[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
05/08: gnu: Add python-asgi-csrf.
From: |
guix-commits |
Subject: |
05/08: gnu: Add python-asgi-csrf. |
Date: |
Wed, 29 Mar 2023 13:37:45 -0400 (EDT) |
apteryx pushed a commit to branch master
in repository guix.
commit 4bff240e9b38e2398282a7f214e4a37be749e8f0
Author: Felix Gruber <felgru@posteo.net>
AuthorDate: Sun Mar 26 19:43:31 2023 +0000
gnu: Add python-asgi-csrf.
* gnu/packages/python-web.scm (python-asgi-csrf): New variable.
Signed-off-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
Modified-by: Maxim Cournoyer <maxim.cournoyer@gmail.com>
---
gnu/packages/python-web.scm | 39 +++++++++++++++++++++++++++++++++++++++
1 file changed, 39 insertions(+)
diff --git a/gnu/packages/python-web.scm b/gnu/packages/python-web.scm
index c16ba0d089..495e13acfe 100644
--- a/gnu/packages/python-web.scm
+++ b/gnu/packages/python-web.scm
@@ -570,6 +570,45 @@ communicate with each other, and positioned as an
asynchronous successor to
WSGI. This package includes libraries for implementing ASGI servers.")
(license license:bsd-3)))
+(define-public python-asgi-csrf
+ (package
+ (name "python-asgi-csrf")
+ (version "0.9")
+ (source (origin
+ (method git-fetch) ;for tests
+ (uri (git-reference
+ (url "https://github.com/simonw/asgi-csrf")
+ (commit version)))
+ (file-name (git-file-name name version))
+ (sha256
+ (base32
+ "1j134mjh0ff61rvkm3q67m463j1bhyxc9dwsdany3scnd4vsqqws"))))
+ (build-system pyproject-build-system)
+ (arguments
+ (list #:test-flags
+ ;; Provide a null config to avoid the extraneous dependency on
+ ;; python-pytest-coverage.
+ #~(list "-c" "/dev/null"
+ ;; Disable two failing tests (see:
+ ;; https://github.com/simonw/asgi-csrf/issues/24).
+ "-k" (string-append
+ "not (test_multipart "
+ "or test_multipart_failure_wrong_token)"))))
+ (propagated-inputs (list python-itsdangerous python-multipart))
+ (native-inputs (list python-asgi-lifespan
+ python-httpx
+ python-pytest
+ python-pytest-asyncio
+ python-starlette))
+ (home-page "https://github.com/simonw/asgi-csrf")
+ (synopsis "ASGI middleware for protecting against CSRF attacks")
+ (description "This Asynchronous Server Gateway Interface (ASGI)
+middleware protects against Cross-site request forgery (CSRF) attacks.
+It implements the Double Submit Cookie pattern, where a cookie is set
+that is then compared to a @code{csrftoken} hidden form field or a
+@code{x-csrftoken} HTTP header.")
+ (license license:asl2.0)))
+
(define-public python-asgi-lifespan
(package
(name "python-asgi-lifespan")
- branch master updated (a1d4e562f1 -> cd31437e9c), guix-commits, 2023/03/29
- 03/08: gnu: Add python-sqlite-utils., guix-commits, 2023/03/29
- 02/08: gnu: Add python-sqlite-fts4., guix-commits, 2023/03/29
- 04/08: gnu: Add python-asgi-lifespan., guix-commits, 2023/03/29
- 06/08: gnu: Add python-cogapp., guix-commits, 2023/03/29
- 05/08: gnu: Add python-asgi-csrf.,
guix-commits <=
- 01/08: gnu: python-trustme: Update to 0.9.0., guix-commits, 2023/03/29
- 07/08: gnu: python-pytest-7.1: Depend on python-pluggy-next., guix-commits, 2023/03/29
- 08/08: gnu: Add datasette., guix-commits, 2023/03/29