Added a new auth_token property to AuthSession class (#350)

* add auth session property

added tests

fixed names

remove formating noise

remove formating from test

* update packages

* bump python version to 3.9

* adjust versions

* fix plugin for poetry

Author: broHeryk

.github/workflows/build.yml

@@ -11,7 +11,7 @@ jobs:
     runs-on: ${{ matrix.os }}
     strategy:
       matrix:
-        python-version: [ '3.8', '3.10' ]
+        python-version: [ '3.9', '3.10' ]
         os: [ ubuntu-latest, macos-latest, windows-latest ]
         include:
           - os: ubuntu-latest

.github/workflows/cve-scanning-python.yml

@@ -23,7 +23,7 @@ jobs:
           python-version: "3.10"
       - uses: abatilo/actions-poetry@192395c0d10c082a7c62294ab5d9a9de40e48974
         with:
-          poetry-version: "1.2.2"
+          poetry-version: "2.0.0"
       - name: Install safety
         run: pip3 install safety
       - name: Build app

.github/workflows/push.yml

@@ -24,11 +24,11 @@ jobs:
         with:
           fetch-depth: 0
 
-      - name: Set up Python 3.8
+      - name: Set up Python 3.9
         id: setup-python
         uses: actions/setup-python@v4
         with:
-          python-version: 3.8
+          python-version: 3.9
 
       - name: Copy main branch into gh-pages
         run: |

.github/workflows/pylint.yaml

@@ -15,11 +15,11 @@ jobs:
       - name: Checkout Code
         uses: actions/checkout@v4
 
-      - name: Set up Python 3.8
+      - name: Set up Python 3.9
         id: setup-python
         uses: actions/setup-python@v4
         with:
-          python-version: 3.8
+          python-version: 3.9
 
       - name: Get pip cache dir
         id: pip-cache

.github/workflows/release.yml

@@ -13,10 +13,10 @@ jobs:
     steps:
       - uses: actions/checkout@v4
 
-      - name: Set up Python 3.8
+      - name: Set up Python 3.9
         uses: actions/setup-python@v4
         with:
-          python-version: 3.8
+          python-version: 3.9
 
       - name: Install Poetry
         run: pip install poetry

.github/workflows/security.yml

@@ -15,11 +15,11 @@ jobs:
       - name: Checkout Code
         uses: actions/checkout@v4
 
-      - name: Set up Python 3.8
+      - name: Set up Python 3.9
         id: setup-python
         uses: actions/setup-python@v4
         with:
-          python-version: 3.8
+          python-version: 3.9
 
       - name: Get pip cache dir
         id: pip-cache

examples/authentication/auth.py

@@ -12,6 +12,7 @@ async def run():
         auth_session = bdk.bot_session()
         logging.info(await auth_session.key_manager_token)
         logging.info(await auth_session.session_token)
+        logging.info(await auth_session.auth_token)
         logging.info("Obo example:")
         obo_auth_session = bdk.obo(username="username")
         logging.info(await obo_auth_session.session_token)

poetry.lock

@@ -12,13 +12,13 @@ packages = [
 ]
 
 [tool.poetry.dependencies]
-python = "^3.8"
+python = "^3.9"
 nulltype = "^2.3.1"
 python-dateutil = "^2.8.2"
 urllib3 = "^1.26.19"
 aiohttp = "^3.10.2"
 pyyaml = "^6.0"
-PyJWT = "^2.3.0"
+PyJWT = "^2.10.0"
 cryptography = "^43.0.1"
 tenacity = "^8.0.1"
 defusedxml = "^0.7.1"
@@ -37,6 +37,9 @@ safety = "^2.2.0"
 liccheck = "^0.6.2"
 coverage = {version = "^6.0b1", extras = ["toml"]}
 
+[tool.poetry.requires-plugins]
+poetry-plugin-export = ">=1.8"
+
 [build-system]
 requires = ["poetry-core>=1.0.0"]
 build-backend = "poetry.core.masonry.api"

pyproject.toml

@@ -1,12 +1,15 @@
 """Module containing session handle classes.
 
 """
+from datetime import datetime, timezone
 import logging
 
 from symphony.bdk.core.auth.exception import AuthInitializationError
 
 logger = logging.getLogger(__name__)
 
+EXPIRATION_SAFETY_BUFFER_SECONDS = 5
+
 
 class AuthSession:
     """RSA Authentication session handle to get session and key manager tokens from.
@@ -21,7 +24,9 @@ def __init__(self, authenticator):
         """
         self._session_token = None
         self._key_manager_token = None
+        self._auth_token = None
         self._authenticator = authenticator
+        self._expire_at = -1
 
     async def refresh(self):
         """Trigger re-authentication to refresh the tokens.
@@ -40,6 +45,26 @@ async def session_token(self):
             self._session_token = await self._authenticator.retrieve_session_token()
         return self._session_token
 
+    @property
+    async def auth_token(self):
+        """Auth token request calls the same endpoint that session token.
+        Therefore, session token is updated unintentionally,
+         since there's no explicit way to update authorization token exclusively
+         : return: (str) authorization_token like Bearer eyJh...
+        """
+
+        if (
+            self._auth_token
+            and self._expire_at
+            > datetime.now(timezone.utc).timestamp() + EXPIRATION_SAFETY_BUFFER_SECONDS
+        ):
+            return self._auth_token
+        token, expire_at = await self._authenticator.retrieve_session_token_object()
+        self._expire_at = expire_at
+        self._auth_token = token.authorization_token
+        self._session_token = token.token
+        return self._auth_token
+
     @property
     async def key_manager_token(self):
         """