Bug#866779: ITP: py-macaroon-bakery -- Higher-level macaroon operations for Python
- Date: Sat, 1 Jul 2017 17:45:52 +0100
- From: Colin Watson <cjwatson@xxxxxxxxxx>
- Subject: Bug#866779: ITP: py-macaroon-bakery -- Higher-level macaroon operations for Python
Owner: Colin Watson <cjwatson@xxxxxxxxxx>
* Package name : py-macaroon-bakery
Version : 0.0.1
Upstream Author : Juju UI Team <juju-gui@xxxxxxxxxxxxxxxx>
* URL : https://github.com/go-macaroon-bakery/py-macaroon-bakery
* License : LGPL-3
Programming Lang: Python
Description : Higher-level macaroon operations for Python
Macaroons, like cookies, are a form of bearer credential. Unlike opaque
tokens, macaroons embed caveats that define specific authorization
requirements for the target service, the service that issued the root
macaroon and which is capable of verifying the integrity of macaroons it
Macaroons allow for delegation and attenuation of authorization. They are
simple and fast to verify, and decouple authorization policy from the
enforcement of that policy.
The macaroonbakery library builds on pymacaroons to allow working with
macaroons at a higher level, such as by automatically gathering discharge
macaroons for third-party caveats from their corresponding services.
We already use pymacaroons extensively at work (Canonical; see #824554),
and we're likely to move in the direction of using this library for more
things rather than dealing with things like gathering SSO discharge
macaroons in ad-hoc ways. Having this packaged would make life easier
This has a test dependency on httmock, which I've also just ITPed.
I intend to maintain this within the Debian Python Modules Team.
Colin Watson [cjwatson@xxxxxxxxxx]