@ async def authenticate(self, request: Request) -> Optional[Tuple["Auth", "User"]
             return Auth(), User()
 
         user = Auth.jwt_decode(param)
-        return Auth(user.pop("scope", [])), User(user)
+        auth, user = Auth(user.pop("scope", [])), User(user)
+
+        # Call the callback function on authentication
+        if callable(self.callback):
+            coroutine = self.callback(user)
+            if issubclass(type(coroutine), Awaitable):
+                await coroutine
+        return auth, user
 
 
 class OAuth2Middleware:
+    """Wrapper for the Starlette AuthenticationMiddleware."""
+
     auth_middleware: AuthenticationMiddleware = None
 
-    def __init__(self, app: ASGIApp, config: Union[OAuth2Config, dict]) -> None:
+    def __init__(
+            self,
+            app: ASGIApp,
+            config: Union[OAuth2Config, dict],
+            callback: Callable[[User], Union[Awaitable[None], None]] = None,
+            **kwargs,  # AuthenticationMiddleware kwargs
+    ) -> None:
+        """Initiates the middleware with the given configuration.
+
+        :param app: FastAPI application instance
+        :param config: middleware configuration
+        :param callback: callback function to be called after authentication
+        """
         if isinstance(config, dict):
             config = OAuth2Config(**config)
         elif not isinstance(config, OAuth2Config):
             raise TypeError("config is not a valid type")
-        self.auth_middleware = AuthenticationMiddleware(app, OAuth2Backend(config))
+        self.auth_middleware = AuthenticationMiddleware(app, backend=OAuth2Backend(config, callback), **kwargs)
 
     async def __call__(self, scope: Scope, receive: Receive, send: Send) -> None:
         await self.auth_middleware(scope, receive, send)

From 72b0a80852977f1df56538618fdfa6432de8c712 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Tue, 18 Jul 2023 22:08:15 +0400
Subject: [PATCH 06/29] GH-9: Finish up the implementation of `BaseUser`
 properties

---
 src/fastapi_oauth2/middleware.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/fastapi_oauth2/middleware.py b/src/fastapi_oauth2/middleware.py
index 80c1c5f..e97a98f 100644
--- a/src/fastapi_oauth2/middleware.py
+++ b/src/fastapi_oauth2/middleware.py
@@ -70,10 +70,10 @@ def jwt_create(cls, token_data: dict) -> str:
 
 class User(BaseUser, dict):
     def __init__(self, seq: Optional[dict] = None, **kwargs) -> None:
-        self._is_authenticated = seq is not None
-        self._display_name = ""
-        self._identity = ""
         super().__init__(seq or {}, **kwargs)
+        self._is_authenticated = seq is not None
+        self._identity = self.get("identity", "")
+        self._display_name = self.get("display_name", "")
 
     @property
     def is_authenticated(self) -> bool:

From 74a702e74116f52d664f9b13d0e791c834409bb1 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Tue, 18 Jul 2023 22:27:27 +0400
Subject: [PATCH 07/29] GH-9: Implement a data standardizer for converting
 fields to the common interface

---
 src/fastapi_oauth2/core.py | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/src/fastapi_oauth2/core.py b/src/fastapi_oauth2/core.py
index f8d8ccf..8ab6612 100644
--- a/src/fastapi_oauth2/core.py
+++ b/src/fastapi_oauth2/core.py
@@ -109,7 +109,7 @@ async def get_token_data(self, request: Request) -> Optional[Dict[str, Any]]:
         async with httpx.AsyncClient() as session:
             response = await session.post(token_url, headers=headers, content=content, auth=auth)
             token = self.oauth_client.parse_request_body_response(json.dumps(response.json()))
-            data = self.backend.user_data(token.get("access_token"))
+            data = self.standardize(self.backend.user_data(token.get("access_token")))
 
         return {**data, "scope": self.scope}
 
@@ -125,3 +125,8 @@ async def token_redirect(self, request: Request) -> RedirectResponse:
             httponly=request.auth.http,
         )
         return response
+
+    def standardize(self, data: Dict[str, Any]) -> Dict[str, Any]:
+        data["identity"] = "%s:%s" % (self.provider, data.get("id"))
+        data["display_name"] = data.get("name")
+        return data

From 32839692989f8c48ce091368294a563c3f6fa2bf Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Tue, 18 Jul 2023 22:29:07 +0400
Subject: [PATCH 08/29] Add new user fields in the user model

---
 examples/demonstration/models.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/examples/demonstration/models.py b/examples/demonstration/models.py
index 911b22a..ed86f45 100644
--- a/examples/demonstration/models.py
+++ b/examples/demonstration/models.py
@@ -21,3 +21,7 @@ class User(BaseModel):
 
     id = Column(Integer, primary_key=True, index=True)
     username = Column(String)
+    email = Column(String)
+    name = Column(String)
+    image = Column(String)
+    identity = Column(String, unique=True)  # provider_name:user_id

From d38d51321103f71c0ca3fce585c0d8a822244a22 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Tue, 18 Jul 2023 22:30:10 +0400
Subject: [PATCH 09/29] Fix the field names in mocked user data

---
 examples/demonstration/router.py | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/examples/demonstration/router.py b/examples/demonstration/router.py
index 7a7fa72..8656b1a 100644
--- a/examples/demonstration/router.py
+++ b/examples/demonstration/router.py
@@ -25,11 +25,12 @@ async def root(request: Request):
 @router.get("/auth")
 def sim_auth(request: Request):
     access_token = request.auth.jwt_create({
-        "id": 0,
-        "avatar_url": None,
-        "name": "John Doe",
+        "id": 1,
+        "identity": "demo:1",
+        "image": None,
+        "display_name": "John Doe",
         "email": "john.doe@auth.sim",
-        "login": "JohnDoe",
+        "username": "JohnDoe",
         "exp": 3689609839,
     })
     response = RedirectResponse("/")

From 2b2f0a5da80ba33faf2df52e59631a24afe2135a Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Tue, 18 Jul 2023 22:33:50 +0400
Subject: [PATCH 10/29] Showcase the usage of `callback` of the middleware
 Performing user onboarding - The callback sample checks for user's existence
 and creates if there is no such user with the given identity.

---
 examples/demonstration/main.py | 22 +++++++++++++++++++++-
 1 file changed, 21 insertions(+), 1 deletion(-)

diff --git a/examples/demonstration/main.py b/examples/demonstration/main.py
index d8648b8..036605d 100644
--- a/examples/demonstration/main.py
+++ b/examples/demonstration/main.py
@@ -1,18 +1,38 @@
 from fastapi import APIRouter
 from fastapi import FastAPI
+from sqlalchemy.orm import Session
 
 from config import oauth2_config
 from database import Base
 from database import engine
+from database import get_db
 from fastapi_oauth2.middleware import OAuth2Middleware
+from fastapi_oauth2.middleware import User
 from fastapi_oauth2.router import router as oauth2_router
+from models import User as UserModel
 from router import router as app_router
 
 Base.metadata.create_all(bind=engine)
 
 router = APIRouter()
 
+
+async def on_auth(user: User):
+    # perform a check for user existence in
+    # the database and create if not exists
+    db: Session = next(get_db())
+    query = db.query(UserModel)
+    if not query.filter_by(identity=user.identity).first():
+        UserModel(**{
+            "identity": user.get("identity"),
+            "username": user.get("username"),
+            "image": user.get("image"),
+            "email": user.get("email"),
+            "name": user.get("name"),
+        }).save(db)
+
+
 app = FastAPI()
 app.include_router(app_router)
 app.include_router(oauth2_router)
-app.add_middleware(OAuth2Middleware, config=oauth2_config)
+app.add_middleware(OAuth2Middleware, config=oauth2_config, callback=on_auth)

From e40321ecb4ffb62fcc24ddf66ce2b38232753d8f Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Thu, 20 Jul 2023 21:19:36 +0400
Subject: [PATCH 11/29] Add a TODO note for future

---
 src/fastapi_oauth2/core.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/fastapi_oauth2/core.py b/src/fastapi_oauth2/core.py
index 8ab6612..72bc73e 100644
--- a/src/fastapi_oauth2/core.py
+++ b/src/fastapi_oauth2/core.py
@@ -127,6 +127,9 @@ async def token_redirect(self, request: Request) -> RedirectResponse:
         return response
 
     def standardize(self, data: Dict[str, Any]) -> Dict[str, Any]:
+        # TODO: Create an issue for collecting all possible field names
+        #  and finish up this method and create a unit-test for each.
+        #  :https://github.com/python-social-auth/social-core/tree/master/social_core/backends
         data["identity"] = "%s:%s" % (self.provider, data.get("id"))
         data["display_name"] = data.get("name")
         return data

From 3b2b883962ad9659b7088248e01913dc434f18a4 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Thu, 20 Jul 2023 21:20:39 +0400
Subject: [PATCH 12/29] Remove the existing feature from the list of 'to be'

---
 README.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/README.md b/README.md
index ac8f71f..029bc88 100644
--- a/README.md
+++ b/README.md
@@ -13,7 +13,6 @@ the [social-core](https://github.com/python-social-auth/social-core) authenticat
 
 - Use multiple OAuth2 providers at the same time
     * There need to be provided a way to configure the OAuth2 for multiple providers
-- Token -> user data, user data -> token easy conversion
 - Customizable OAuth2 routes
 - Registration support
 

From d01395362ba5df55be50383c5a93a37d3cf4d733 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Thu, 20 Jul 2023 21:41:01 +0400
Subject: [PATCH 13/29] Add class description comments

---
 src/fastapi_oauth2/client.py | 2 ++
 src/fastapi_oauth2/config.py | 2 ++
 src/fastapi_oauth2/core.py   | 6 +++---
 3 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/src/fastapi_oauth2/client.py b/src/fastapi_oauth2/client.py
index b88e245..cef0d0a 100644
--- a/src/fastapi_oauth2/client.py
+++ b/src/fastapi_oauth2/client.py
@@ -6,6 +6,8 @@
 
 
 class OAuth2Client:
+    """OAuth2 client configuration for a single provider."""
+
     backend: Type[BaseOAuth2]
     client_id: str
     client_secret: str
diff --git a/src/fastapi_oauth2/config.py b/src/fastapi_oauth2/config.py
index 707ad66..3befc2b 100644
--- a/src/fastapi_oauth2/config.py
+++ b/src/fastapi_oauth2/config.py
@@ -6,6 +6,8 @@
 
 
 class OAuth2Config:
+    """Configuration class of the authentication middleware."""
+
     allow_http: bool
     jwt_secret: str
     jwt_expires: int
diff --git a/src/fastapi_oauth2/core.py b/src/fastapi_oauth2/core.py
index 72bc73e..a7244b4 100644
--- a/src/fastapi_oauth2/core.py
+++ b/src/fastapi_oauth2/core.py
@@ -20,12 +20,12 @@
 
 
 class OAuth2LoginError(HTTPException):
-    """Raised when any login-related error occurs
-    (such as when user is not verified or if there was an attempt for fake login)
-    """
+    """Raised when any login-related error occurs."""
 
 
 class OAuth2Strategy(BaseStrategy):
+    """Dummy strategy for using the `BaseOAuth2.user_data` method."""
+
     def request_data(self, merge=True):
         return {}
 

From 099ec02b78de8e46cb2d7279fa273ef503125a1b Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Thu, 20 Jul 2023 22:19:29 +0400
Subject: [PATCH 14/29] Add the missing typehints

---
 src/fastapi_oauth2/client.py     |  2 +-
 src/fastapi_oauth2/config.py     |  2 +-
 src/fastapi_oauth2/core.py       | 10 +++++-----
 src/fastapi_oauth2/middleware.py |  2 +-
 src/fastapi_oauth2/security.py   | 26 ++++++++++++++++----------
 5 files changed, 24 insertions(+), 18 deletions(-)

diff --git a/src/fastapi_oauth2/client.py b/src/fastapi_oauth2/client.py
index cef0d0a..3b7521d 100644
--- a/src/fastapi_oauth2/client.py
+++ b/src/fastapi_oauth2/client.py
@@ -22,7 +22,7 @@ def __init__(
             client_secret: str,
             redirect_uri: Optional[str] = None,
             scope: Optional[Sequence[str]] = None,
-    ):
+    ) -> None:
         self.backend = backend
         self.client_id = client_id
         self.client_secret = client_secret
diff --git a/src/fastapi_oauth2/config.py b/src/fastapi_oauth2/config.py
index 3befc2b..8eb4b85 100644
--- a/src/fastapi_oauth2/config.py
+++ b/src/fastapi_oauth2/config.py
@@ -22,7 +22,7 @@ def __init__(
             jwt_expires: Union[int, str] = 900,
             jwt_algorithm: str = "HS256",
             clients: List[OAuth2Client] = None,
-    ):
+    ) -> None:
         if allow_http:
             os.environ["OAUTHLIB_INSECURE_TRANSPORT"] = "1"
         self.allow_http = allow_http
diff --git a/src/fastapi_oauth2/core.py b/src/fastapi_oauth2/core.py
index a7244b4..b128b58 100644
--- a/src/fastapi_oauth2/core.py
+++ b/src/fastapi_oauth2/core.py
@@ -26,17 +26,17 @@ class OAuth2LoginError(HTTPException):
 class OAuth2Strategy(BaseStrategy):
     """Dummy strategy for using the `BaseOAuth2.user_data` method."""
 
-    def request_data(self, merge=True):
+    def request_data(self, merge=True) -> Dict[str, Any]:
         return {}
 
-    def absolute_uri(self, path=None):
+    def absolute_uri(self, path=None) -> str:
         return path
 
-    def get_setting(self, name):
-        return None
+    def get_setting(self, name) -> Any:
+        """Mocked setting method."""
 
     @staticmethod
-    def get_json(url, method='GET', *args, **kwargs):
+    def get_json(url, method='GET', *args, **kwargs) -> httpx.Response:
         return httpx.request(method, url, *args, **kwargs)
 
 
diff --git a/src/fastapi_oauth2/middleware.py b/src/fastapi_oauth2/middleware.py
index e97a98f..1e7dfa0 100644
--- a/src/fastapi_oauth2/middleware.py
+++ b/src/fastapi_oauth2/middleware.py
@@ -104,7 +104,7 @@ def __init__(
             Auth.register_client(client)
         self.callback = callback
 
-    async def authenticate(self, request: Request) -> Optional[Tuple["Auth", "User"]]:
+    async def authenticate(self, request: Request) -> Optional[Tuple[Auth, User]]:
         authorization = request.headers.get(
             "Authorization",
             request.cookies.get("Authorization"),
diff --git a/src/fastapi_oauth2/security.py b/src/fastapi_oauth2/security.py
index 4c6aeed..0ef8979 100644
--- a/src/fastapi_oauth2/security.py
+++ b/src/fastapi_oauth2/security.py
@@ -1,3 +1,7 @@
+from typing import Callable
+from typing import Optional
+from typing import Type
+
 from fastapi.security import OAuth2 as FastAPIOAuth2
 from fastapi.security import OAuth2AuthorizationCodeBearer as FastAPICodeBearer
 from fastapi.security import OAuth2PasswordBearer as FastAPIPasswordBearer
@@ -5,9 +9,11 @@
 from starlette.requests import Request
 
 
-def use_cookie(cls: FastAPIOAuth2):
-    def _use_cookie(*args, **kwargs):
-        async def __call__(self, request: Request):
+def use_cookies(cls: Type[FastAPIOAuth2]) -> Callable[[...], FastAPIOAuth2]:
+    """OAuth2 classes wrapped with this decorator will use cookies for the Authorization header."""
+
+    def _use_cookies(*args, **kwargs) -> FastAPIOAuth2:
+        async def __call__(self: FastAPIOAuth2, request: Request) -> Optional[str]:
             authorization = request.headers.get("Authorization", request.cookies.get("Authorization"))
             if authorization:
                 request._headers = Headers({**request.headers, "Authorization": authorization})
@@ -16,19 +22,19 @@ async def __call__(self, request: Request):
         cls.__call__ = __call__
         return cls(*args, **kwargs)
 
-    return _use_cookie
+    return _use_cookies
 
 
-@use_cookie
+@use_cookies
 class OAuth2(FastAPIOAuth2):
-    ...
+    """Wrapper class of the `fastapi.security.OAuth2` class."""
 
 
-@use_cookie
+@use_cookies
 class OAuth2PasswordBearer(FastAPIPasswordBearer):
-    ...
+    """Wrapper class of the `fastapi.security.OAuth2PasswordBearer` class."""
 
 
-@use_cookie
+@use_cookies
 class OAuth2AuthorizationCodeBearer(FastAPICodeBearer):
-    ...
+    """Wrapper class of the `fastapi.security.OAuth2AuthorizationCodeBearer` class."""

From 6d6c149a47a23f661bfe430c215dd17601a7973f Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Fri, 21 Jul 2023 09:38:30 +0400
Subject: [PATCH 15/29] Fix the typing for Python<3.10 versions

---
 src/fastapi_oauth2/security.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/fastapi_oauth2/security.py b/src/fastapi_oauth2/security.py
index 0ef8979..0f5d3b3 100644
--- a/src/fastapi_oauth2/security.py
+++ b/src/fastapi_oauth2/security.py
@@ -1,5 +1,8 @@
+from typing import Any
 from typing import Callable
+from typing import Dict
 from typing import Optional
+from typing import Tuple
 from typing import Type
 
 from fastapi.security import OAuth2 as FastAPIOAuth2
@@ -9,7 +12,7 @@
 from starlette.requests import Request
 
 
-def use_cookies(cls: Type[FastAPIOAuth2]) -> Callable[[...], FastAPIOAuth2]:
+def use_cookies(cls: Type[FastAPIOAuth2]) -> Callable[[Tuple[Any], Dict[str, Any]], FastAPIOAuth2]:
     """OAuth2 classes wrapped with this decorator will use cookies for the Authorization header."""
 
     def _use_cookies(*args, **kwargs) -> FastAPIOAuth2:

From 774512c0333e465d395a0b4e17a1610dbaa993f9 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sat, 22 Jul 2023 22:22:29 +0400
Subject: [PATCH 16/29] Merge dependent methods

---
 src/fastapi_oauth2/core.py | 19 ++++++-------------
 1 file changed, 6 insertions(+), 13 deletions(-)

diff --git a/src/fastapi_oauth2/core.py b/src/fastapi_oauth2/core.py
index b128b58..a532682 100644
--- a/src/fastapi_oauth2/core.py
+++ b/src/fastapi_oauth2/core.py
@@ -41,7 +41,7 @@ def get_json(url, method='GET', *args, **kwargs) -> httpx.Response:
 
 
 class OAuth2Core:
-    """Base class (mixin) for all SSO providers"""
+    """OAuth2 flow handler of a certain provider."""
 
     client_id: str = None
     client_secret: str = None
@@ -72,17 +72,14 @@ def oauth_client(self) -> WebApplicationClient:
     def get_redirect_uri(self, request: Request) -> str:
         return urljoin(str(request.base_url), "/oauth2/%s/token" % self.provider)
 
-    async def get_login_url(self, request: Request) -> Any:
+    async def login_redirect(self, request: Request) -> RedirectResponse:
         redirect_uri = self.get_redirect_uri(request)
         state = "".join([random.choice(string.ascii_letters) for _ in range(32)])
-        return self.oauth_client.prepare_request_uri(
+        return RedirectResponse(str(self.oauth_client.prepare_request_uri(
             self.authorization_endpoint, redirect_uri=redirect_uri, state=state, scope=self.scope
-        )
-
-    async def login_redirect(self, request: Request) -> RedirectResponse:
-        return RedirectResponse(await self.get_login_url(request), 303)
+        )), 303)
 
-    async def get_token_data(self, request: Request) -> Optional[Dict[str, Any]]:
+    async def token_redirect(self, request: Request) -> RedirectResponse:
         if not request.query_params.get("code"):
             raise OAuth2LoginError(400, "'code' parameter was not found in callback request")
         if not request.query_params.get("state"):
@@ -111,11 +108,7 @@ async def get_token_data(self, request: Request) -> Optional[Dict[str, Any]]:
             token = self.oauth_client.parse_request_body_response(json.dumps(response.json()))
             data = self.standardize(self.backend.user_data(token.get("access_token")))
 
-        return {**data, "scope": self.scope}
-
-    async def token_redirect(self, request: Request) -> RedirectResponse:
-        token_data = await self.get_token_data(request)
-        access_token = request.auth.jwt_create(token_data)
+        access_token = request.auth.jwt_create({**data, "scope": self.scope})
         response = RedirectResponse(self.redirect_uri or request.base_url)
         response.set_cookie(
             "Authorization",

From fe95111962baa926d8b9f586d85008993c80e6d9 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sun, 23 Jul 2023 21:36:49 +0400
Subject: [PATCH 17/29] GH-9: Add custom user properties and remove polymorph
 constructor

---
 src/fastapi_oauth2/middleware.py | 22 ++++++++++++++--------
 1 file changed, 14 insertions(+), 8 deletions(-)

diff --git a/src/fastapi_oauth2/middleware.py b/src/fastapi_oauth2/middleware.py
index 1e7dfa0..c5ea798 100644
--- a/src/fastapi_oauth2/middleware.py
+++ b/src/fastapi_oauth2/middleware.py
@@ -27,6 +27,8 @@
 
 
 class Auth(AuthCredentials):
+    """Extended auth credentials schema based on Starlette AuthCredentials."""
+
     http: bool
     secret: str
     expires: int
@@ -69,23 +71,27 @@ def jwt_create(cls, token_data: dict) -> str:
 
 
 class User(BaseUser, dict):
-    def __init__(self, seq: Optional[dict] = None, **kwargs) -> None:
-        super().__init__(seq or {}, **kwargs)
-        self._is_authenticated = seq is not None
-        self._identity = self.get("identity", "")
-        self._display_name = self.get("display_name", "")
+    """Extended user schema based on Starlette BaseUser."""
 
     @property
     def is_authenticated(self) -> bool:
-        return self._is_authenticated
+        return bool(self)
 
     @property
     def display_name(self) -> str:
-        return self._display_name
+        return self.get("display_name", "")  # name
 
     @property
     def identity(self) -> str:
-        return self._identity
+        return self.get("identity", "")  # username
+
+    @property
+    def picture(self) -> str:
+        return self.get("picture", "")  # image
+
+    @property
+    def email(self) -> str:
+        return self.get("email", "")  # email
 
 
 class OAuth2Backend(AuthenticationBackend):

From 367374ff36a751813dc095bbe998efcbd91e5c48 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Thu, 27 Jul 2023 23:55:12 +0400
Subject: [PATCH 18/29] GH-9: Implement the skeleton of claim declarator

---
 src/fastapi_oauth2/claims.py | 62 ++++++++++++++++++++++++++++++++++++
 1 file changed, 62 insertions(+)
 create mode 100644 src/fastapi_oauth2/claims.py

diff --git a/src/fastapi_oauth2/claims.py b/src/fastapi_oauth2/claims.py
new file mode 100644
index 0000000..27d9229
--- /dev/null
+++ b/src/fastapi_oauth2/claims.py
@@ -0,0 +1,62 @@
+from typing import Any
+from typing import Callable
+from typing import Union
+
+
+class Claims(dict):
+    """Claims configuration for a single provider."""
+
+    display_name: Union[str, Callable[[dict], Any]]
+    identity: Union[str, Callable[[dict], Any]]
+    picture: Union[str, Callable[[dict], Any]]
+    email: Union[str, Callable[[dict], Any]]
+
+    def __init__(self, seq=None, **kwargs) -> None:
+        super().__init__(seq or {}, **kwargs)
+        self.display_name = self.get("display_name", "name")
+        self.identity = self.get("identity", "sub")
+        self.picture = self.get("picture", "picture")
+        self.email = self.get("email", "email")
+
+    # @property
+    # def display_name(self) -> str:
+    #     return self.get("display_name", "")
+    #
+    # @display_name.setter
+    # def display_name(self, value: Union[Any, Callable[[dict], Any]]) -> None:
+    #     self["display_name"] = self._get_value(value)
+    #
+    # @property
+    # def identity(self) -> str:
+    #     return self.get("identity", "")
+    #
+    # @identity.setter
+    # def identity(self, value: Union[str, Callable[[dict], Any]]) -> None:
+    #     self["identity"] = self._get_value(value)
+    #
+    # @property
+    # def picture(self) -> str:
+    #     return self.get("picture", "")
+    #
+    # @picture.setter
+    # def picture(self, value: Union[str, Callable[[dict], Any]]) -> None:
+    #     self["picture"] = self._get_value(value)
+    #
+    # @property
+    # def email(self) -> str:
+    #     return self.get("email", "")
+    #
+    # @email.setter
+    # def email(self, value: Union[str, Callable[[dict], Any]]) -> None:
+    #     self["email"] = self._get_value(value)
+
+    def __getattr__(self, item):
+        attr = super().get(item)
+        if callable(attr):
+            return attr(self)
+        return self.get(attr)
+
+    # def _get_value(self, value: Union[str, Callable[[dict], Any]]) -> Any:
+    #     if callable(value):
+    #         return value(self)
+    #     return self.get(value, "")

From afcc936acabad566459c0e158e4082650b6c6e0c Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Thu, 27 Jul 2023 23:55:57 +0400
Subject: [PATCH 19/29] GH-9: Each client config can have its claim mappings

---
 src/fastapi_oauth2/client.py | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/src/fastapi_oauth2/client.py b/src/fastapi_oauth2/client.py
index 3b7521d..9db113c 100644
--- a/src/fastapi_oauth2/client.py
+++ b/src/fastapi_oauth2/client.py
@@ -1,9 +1,12 @@
 from typing import Optional
 from typing import Sequence
 from typing import Type
+from typing import Union
 
 from social_core.backends.oauth import BaseOAuth2
 
+from .claims import Claims
+
 
 class OAuth2Client:
     """OAuth2 client configuration for a single provider."""
@@ -13,6 +16,7 @@ class OAuth2Client:
     client_secret: str
     redirect_uri: Optional[str]
     scope: Optional[Sequence[str]]
+    claims: Optional[Union[Claims, dict]]
 
     def __init__(
             self,
@@ -22,9 +26,11 @@ def __init__(
             client_secret: str,
             redirect_uri: Optional[str] = None,
             scope: Optional[Sequence[str]] = None,
+            claims: Optional[Union[Claims, dict]] = None,
     ) -> None:
         self.backend = backend
         self.client_id = client_id
         self.client_secret = client_secret
         self.redirect_uri = redirect_uri
         self.scope = scope or []
+        self.claims = Claims(claims)

From 6cdfddccc42bdd82d81e5bbb65428241bc874b95 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Fri, 28 Jul 2023 18:36:02 +0400
Subject: [PATCH 20/29] GH-9: Fix init when `Claims` obtains `Claims` as a
 value

---
 src/fastapi_oauth2/claims.py | 51 +++---------------------------------
 1 file changed, 4 insertions(+), 47 deletions(-)

diff --git a/src/fastapi_oauth2/claims.py b/src/fastapi_oauth2/claims.py
index 27d9229..2f5ef68 100644
--- a/src/fastapi_oauth2/claims.py
+++ b/src/fastapi_oauth2/claims.py
@@ -13,50 +13,7 @@ class Claims(dict):
 
     def __init__(self, seq=None, **kwargs) -> None:
         super().__init__(seq or {}, **kwargs)
-        self.display_name = self.get("display_name", "name")
-        self.identity = self.get("identity", "sub")
-        self.picture = self.get("picture", "picture")
-        self.email = self.get("email", "email")
-
-    # @property
-    # def display_name(self) -> str:
-    #     return self.get("display_name", "")
-    #
-    # @display_name.setter
-    # def display_name(self, value: Union[Any, Callable[[dict], Any]]) -> None:
-    #     self["display_name"] = self._get_value(value)
-    #
-    # @property
-    # def identity(self) -> str:
-    #     return self.get("identity", "")
-    #
-    # @identity.setter
-    # def identity(self, value: Union[str, Callable[[dict], Any]]) -> None:
-    #     self["identity"] = self._get_value(value)
-    #
-    # @property
-    # def picture(self) -> str:
-    #     return self.get("picture", "")
-    #
-    # @picture.setter
-    # def picture(self, value: Union[str, Callable[[dict], Any]]) -> None:
-    #     self["picture"] = self._get_value(value)
-    #
-    # @property
-    # def email(self) -> str:
-    #     return self.get("email", "")
-    #
-    # @email.setter
-    # def email(self, value: Union[str, Callable[[dict], Any]]) -> None:
-    #     self["email"] = self._get_value(value)
-
-    def __getattr__(self, item):
-        attr = super().get(item)
-        if callable(attr):
-            return attr(self)
-        return self.get(attr)
-
-    # def _get_value(self, value: Union[str, Callable[[dict], Any]]) -> Any:
-    #     if callable(value):
-    #         return value(self)
-    #     return self.get(value, "")
+        self["display_name"] = kwargs.get("display_name", self.get("display_name", "name"))
+        self["identity"] = kwargs.get("identity", self.get("identity", "sub"))
+        self["picture"] = kwargs.get("picture", self.get("picture", "picture"))
+        self["email"] = kwargs.get("email", self.get("email", "email"))

From 49115c92b05141e77622b0d66a5d735032efc4df Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Fri, 28 Jul 2023 18:37:03 +0400
Subject: [PATCH 21/29] GH-9: Add the `claims` attribute

---
 src/fastapi_oauth2/core.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/fastapi_oauth2/core.py b/src/fastapi_oauth2/core.py
index a532682..0ee2109 100644
--- a/src/fastapi_oauth2/core.py
+++ b/src/fastapi_oauth2/core.py
@@ -16,6 +16,7 @@
 from starlette.requests import Request
 from starlette.responses import RedirectResponse
 
+from .claims import Claims
 from .client import OAuth2Client
 
 
@@ -47,6 +48,7 @@ class OAuth2Core:
     client_secret: str = None
     callback_url: Optional[str] = None
     scope: Optional[List[str]] = None
+    claims: Optional[Claims] = None
     backend: BaseOAuth2 = None
     _oauth_client: Optional[WebApplicationClient] = None
 
@@ -56,7 +58,8 @@ class OAuth2Core:
     def __init__(self, client: OAuth2Client) -> None:
         self.client_id = client.client_id
         self.client_secret = client.client_secret
-        self.scope = client.scope or self.scope
+        self.scope = client.scope
+        self.claims = client.claims
         self.provider = client.backend.name
         self.redirect_uri = client.redirect_uri
         self.backend = client.backend(OAuth2Strategy())

From ead1086db014aea70a5924f28e3dfdeb4621e73a Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Fri, 28 Jul 2023 18:37:58 +0400
Subject: [PATCH 22/29] GH-9: Add `provider` in the user entity

---
 src/fastapi_oauth2/core.py | 11 ++++-------
 1 file changed, 4 insertions(+), 7 deletions(-)

diff --git a/src/fastapi_oauth2/core.py b/src/fastapi_oauth2/core.py
index 0ee2109..a9e7291 100644
--- a/src/fastapi_oauth2/core.py
+++ b/src/fastapi_oauth2/core.py
@@ -109,9 +109,9 @@ async def token_redirect(self, request: Request) -> RedirectResponse:
         async with httpx.AsyncClient() as session:
             response = await session.post(token_url, headers=headers, content=content, auth=auth)
             token = self.oauth_client.parse_request_body_response(json.dumps(response.json()))
-            data = self.standardize(self.backend.user_data(token.get("access_token")))
+            token_data = self.standardize(self.backend.user_data(token.get("access_token")))
+            access_token = request.auth.jwt_create(token_data)
 
-        access_token = request.auth.jwt_create({**data, "scope": self.scope})
         response = RedirectResponse(self.redirect_uri or request.base_url)
         response.set_cookie(
             "Authorization",
@@ -123,9 +123,6 @@ async def token_redirect(self, request: Request) -> RedirectResponse:
         return response
 
     def standardize(self, data: Dict[str, Any]) -> Dict[str, Any]:
-        # TODO: Create an issue for collecting all possible field names
-        #  and finish up this method and create a unit-test for each.
-        #  :https://github.com/python-social-auth/social-core/tree/master/social_core/backends
-        data["identity"] = "%s:%s" % (self.provider, data.get("id"))
-        data["display_name"] = data.get("name")
+        data["provider"] = self.provider
+        data["scope"] = self.scope
         return data

From 86ff69f183487c472a3c4a955814f4c26f943e1a Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Fri, 28 Jul 2023 18:39:38 +0400
Subject: [PATCH 23/29] GH-9: Handle claims mapping for certain provider

---
 src/fastapi_oauth2/middleware.py | 40 +++++++++++++++++++++++++++-----
 1 file changed, 34 insertions(+), 6 deletions(-)

diff --git a/src/fastapi_oauth2/middleware.py b/src/fastapi_oauth2/middleware.py
index c5ea798..8291905 100644
--- a/src/fastapi_oauth2/middleware.py
+++ b/src/fastapi_oauth2/middleware.py
@@ -1,10 +1,12 @@
 from datetime import datetime
 from datetime import timedelta
+from typing import Any
 from typing import Awaitable
 from typing import Callable
 from typing import Dict
 from typing import List
 from typing import Optional
+from typing import Sequence
 from typing import Tuple
 from typing import Union
 
@@ -21,6 +23,7 @@
 from starlette.types import Scope
 from starlette.types import Send
 
+from .claims import Claims
 from .client import OAuth2Client
 from .config import OAuth2Config
 from .core import OAuth2Core
@@ -36,6 +39,17 @@ class Auth(AuthCredentials):
     scopes: List[str]
     clients: Dict[str, OAuth2Core] = {}
 
+    provider: str
+    default_provider: str = "local"
+
+    def __init__(
+            self,
+            scopes: Optional[Sequence[str]] = None,
+            provider: str = default_provider,
+    ) -> None:
+        super().__init__(scopes)
+        self.provider = provider
+
     @classmethod
     def set_http(cls, http: bool) -> None:
         cls.http = http
@@ -79,19 +93,29 @@ def is_authenticated(self) -> bool:
 
     @property
     def display_name(self) -> str:
-        return self.get("display_name", "")  # name
+        return self.__getprop__("display_name")
 
     @property
     def identity(self) -> str:
-        return self.get("identity", "")  # username
+        return self.__getprop__("identity")
 
     @property
     def picture(self) -> str:
-        return self.get("picture", "")  # image
+        return self.__getprop__("picture")
 
     @property
     def email(self) -> str:
-        return self.get("email", "")  # email
+        return self.__getprop__("email")
+
+    def use_claims(self, claims: Claims) -> "User":
+        for attr, item in claims.items():
+            self[attr] = self.__getprop__(item)
+        return self
+
+    def __getprop__(self, item, default="") -> Any:
+        if callable(item):
+            return item(self)
+        return self.get(item, default)
 
 
 class OAuth2Backend(AuthenticationBackend):
@@ -120,8 +144,12 @@ async def authenticate(self, request: Request) -> Optional[Tuple[Auth, User]]:
         if not scheme or not param:
             return Auth(), User()
 
-        user = Auth.jwt_decode(param)
-        auth, user = Auth(user.pop("scope", [])), User(user)
+        user = User(Auth.jwt_decode(param))
+        user.update(provider=user.get("provider", Auth.default_provider))
+        auth = Auth(user.pop("scope", []), user.get("provider"))
+        client = Auth.clients.get(auth.provider)
+        claims = client.claims if client else Claims()
+        user = user.use_claims(claims)
 
         # Call the callback function on authentication
         if callable(self.callback):

From 6cc5b611247b0927c72ee833bc53697ab13933ce Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Fri, 28 Jul 2023 18:40:50 +0400
Subject: [PATCH 24/29] Showcase the usage of `claims` config

---
 examples/demonstration/config.py            | 5 +++++
 examples/demonstration/main.py              | 2 +-
 examples/demonstration/templates/index.html | 6 +++---
 3 files changed, 9 insertions(+), 4 deletions(-)

diff --git a/examples/demonstration/config.py b/examples/demonstration/config.py
index c63b136..935c2b1 100644
--- a/examples/demonstration/config.py
+++ b/examples/demonstration/config.py
@@ -3,6 +3,7 @@
 from dotenv import load_dotenv
 from social_core.backends.github import GithubOAuth2
 
+from fastapi_oauth2.claims import Claims
 from fastapi_oauth2.client import OAuth2Client
 from fastapi_oauth2.config import OAuth2Config
 
@@ -20,6 +21,10 @@
             client_secret=os.getenv("OAUTH2_CLIENT_SECRET"),
             # redirect_uri="http://127.0.0.1:8000/",
             scope=["user:email"],
+            claims=Claims(
+                picture="avatar_url",
+                identity=lambda user: "%s:%s" % (user.get("provider"), user.get("id")),
+            ),
         ),
     ]
 )
diff --git a/examples/demonstration/main.py b/examples/demonstration/main.py
index 036605d..a48e607 100644
--- a/examples/demonstration/main.py
+++ b/examples/demonstration/main.py
@@ -22,7 +22,7 @@ async def on_auth(user: User):
     # the database and create if not exists
     db: Session = next(get_db())
     query = db.query(UserModel)
-    if not query.filter_by(identity=user.identity).first():
+    if user.identity and not query.filter_by(identity=user.identity).first():
         UserModel(**{
             "identity": user.get("identity"),
             "username": user.get("username"),
diff --git a/examples/demonstration/templates/index.html b/examples/demonstration/templates/index.html
index 1768e05..9a8b81d 100644
--- a/examples/demonstration/templates/index.html
+++ b/examples/demonstration/templates/index.html
@@ -12,8 +12,8 @@
     <div style="display: flex; align-items: center; margin: auto 50px auto auto;">
         {% if request.user.is_authenticated %}
             <a href="/oauth2/logout" style="text-decoration: none; color: #dfdfd6; margin-right: 20px;">Sign out</a>
-            {% if request.user.avatar_url %}
-                <img style="height: 50px; width: 50px;" src="{{ request.user.avatar_url }}" alt="Pic">
+            {% if request.user.picture %}
+                <img style="height: 50px; width: 50px;" src="{{ request.user.picture }}" alt="Pic">
             {% else %}
                 <img style="height: 50px; width: 50px;" src="data:image/jpeg;base64,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" alt="Pic">
             {% endif %}
@@ -32,7 +32,7 @@
 <section
         style="display: flex; flex-direction: column; align-items: center; justify-content: center; height: calc(100vh - 70px);">
     {% if request.user.is_authenticated %}
-        <h1>Hi, {{ request.user.name }}</h1>
+        <h1>Hi, {{ request.user.display_name }}</h1>
         <p>This is what your JWT contains currently</p>
         <pre>{{ json.dumps(request.user, indent=4) }}</pre>
     {% else %}

From ca1cc3ce418d57d32150afd4cbd5f9cc2f8491b5 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sat, 29 Jul 2023 17:22:01 +0400
Subject: [PATCH 25/29] GH-9: Add `Auth` to on-auth callback

---
 examples/demonstration/main.py   | 3 ++-
 src/fastapi_oauth2/middleware.py | 6 +++---
 2 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/examples/demonstration/main.py b/examples/demonstration/main.py
index a48e607..e657bf1 100644
--- a/examples/demonstration/main.py
+++ b/examples/demonstration/main.py
@@ -6,6 +6,7 @@
 from database import Base
 from database import engine
 from database import get_db
+from fastapi_oauth2.middleware import Auth
 from fastapi_oauth2.middleware import OAuth2Middleware
 from fastapi_oauth2.middleware import User
 from fastapi_oauth2.router import router as oauth2_router
@@ -17,7 +18,7 @@
 router = APIRouter()
 
 
-async def on_auth(user: User):
+async def on_auth(auth: Auth, user: User):
     # perform a check for user existence in
     # the database and create if not exists
     db: Session = next(get_db())
diff --git a/src/fastapi_oauth2/middleware.py b/src/fastapi_oauth2/middleware.py
index 8291905..c921f7b 100644
--- a/src/fastapi_oauth2/middleware.py
+++ b/src/fastapi_oauth2/middleware.py
@@ -124,7 +124,7 @@ class OAuth2Backend(AuthenticationBackend):
     def __init__(
             self,
             config: OAuth2Config,
-            callback: Callable[[User], Union[Awaitable[None], None]] = None,
+            callback: Callable[[Auth, User], Union[Awaitable[None], None]] = None,
     ) -> None:
         Auth.set_http(config.allow_http)
         Auth.set_secret(config.jwt_secret)
@@ -153,7 +153,7 @@ async def authenticate(self, request: Request) -> Optional[Tuple[Auth, User]]:
 
         # Call the callback function on authentication
         if callable(self.callback):
-            coroutine = self.callback(user)
+            coroutine = self.callback(auth, user)
             if issubclass(type(coroutine), Awaitable):
                 await coroutine
         return auth, user
@@ -168,7 +168,7 @@ def __init__(
             self,
             app: ASGIApp,
             config: Union[OAuth2Config, dict],
-            callback: Callable[[User], Union[Awaitable[None], None]] = None,
+            callback: Callable[[Auth, User], Union[Awaitable[None], None]] = None,
             **kwargs,  # AuthenticationMiddleware kwargs
     ) -> None:
         """Initiates the middleware with the given configuration.

From 6d60c55d83f75dd965eb1d4380268c1d0e8702f1 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sat, 29 Jul 2023 17:23:47 +0400
Subject: [PATCH 26/29] GH-9: Describe `claims` and add a usage example

---
 README.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/README.md b/README.md
index 029bc88..9cdbbc9 100644
--- a/README.md
+++ b/README.md
@@ -42,12 +42,14 @@ middleware configuration is declared with the `OAuth2Config` and `OAuth2Client`
 - `client_secret` - The OAuth2 client secret for the particular provider.
 - `redirect_uri` - The OAuth2 redirect URI to redirect to after success. Defaults to the base URL.
 - `scope` - The OAuth2 scope for the particular provider. Defaults to `[]`.
+- `claims` - Claims mapping for the certain provider.
 
 It is also important to mention that for the configured clients of the auth providers, the authorization URLs are
 accessible by the `/oauth2/{provider}/auth` path where the `provider` variable represents the exact value of the auth
 provider backend `name` attribute.
 
 ```python
+from fastapi_oauth2.claims import Claims
 from fastapi_oauth2.client import OAuth2Client
 from fastapi_oauth2.config import OAuth2Config
 from social_core.backends.github import GithubOAuth2
@@ -64,6 +66,10 @@ oauth2_config = OAuth2Config(
             client_secret=os.getenv("OAUTH2_CLIENT_SECRET"),
             redirect_uri="https://pysnippet.org/",
             scope=["user:email"],
+            claims=Claims(
+                picture="avatar_url",
+                identity=lambda user: "%s:%s" % (user.get("provider"), user.get("id")),
+            ),
         ),
     ]
 )

From 920d78d810e04856b0bd2f322bb894dd360a4e7a Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sun, 30 Jul 2023 20:39:54 +0400
Subject: [PATCH 27/29] GH-9: Remove 'Registration support' from to be list

---
 README.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/README.md b/README.md
index 9cdbbc9..490cbe2 100644
--- a/README.md
+++ b/README.md
@@ -14,7 +14,6 @@ the [social-core](https://github.com/python-social-auth/social-core) authenticat
 - Use multiple OAuth2 providers at the same time
     * There need to be provided a way to configure the OAuth2 for multiple providers
 - Customizable OAuth2 routes
-- Registration support
 
 ## Installation
 

From c5b6329a367caafc82773b10bb912d2cd5a38e8c Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sun, 30 Jul 2023 20:40:56 +0400
Subject: [PATCH 28/29] Upgrade the `fastapi` version for tox environment

---
 .github/workflows/tests.yml | 8 ++++----
 tox.ini                     | 4 ++--
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index 817762a..de2453a 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -32,13 +32,13 @@ jobs:
             env: py311-fastapi84
 
           - python: "3.7"
-            env: py37-fastapi99
+            env: py37-fastapi100
           - python: "3.9"
-            env: py39-fastapi99
+            env: py39-fastapi100
           - python: "3.10"
-            env: py310-fastapi99
+            env: py310-fastapi100
           - python: "3.11"
-            env: py311-fastapi99
+            env: py311-fastapi100
 
     steps:
       - uses: actions/checkout@v2
diff --git a/tox.ini b/tox.ini
index 9ec924f..7edde4a 100644
--- a/tox.ini
+++ b/tox.ini
@@ -1,11 +1,11 @@
 [tox]
 envlist =
     py{36,38,310,311}-fastapi68
-    py{37,39,310,311}-fastapi{84,99}
+    py{37,39,310,311}-fastapi{84,100}
 
 [testenv]
 deps =
-    fastapi99: fastapi>=0.99.0
+    fastapi100: fastapi>=0.100.0
     fastapi84: fastapi<=0.84.0
     fastapi68: fastapi<=0.68.1
     -r{toxinidir}/tests/requirements.txt

From b876221e567b5befaf9da417f09e434e6f3a1845 Mon Sep 17 00:00:00 2001
From: Artyom Vancyan <artyom.vancyan2000@gmail.com>
Date: Sun, 30 Jul 2023 20:41:40 +0400
Subject: [PATCH 29/29] Upgrade the version to `alpha.1`

---
 src/fastapi_oauth2/__init__.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/fastapi_oauth2/__init__.py b/src/fastapi_oauth2/__init__.py
index 5f1e750..a390618 100644
--- a/src/fastapi_oauth2/__init__.py
+++ b/src/fastapi_oauth2/__init__.py
@@ -1 +1 @@
-__version__ = "1.0.0-alpha"
+__version__ = "1.0.0-alpha.1"