Accepting request 1274078 from devel:languages:python

- Add 767-skip-xc20p-tests.patch to skip unavailable tests
  (gh#authlib/authlib#456).

OBS-URL: https://build.opensuse.org/request/show/1274078
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/python-Authlib?expand=0&rev=23

767-skip-xc20p-tests.patch

@@ -0,0 +1,39 @@
+From 8f823db3fe552b8337cce1eb4ec4207411c63d0b Mon Sep 17 00:00:00 2001
+From: =?UTF-8?q?=C3=89loi=20Rivard?= <eloi@yaal.coop>
+Date: Thu, 1 May 2025 10:04:21 +0200
+Subject: [PATCH] fix: skip xc20p unit tests when unavailable in cryptodome
+
+---
+ tests/jose/test_chacha20.py |    6 ++++++
+ 1 file changed, 6 insertions(+)
+
+Index: authlib-1.5.2/tests/jose/test_chacha20.py
+===================================================================
+--- authlib-1.5.2.orig/tests/jose/test_chacha20.py	2025-04-02 12:30:25.000000000 +0200
++++ authlib-1.5.2/tests/jose/test_chacha20.py	2025-05-02 18:21:41.958090585 +0200
+@@ -1,5 +1,7 @@
+ import unittest
+ 
++import pytest
++
+ from authlib.jose import JsonWebEncryption
+ from authlib.jose import OctKey
+ from authlib.jose.drafts import register_jwe_draft
+@@ -22,6 +24,8 @@
+         self.assertRaises(ValueError, jwe.serialize_compact, protected, b"hello", key2)
+ 
+     def test_dir_alg_xc20p(self):
++        pytest.importorskip("Cryptodome.Cipher.ChaCha20_Poly1305")
++
+         jwe = JsonWebEncryption()
+         key = OctKey.generate_key(256, is_private=True)
+         protected = {"alg": "dir", "enc": "XC20P"}
+@@ -35,6 +39,8 @@
+         self.assertRaises(ValueError, jwe.serialize_compact, protected, b"hello", key2)
+ 
+     def test_xc20p_content_encryption_decryption(self):
++        pytest.importorskip("Cryptodome.Cipher.ChaCha20_Poly1305")
++
+         # https://datatracker.ietf.org/doc/html/draft-irtf-cfrg-xchacha-03#appendix-A.3.1
+         enc = JsonWebEncryption.ENC_REGISTRY["XC20P"]
+ 

authlib-1.3.1.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:a8a74e0f1179318bbf898082ad0565f30b1d63bbed7b370529a395d5912380e3
-size 319831

authlib-1.5.2.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:6f94a1259f69645d6d6c4ecf9a8f32a9c3e2b2d2e6b8163cc90bc0e4a7245939
+size 331162

python-Authlib.changes

@@ -1,3 +1,80 @@
+-------------------------------------------------------------------
+Fri May  2 21:29:54 UTC 2025 - Matej Cepl <mcepl@cepl.eu>
+
+- Add 767-skip-xc20p-tests.patch to skip unavailable tests
+  (gh#authlib/authlib#456).
+
+-------------------------------------------------------------------
+Wed Apr 23 10:49:33 UTC 2025 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to 1.5.2
+  * Forbid fragments in ``redirect_uris``. :issue:`714`
+  * Fix invalid characters in ``error_description``. :issue:`720`
+  * Add ``claims_cls``` parameter for client's ``parse_id_token``
+    method. :issue:`725`
+
+-------------------------------------------------------------------
+Mon Apr 14 05:42:44 UTC 2025 - Steve Kowalik <steven.kowalik@suse.com>
+
+- Support both lowercased and unnormalized metadata directory names.
+
+-------------------------------------------------------------------
+Wed Mar 26 00:26:31 UTC 2025 - Steve Kowalik <steven.kowalik@suse.com>
+
+- Lowercase metadata directory name.
+
+-------------------------------------------------------------------
+Sun Mar 23 21:41:44 UTC 2025 - Dirk Müller <dmueller@suse.com>
+
+- update to 1.5.1:
+  * Fix RFC9207 iss parameter.
+  * Fix token introspection auth method for clients.
+  * Optional typ claim in JWT tokens.
+  * JWT validation leeway.
+  * Implement server-side :rfc:`RFC9207 <9207>`.
+  * generate_id_token can take a kid parameter.
+  * More detailed InvalidClientError.
+  * OpenID Connect Dynamic Client Registration implementation.
+
+-------------------------------------------------------------------
+Thu Feb  6 11:41:00 UTC 2025 - John Paul Adrian Glaubitz <adrian.glaubitz@suse.com>
+
+- Update to 1.4.1
+  * Improve garbage collection on OAuth clients. (#698)
+  * Fix client parameters for httpx. (#694)
+
+-------------------------------------------------------------------
+Fri Jan 24 18:21:06 UTC 2025 - ecsos <ecsos@opensuse.org>
+
+- Update to 1.4.0
+  * Fix id_token decoding when kid is null. :pr:`659`
+  * Support for Python 3.13. :pr:`682`
+  * Force login if the prompt parameter value is login. :pr:`637`
+  * Support for httpx 0.28, :pr:`695`
+  * Breaking changes:
+    - Stop support for Python 3.8. :pr:`682`
+- Drop py313-tests.patch, because now in upstream.
+- Drop httpx028.patch, because now in upstream.
+
+-------------------------------------------------------------------
+Thu Dec 19 13:57:51 UTC 2024 - Markéta Machová <mmachova@suse.com>
+
+- Add httpx028.patch to add compatibility with new httpx
+
+-------------------------------------------------------------------
+Thu Oct 31 09:13:27 UTC 2024 - Dirk Müller <dmueller@suse.com>
+
+- add py313-tests.patch
+- modernize spec file
+
+-------------------------------------------------------------------
+Sat Sep 28 20:03:15 UTC 2024 - Dirk Müller <dmueller@suse.com>
+
+- update to 1.3.2:
+  * Prevent ever-growing session size for OAuth clients.
+  * Revert quote client id and secret.
+  * unquote basic auth header for authorization server.
+
 -------------------------------------------------------------------
 Mon Jun 10 11:05:10 UTC 2024 - Daniel Garcia <daniel.garcia@suse.com>
 

python-Authlib.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package python-Authlib
 #
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -19,13 +19,19 @@
 %define modname authlib
 %{?sle15_python_module_pythons}
 Name:           python-Authlib
-Version:        1.3.1
+Version:        1.5.2
 Release:        0
 Summary:        Python library for building OAuth and OpenID Connect servers
 License:        BSD-3-Clause
 URL:            https://authlib.org/
 Source:         https://github.com/lepture/%{modname}/archive/refs/tags/v%{version}.tar.gz#/%{modname}-%{version}.tar.gz
+# PATCH-FIX-UPSTREAM 767-skip-xc20p-tests.patch bsc#[0-9]+ mcepl@suse.com
+# skip unavailable tests
+Patch0:         767-skip-xc20p-tests.patch
+BuildRequires:  %{python_module base >= 3.9}
+BuildRequires:  %{python_module pip}
 BuildRequires:  %{python_module setuptools}
+BuildRequires:  %{python_module wheel}
 BuildRequires:  python-rpm-macros
 # SECTION test requirements
 BuildRequires:  %{python_module anyio}
@@ -53,16 +59,16 @@ BuildArch:      noarch
 A Python library for building OAuth and OpenID Connect servers.
 
 %prep
-%setup -q -n %{modname}-%{version}
+%autosetup -p1 -n %{modname}-%{version}
 # Remove the file containing the commercial license so licensedigger
 # doesn't complain about the dual license
 rm COMMERCIAL-LICENSE
 
 %build
-%python_build
+%pyproject_wheel
 
 %install
-%python_install
+%pyproject_install
 %python_expand %fdupes %{buildroot}%{$python_sitelib}
 
 %check
@@ -70,7 +76,8 @@ rm COMMERCIAL-LICENSE
 $python -mpytest tests/core
 $python -mpytest tests/flask
 # gh#lepture/authlib#456
-$python -mpytest tests/jose -k 'not (test_dir_alg_xc20p or test_xc20p_content_encryption_decryption)'
+# $python -mpytest tests/jose -k 'not (test_dir_alg_xc20p or test_xc20p_content_encryption_decryption)'
+$python -mpytest tests/jose
 export DJANGO_SETTINGS_MODULE=tests.clients.test_django.settings
 $python -mpytest tests/clients
 # export DJANGO_SETTINGS_MODULE=tests.django.settings
@@ -81,6 +88,6 @@ $python -mpytest tests/clients
 %doc README.rst
 %license LICENSE
 %{python_sitelib}/%{modname}
-%{python_sitelib}/Authlib-%{version}*-info
+%{python_sitelib}/[Aa]uthlib-%{version}.dist-info
 
 %changelog