proxystore.globus.manager¶
Globus Auth credential managers.
GlobusAuthManager
¶
Bases: Protocol
Protocol for a Globus Auth manager.
get_authorizer
¶
get_authorizer(resource_server: str) -> GlobusAuthorizer
Get authorizer for a specific resource server.
Raises:
-
LookupError
–if tokens for the resource server do not exist.
login
¶
Perform the authentication flow.
This method is idempotent meaning it will be a no-op if the user is already logged in.
Parameters:
Source code in proxystore/globus/manager.py
ConfidentialAppAuthManager
¶
ConfidentialAppAuthManager(
*,
client: ConfidentialAppAuthClient | None = None,
storage: SQLiteAdapter | None = None,
resource_server_scopes: (
dict[str, list[str]] | None
) = None
)
Globus confidential app (client identity) credential manager.
Parameters:
-
client
(ConfidentialAppAuthClient | None
, default:None
) –Optionally override the standard ProxyStore auth client.
-
storage
(SQLiteAdapter | None
, default:None
) –Optionally override the default token storage.
-
resource_server_scopes
(dict[str, list[str]] | None
, default:None
) –Mapping of resource server URLs to a list of scopes for that resource server. If unspecified, all basic scopes needed by ProxyStore components will be requested. This parameter can be used to request scopes for many resource server when
login()
is invoked.
Source code in proxystore/globus/manager.py
logged_in
property
¶
logged_in: bool
User has valid refresh tokens for necessary scopes.
This is always true for client identities.
get_authorizer
¶
get_authorizer(resource_server: str) -> GlobusAuthorizer
Get authorizer for a specific resource server.
Source code in proxystore/globus/manager.py
login
¶
Perform the authentication flow.
Client identities do not require a login flow so this is a no-op.
Parameters:
Source code in proxystore/globus/manager.py
logout
¶
Revoke and remove authentication tokens.
Source code in proxystore/globus/manager.py
NativeAppAuthManager
¶
NativeAppAuthManager(
*,
client: NativeAppAuthClient | None = None,
storage: SQLiteAdapter | None = None,
resource_server_scopes: (
dict[str, list[str]] | None
) = None
)
Globus native app credential manager.
Parameters:
-
client
(NativeAppAuthClient | None
, default:None
) –Optionally override the standard ProxyStore auth client.
-
storage
(SQLiteAdapter | None
, default:None
) –Optionally override the default token storage.
-
resource_server_scopes
(dict[str, list[str]] | None
, default:None
) –Mapping of resource server URLs to a list of scopes for that resource server. If unspecified, all basic scopes needed by ProxyStore components will be requested. This parameter can be used to request scopes for many resource server when
login()
is invoked.
Source code in proxystore/globus/manager.py
get_authorizer
¶
get_authorizer(resource_server: str) -> GlobusAuthorizer
Get authorizer for a specific resource server.
Raises:
-
LookupError
–if tokens for the resource server do not exist.
Source code in proxystore/globus/manager.py
login
¶
Perform the authentication flow.
This method is idempotent meaning it will be a no-op if the user is already logged in.
On log in, the user will be prompted to follow a link to authenticate on globus.org.
Parameters:
Source code in proxystore/globus/manager.py
logout
¶
Revoke and remove authentication tokens.