cznic/public/: fred-inquisitor-1.2.0 metadata and description
inquisitor
| author | Jan MusĂlek |
| author_email | jan.musilek@nic.cz |
| classifiers |
|
| license | GPLv3+ |
| provides_extras | types |
| requires_dist |
|
| requires_python | ~=3.10 |
Because this project isn't in the mirror_whitelist,
no releases from root/pypi are included.
| File | Tox results | History |
|---|---|---|
fred-inquisitor-1.2.0.tar.gz
|
|
|
fred_inquisitor-1.2.0-py3-none-any.whl
|
|
FastAPI backend for verification portal.
Configuration
Inquisitor searches for configuration files in following order:
Configuration file set by --config option of a command.
Configuration file set by INQUISITOR_CONFIG environment variable.
~/.fred/inquisitor.conf
/etc/fred/inquisitor.conf
The configuration file is in YAML format with following options:
secret_key
Secret key used for cryptographic purposes. Do not disclose this to anyone! This setting is required.
access_token_expires
Number of seconds of expiry period of inquisitor access token. Default is 3600, i.e. one hour.
allowed_origins
Allowed origins of cross-site requests. See https://fastapi.tiangolo.com/tutorial/cors/#use-corsmiddleware Default is [].
registry_netloc
Network location, i.e. host and port, of server with the registry services. This setting is required.
registry_ssl_cert
Path to file with SSL root certificate. Default value is None, i.e. no SSL encryption.
logger_netloc
Network location, i.e. host and port, of the logger server. This setting is required.
logger_ssl_cert
Path to file with SSL root certificate. Default value is None, i.e. no SSL encryption.
verification_netloc
Network location, i.e. host and port, of the verification server. This setting is required.
verification_ssl_cert
Path to file with SSL root certificate. Default value is None, i.e. no SSL encryption.
redis_cache_cls
Dotted path to redis cache class. This should be either redis.asyncio.Redis, redis.asyncio.cluster.RedisCluster or any other cache class that implements compatible API. This setting is required.
redis_cache_options
Dictionary with keyword arguments passed to redis_cache_cls when creating the cache instance. Default is {}.
oidc
Dictionary with OIDC configuration. This setting is required. It has following items:
issuer: URL of OIDC identity provider, e.g. https://mojeid.cz/oidc/. This setting is required.
client_id: OIDC client ID. This setting is required.
client_secret: OIDC client secret. This setting is required.
max_letters
Maximum number of letters allowed to be sent for each verification. Default is 2.
logging
Logging configuration, see https://docs.python.org/library/logging.config.html for possible values. Default is None, i.e. use logging defaults.
sentry
Sentry settings in a nested structure. May contain following keys:
dsn contains data source name (DSN), see https://docs.sentry.io/product/sentry-basics/dsn-explainer/. If not provided, Sentry client is not set up.
environment may contain an environment identifier.
ca_certs may contain a path to CA certificates file.
ChangeLog
Unreleased
1.2.0 (2023-08-07)
Add set_contact_representative endpoint (#48)
Add representative to VerificationMethod enum (#51)
Add representative auth token endpoint (#50)
Upgrade to verifier 0.7 (#49)
Add new verification states (#52)
Add verify_token_by_representative endpoint (#53, #54)
Add resend_representative_letter endpoint (#55)
Bug fixes: * Fix PyYAML installation
1.1.0 (2023-06-14)
Split login view to /auth/token/ and /private/auth/token/ (#45)
Return HTTP status 403 instead of 401 if user has insufficient permissions (#46)
Add mojeid username to /oidc/last/ (#47)
1.0.0 (2023-05-23)
Initial version