requests-iamauth

Use AWS SigV4 authorization with requests

MIT License

Downloads
15.6K
Stars
6
Committers
1
View Code on GitHub
Ecosystems: Amazon Web Services

Requests IAMAuth

Use AWS SigV4 authorization with requests.

Accessing an API secured with IAM authorization in AWS API Gateway can be tricky.

This tool uses the built-in authorization strategy in requests to help you access your secured endpoints.

Installation

pip install requests-iamauth

Usage

Signing Version 4

AWS sigv4 is the current standard for signing requests bound for AWS services.

Use requests-iamauth to as an authorizer for the requests Python library:

import requests
from iamauth import Sigv4Auth

sigv4 = Sigv4Auth(
  service_name="execute-api",  # default
)

session = requests.Session()
session.auth = sigv4
session.get('https://abcdef0123.execute-api.us-east-2.amazonaws.com/my/api')

Override the default boto3 session by passing a custom one into the constructor for Sigv4Auth:

import boto3

sigv4 = Sigv4Auth(
  boto3_session=boto3.Session(),
)

Signing Version 4a

AWS sigv4a is an extension to the sigv4 signing process that enables signing requests bound for more than one region.

Note — at the time of this writing, the only API Gateway API type that appears to support the new sigv4a are REST APIs.

Use requests-iamauth to as an authorizer for the requests Python library:

import requests
from iamauth import Sigv4aAuth

sigv4a = Sigv4aAuth(
  service="execute-api",  # default
  region="*",             # default
)

session = requests.Session()
session.auth = sigv4a
session.get('https://abcdef0123.execute-api.us-east-2.amazonaws.com/my/api')

Override the default AWS credentials provider by passing a custom one into the constructor for Sigv4aAuth:

from botocore.compat import awscrt

sigv4a = Sigv4aAuth(
  credentials_provider=awscrt.auth.AwsCredentialsProvider.new_default_chain(),
)
Package Rankings
Top 15.72% on Pypi.org
Badges
Extracted from project README
pypi python pytest coverage maintainability
Related Projects
fetch-sigv4

Fetch AWS API Gateway with Signature Version 4 (Aws Sigv4)

02 Jul 2019 4
SigV4-for-AWS-IoT-embedded-sdk

AWS library to sign AWS HTTP requests with Signature Version 4 Signing Process.

03 Feb 2021 10
aws-sigv4-auth-cassandra-python-driver-plugin

A SigV4 authentication plugin for the open-source Python Driver for Apache Cassandra. Allows use ...

15 Oct 2020 6
awspolicy

Command-line tool for generating custom AWS IAM policies with ease. Specify services, resources, ...

09 Aug 2024 0
aws-signature-version-4

The buttoned-up and boring, but deeply analyzed, implementation of SigV4 in .NET

17 May 2019 74
aws-sigv4-auth-cassandra-nodejs-driver-plugin

A SigV4 authentication client side plugin for the open-source DataStax NodeJS Driver for Apache C...

15 Oct 2020 5
aws-vault

A vault for securely storing and accessing AWS credentials in development environments

11 Aug 2015 8,124
aws-cdk-github-oidc

CDK constructs to use OpenID Connect for authenticating your Github Action workflow with AWS IAM

31 Oct 2021 121
aws-msk-iam-sasl-signer-python

Amazon MSK Library in Python for SASL/OAUTHBEARER Auth

09 Jun 2023 32
terraform-aws-clickops-notifier

Get notified when actions are taken in the AWS Console.

12 Mar 2022 197
aws-sig

🔏 AWS sigv4, optimized for size

02 Feb 2018 7
example-aws-aad-sso

This integrates the AWS IAM Identity Center with the Azure AD as a SSO solution.

01 Mar 2023 4
swift-passkeys

An experiment building passkey-based auth with Swift and AWS

24 Dec 2022 17
terramate-aws-ecr-example

an example private container image repository hosted in the AWS Elastic Container Registry (ECR) ...

02 Mar 2024 5
aws-sigv4-auth-cassandra-java-driver-plugin

A SigV4 authentication plugin for the open-source DataStax Java Driver for Apache Cassandra. All...

24 Feb 2020 13