fastapi-gsap

tking/fastapi-gsap

SHA256

Fork 0

Commit graph

Author	SHA256	Message	Date
Tyler J King	295fe55bf2	feat: session-scoped ACs — multiple CRs per session Adds session_mode flag to AC lifecycle. When session_mode=true: - AC transitions to 'active' (not 'consumed') on first CR - Stays active for subsequent CRs during the session - 'session_end' outcome transitions AC to 'consumed' - Non-session ACs behave as before (consumed on first CR) Schema: - ACStatus: add ACTIVE enum value - Outcome: add SESSION_END enum value - AuthorizeRequest: add session_mode bool field - AuthorizationContextDB: add session_mode column - Auto-migration via ALTER TABLE on startup Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-03 02:06:15 -04:00
Tyler J King	5ac577af19	fix: CR endpoint — greenlet bug + UUID format + missing column Three bugs in the complete handler: 1. SQLAlchemy greenlet: ORM model attribute access triggers sync lazy-loads in async context. Fix: raw SQL via text() for all DB operations in the CR handler. 2. UUID format: SQLite stores UUIDs without hyphens (via SQLModel). Raw SQL comparisons must strip hyphens: str(uuid).replace("-","") 3. Missing received_at: NOT NULL constraint on completion_receipts. Raw INSERT was missing the column. Added received_at=now(). Full AC/CR cycle now verified: AC → 200, principal DID resolved from Keycloak token CR → 200, receipt ID + Chronicle CID returned Session → 200, chain of custody queryable Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-01 18:51:55 -04:00
Tyler J King	cbc9ad73f7	feat: fastapi-gsap — lightweight GSAP broker PoC Reference implementation of GCAP-SPEC-SHELLBOUND-BROKER-0001 in FastAPI. Designed for ISVs and enterprises implementing the governed shell authorization protocol. Architecture: FastAPI + SQLModel + Pydantic + async SQLite Single container deployment: Dockerfile included OpenAPI schema at /docs is the machine-readable GSAP contract Broker Interface (§5): POST /governance/authorize/ — Issue AC GET /governance/authorize/{p}/ — Poll elevation POST /governance/complete/ — Receive CR GET /governance/session/{id}/ — View chain of custody POST /governance/elevate/ — JIT elevation GET /governance/drivers/ — List drivers Identity Driver Interface (§2.2): IdentityDriver — abstract base (ISV extension point) KeycloakDriver — Keycloak implementation DriverRegistry — driver lookup and registration Chronicle integration (§1.4): Optional CloudEvents emission via CHRONICLE_WEBHOOK_URL Forgejo push event format for receiver compatibility Models: Pydantic schemas for AC, CR, Principal, Accord, Operation SQLModel DB models for persistence Tests: 6 async tests including full AC→CR cycle 695 lines across 27 files. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-03-30 14:10:21 -04:00

Author

SHA256

Message

Date

Tyler J King

295fe55bf2

feat: session-scoped ACs — multiple CRs per session

Adds session_mode flag to AC lifecycle. When session_mode=true:
- AC transitions to 'active' (not 'consumed') on first CR
- Stays active for subsequent CRs during the session
- 'session_end' outcome transitions AC to 'consumed'
- Non-session ACs behave as before (consumed on first CR)

Schema:
- ACStatus: add ACTIVE enum value
- Outcome: add SESSION_END enum value
- AuthorizeRequest: add session_mode bool field
- AuthorizationContextDB: add session_mode column
- Auto-migration via ALTER TABLE on startup

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-03 02:06:15 -04:00

Tyler J King

5ac577af19

fix: CR endpoint — greenlet bug + UUID format + missing column

Three bugs in the complete handler:

1. SQLAlchemy greenlet: ORM model attribute access triggers sync
   lazy-loads in async context. Fix: raw SQL via text() for all
   DB operations in the CR handler.

2. UUID format: SQLite stores UUIDs without hyphens (via SQLModel).
   Raw SQL comparisons must strip hyphens: str(uuid).replace("-","")

3. Missing received_at: NOT NULL constraint on completion_receipts.
   Raw INSERT was missing the column. Added received_at=now().

Full AC/CR cycle now verified:
  AC → 200, principal DID resolved from Keycloak token
  CR → 200, receipt ID + Chronicle CID returned
  Session → 200, chain of custody queryable

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-04-01 18:51:55 -04:00

Tyler J King

cbc9ad73f7

feat: fastapi-gsap — lightweight GSAP broker PoC

Reference implementation of GCAP-SPEC-SHELLBOUND-BROKER-0001
in FastAPI. Designed for ISVs and enterprises implementing
the governed shell authorization protocol.

Architecture:
  FastAPI + SQLModel + Pydantic + async SQLite
  Single container deployment: Dockerfile included
  OpenAPI schema at /docs is the machine-readable GSAP contract

Broker Interface (§5):
  POST   /governance/authorize/     — Issue AC
  GET    /governance/authorize/{p}/ — Poll elevation
  POST   /governance/complete/      — Receive CR
  GET    /governance/session/{id}/  — View chain of custody
  POST   /governance/elevate/       — JIT elevation
  GET    /governance/drivers/       — List drivers

Identity Driver Interface (§2.2):
  IdentityDriver — abstract base (ISV extension point)
  KeycloakDriver — Keycloak implementation
  DriverRegistry — driver lookup and registration

Chronicle integration (§1.4):
  Optional CloudEvents emission via CHRONICLE_WEBHOOK_URL
  Forgejo push event format for receiver compatibility

Models:
  Pydantic schemas for AC, CR, Principal, Accord, Operation
  SQLModel DB models for persistence

Tests: 6 async tests including full AC→CR cycle

695 lines across 27 files.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

2026-03-30 14:10:21 -04:00

3 commits