Plotly Dash plugin to allow authentication through 3rd party OAuth providers.

James Holcombe

Last update: Dec 11, 2022

Related tags

Authentication python oauth oauth2 plotly auth dash external

Overview

dash-auth-external

Integrate your dashboards with 3rd parties and external OAuth providers.

Overview

Do you want to build a Plotly Dash app which pulls user data from Google, Spotify, Slack etc?

Dash-auth-external provides a simple interface to authenticate users through OAuth2 code flow. Allowing developers to serve user tailored content.

Installation

Dash-auth-external is distributed via PyPi

pip install dash-auth-external

Simple Usage

#using spotify as an example
AUTH_URL = "https://accounts.spotify.com/authorize"
TOKEN_URL = "https://accounts.spotify.com/api/token"
CLIENT_ID = "YOUR_CLIENT_ID"

# creating the instance of our auth class
auth = DashAuthExternal(AUTH_URL, TOKEN_URL, CLIENT_ID)

We then pass the flask server from this object to dash on init.

app = Dash(__name__, server= auth.server)

That's it! You can now define your layout and callbacks as usual.

To obtain your access token, call the get_token method of your Auth object. NOTE This can ONLY be done in the context of a dash callback.

app.layout = html.Div(
[
html.Div(id="example-output"), 
dcc.Input(id="example-input")
])

@app.callback(
Output("example-output", "children"),
Input("example-input", "value")
)
def example_callback(value):
    token = (
        auth.get_token()
    )  ##The token can only be retrieved in the context of a dash callback
    return token

Feature Roadmap

You might also like...

A generic, spec-compliant, thorough implementation of the OAuth request-signing logic

OAuthLib - Python Framework for OAuth1 & OAuth2 *A generic, spec-compliant, thorough implementation of the OAuth request-signing logic for Python 3.5+

2.5k Jan 1, 2023

Doing the OAuth dance with style using Flask, requests, and oauthlib.

Flask-Dance Doing the OAuth dance with style using Flask, requests, and oauthlib. Currently, only OAuth consumers are supported, but this project coul

915 Dec 28, 2022

This is a Python library for accessing resources protected by OAuth 2.0.

This is a client library for accessing resources protected by OAuth 2.0. Note: oauth2client is now deprecated. No more features will be added to the l

787 Dec 13, 2022

A Python library for OAuth 1.0/a, 2.0, and Ofly.

Rauth A simple Python OAuth 1.0/a, OAuth 2.0, and Ofly consumer library built on top of Requests. Features Supports OAuth 1.0/a, 2.0 and Ofly Service

1.6k Dec 8, 2022

The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.

Authlib The ultimate Python library in building OAuth and OpenID Connect servers. JWS, JWK, JWA, JWT are included. Authlib is compatible with Python2.

2.3k Feb 17, 2021

Doing the OAuth dance with style using Flask, requests, and oauthlib.

Flask-Dance Doing the OAuth dance with style using Flask, requests, and oauthlib. Currently, only OAuth consumers are supported, but this project coul

799 Feb 17, 2021

Doing the OAuth dance with style using Flask, requests, and oauthlib.

Flask-Dance Doing the OAuth dance with style using Flask, requests, and oauthlib. Currently, only OAuth consumers are supported, but this project coul

802 Feb 22, 2021

Phishing Abusing Microsoft 365 OAuth Authorization Flow

Microsoft365_devicePhish Abusing Microsoft 365 OAuth Authorization Flow for Phishing Attack This is a simple proof-of-concept script that allows an at

11 Dec 11, 2022

Abusing Microsoft 365 OAuth Authorization Flow for Phishing Attack

Microsoft365_devicePhish Abusing Microsoft 365 OAuth Authorization Flow for Phishing Attack This is a simple proof-of-concept script that allows an at

76 Jan 2, 2023

Comments

Outdated PYPI

Hi, I noticed that the master branch differs from the pypi version, when using the pypi version there is a dict error that appears which is resolved in the GitHub branch. Could you update the pypi version as well? Lastly, I keep getting a key error but as far as I can tell my token field name is correct. I am using O2Auth with openID connect.

token = auth.get_token()
File "auth.py", line 27, in get_token
raise KeyError(
KeyError: 'Header with name access_token not found in the flask request headers.'

Here is my method:

auth = DashAuthExternal(
                        external_auth_url= AUTH_URL,
                        external_token_url= TOKEN_URL,
                        client_id= CLIENT_ID,
                        with_pkce=True,
                        app_url= "http://127.0.0.1:8050",
                        redirect_suffix = "/redirect",
                        auth_suffix = "/",
                        home_suffix="/app",
                        client_secret= CLIENT_SECRET,
                        _secret_key= None,
                        auth_request_headers= None,
                        token_request_headers= None,
                        scope= ("openid profile"),
                        )

Could the error be caused by anything other than an incorrect token field name?

I also am getting this error if I try to go to /redirect after already authenticating, I am not sure if it is relevant or normal behavior after authentication.

File "/dash_auth_external/routes.py", line 76, in build_token_body
code = redirect_params["code"][0]
KeyError: 'code'

opened by John-LucaGIT 1

routes: do not override response headers

Response headers in dash-2.4 is not a dictionary but Headers. It also not ideal to override the member but amend values.

File "/home/alonbl/.local/lib/python3.10/site-packages/flask/app.py", line 1889, in process_response response = self.ensure_sync(func)(response) File "/home/alonbl/.local/lib/python3.10/site-packages/dash/dash.py", line 1820, in _after_request response.headers.add("Server-Timing", value) AttributeError: 'dict' object has no attribute 'add'

Signed-off-by: Alon Bar-Lev [email protected]

opened by alonbl 0

Releases(v0.2.4)

v0.2.4(Oct 19, 2022)
What's Changed

routes: do not override response headers by @alonbl in https://github.com/jamesholcombe/dash-auth-external/pull/3

Dev by @jamesholcombe in https://github.com/jamesholcombe/dash-auth-external/pull/5

New Contributors

@alonbl made their first contribution in https://github.com/jamesholcombe/dash-auth-external/pull/3

Full Changelog: https://github.com/jamesholcombe/dash-auth-external/compare/v0.2.3...v0.2.4
Source code(tar.gz)
Source code(zip)
v0.2.3(Jan 11, 2022)

Basic tests, PKCE support finished.
Source code(tar.gz)
Source code(zip)
v0.1(Jan 7, 2022)

Initial working release
Source code(tar.gz)
Source code(zip)
dash-auth-external-0.1.tar.gz(4.46 KB)
dash_auth_external-0.1-py3-none-any.whl(4.94 KB)

Owner

James Holcombe

Data Science Apprentice

GitHub https://pypi.org/project/dash-auth-external/

Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication.

Welcome to django-allauth! Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (soc

7.7k Jan 3, 2023

Toolkit for Pyramid, a Pylons Project, to add Authentication and Authorization using Velruse (OAuth) and/or a local database, CSRF, ReCaptcha, Sessions, Flash messages and I18N

Apex Authentication, Form Library, I18N/L10N, Flash Message Template (not associated with Pyramid, a Pylons project) Uses alchemy Authentication Authe

95 Nov 28, 2022

Plotly Dash plugin to allow authentication through 3rd party OAuth providers.

Related tags

Overview

dash-auth-external

Overview

Installation

Simple Usage

Feature Roadmap

You might also like...

A generic, spec-compliant, thorough implementation of the OAuth request-signing logic

Doing the OAuth dance with style using Flask, requests, and oauthlib.

This is a Python library for accessing resources protected by OAuth 2.0.

A Python library for OAuth 1.0/a, 2.0, and Ofly.

The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.

Doing the OAuth dance with style using Flask, requests, and oauthlib.

Doing the OAuth dance with style using Flask, requests, and oauthlib.

Phishing Abusing Microsoft 365 OAuth Authorization Flow

Abusing Microsoft 365 OAuth Authorization Flow for Phishing Attack

Comments

Outdated PYPI

routes: do not override response headers

Releases(v0.2.4)

v0.2.4(Oct 19, 2022)

What's Changed

New Contributors

v0.2.3(Jan 11, 2022)

v0.1(Jan 7, 2022)

Owner

James Holcombe

Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication.

Toolkit for Pyramid, a Pylons Project, to add Authentication and Authorization using Velruse (OAuth) and/or a local database, CSRF, ReCaptcha, Sessions, Flash messages and I18N

Simplifying third-party authentication for web applications.

Mock authentication API that acceccpts email and password and returns authentication result.

A JSON Web Token authentication plugin for the Django REST Framework.

A JSON Web Token authentication plugin for the Django REST Framework.

A JSON Web Token authentication plugin for the Django REST Framework.

The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.

A generic, spec-compliant, thorough implementation of the OAuth request-signing logic

A fully tested, abstract interface to creating OAuth clients and servers.