Web lists-archives.com

Bug#866779: ITP: py-macaroon-bakery -- Higher-level macaroon operations for Python




Package: wnpp
Severity: wishlist
Owner: Colin Watson <cjwatson@xxxxxxxxxx>

* Package name    : py-macaroon-bakery
  Version         : 0.0.1
  Upstream Author : Juju UI Team <juju-gui@xxxxxxxxxxxxxxxx>
* URL             : https://github.com/go-macaroon-bakery/py-macaroon-bakery
* License         : LGPL-3
  Programming Lang: Python
  Description     : Higher-level macaroon operations for Python

 Macaroons, like cookies, are a form of bearer credential.  Unlike opaque
 tokens, macaroons embed caveats that define specific authorization
 requirements for the target service, the service that issued the root
 macaroon and which is capable of verifying the integrity of macaroons it
 receives.
 .
 Macaroons allow for delegation and attenuation of authorization.  They are
 simple and fast to verify, and decouple authorization policy from the
 enforcement of that policy.
 .
 The macaroonbakery library builds on pymacaroons to allow working with
 macaroons at a higher level, such as by automatically gathering discharge
 macaroons for third-party caveats from their corresponding services.

We already use pymacaroons extensively at work (Canonical; see #824554),
and we're likely to move in the direction of using this library for more
things rather than dealing with things like gathering SSO discharge
macaroons in ad-hoc ways.  Having this packaged would make life easier
there.

This has a test dependency on httmock, which I've also just ITPed.

I intend to maintain this within the Debian Python Modules Team.

-- 
Colin Watson                                       [cjwatson@xxxxxxxxxx]