This project provides first-class OAuth library support for Requests.
OAuth 1 can seem overly complicated and it sure has its quirks. Luckily, requests_oauthlib hides most of these and let you focus at the task at hand.
Accessing protected resources using requests_oauthlib is as simple as:
>>> from requests_oauthlib import OAuth1Session
>>> twitter = OAuth1Session('client_key',
client_secret='client_secret',
resource_owner_key='resource_owner_key',
resource_owner_secret='resource_owner_secret')
>>> url = 'https://api.twitter.com/1/account/settings.json'
>>> r = twitter.get(url)
Before accessing resources you will need to obtain a few credentials from your provider (e.g. Twitter) and authorization from the user for whom you wish to retrieve resources for. You can read all about this in the full OAuth 1 workflow guide on RTD.
OAuth 2 is generally simpler than OAuth 1 but comes in more flavours. The most common being the Authorization Code Grant, also known as the WebApplication flow.
Fetching a protected resource after obtaining an access token can be extremely simple. However, before accessing resources you will need to obtain a few credentials from your provider (e.g. Google) and authorization from the user for whom you wish to retrieve resources for. You can read all about this in the full OAuth 2 workflow guide on RTD.
To install requests and requests_oauthlib you can use pip:
pip install requests requests-oauthlib
### Logger Configuration Framework
requests-oauthlib now includes a flexible framework for applying custom filters and configurations to the logger, enhancing control over logging behavior and improving security.
#### Custom Filters
Debug Mode Token Filter: To enhance security and provide more control over logging of sensitive information, requests-oauthlib introduces the Debug Mode Token Filter. This feature is controlled via the DEBUG_MODE_TOKEN_FILTER environment variable, allowing the suppression or masking of sensitive data in logs.
##### Configuring the Debug Mode Token Filter
- Environment Variable: DEBUG_MODE_TOKEN_FILTER
- Options: - DEFAULT: No alteration to logging behavior. - MASK: Masks sensitive tokens in logs. - SUPPRESS: Prevents logging of potentially sensitive information. (logger ignores these logs entirely)