feat: integrate SuperTokens middleware and plugin for Litestar framework

Author: pythonhubdev

examples/with-litestar/with-thirdpartyemailpassword/main.py

@@ -12,6 +12,10 @@
     get_all_cors_headers,
     init,
 )
+from supertokens_python.framework.litestar import (
+    create_supertokens_middleware,
+    get_supertokens_plugin,
+)
 from supertokens_python.recipe import (
     dashboard,
     emailverification,
@@ -182,6 +186,8 @@ def f_405(_, __: Exception):
     exception_handlers={
         Exception: f_405,
     },
+    middleware=[create_supertokens_middleware()],
+    plugins=[get_supertokens_plugin(api_base_path="/auth")],
 )
 
 if __name__ == "__main__":

supertokens_python/framework/litestar/__init__.py

@@ -11,3 +11,12 @@
 # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 # License for the specific language governing permissions and limitations
 # under the License.
+
+from .litestar_middleware import create_supertokens_middleware
+from .litestar_plugin import SupertokensPlugin, get_supertokens_plugin
+
+__all__ = [
+    "SupertokensPlugin",
+    "get_supertokens_plugin",
+    "create_supertokens_middleware",
+]

supertokens_python/framework/litestar/litestar_middleware.py

@@ -11,114 +11,87 @@
 # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 # License for the specific language governing permissions and limitations
 # under the License.
-from typing import Any, Union, cast
-
-
-def get_middleware():
-    from litestar import Request as LitestarRequestClass
-    from litestar import Response as LitestarResponseClass
-    from starlette.responses import Response as StarletteResponse
-    from starlette.types import ASGIApp, Message, Receive, Scope, Send
-
-    from supertokens_python import Supertokens
-    from supertokens_python.exceptions import SuperTokensError
-    from supertokens_python.framework import BaseResponse
-    from supertokens_python.framework.litestar.litestar_request import (
-        LitestarRequest,
-    )
-    from supertokens_python.framework.litestar.litestar_response import (
-        LitestarResponse,
-    )
-    from supertokens_python.recipe.session import SessionContainer
-    from supertokens_python.supertokens import manage_session_post_response
-    from supertokens_python.utils import default_user_context
-
-    class ASGIMiddleware:
-        def __init__(self, app: ASGIApp) -> None:
-            self.app = app
-
-        async def __call__(self, scope: Scope, receive: Receive, send: Send) -> None:
-            if scope["type"] != "http":
-                await self.app(scope, receive, send)
-                return
-
-            st = Supertokens.get_instance()
-
-            request = LitestarRequestClass[Any, Any, Any](
-                cast(Any, scope), receive=cast(Any, receive)
-            )
-            custom_request = LitestarRequest(request)
-            user_context = default_user_context(custom_request)
-
-            try:
-                response = LitestarResponse(LitestarResponseClass[Any](content={}))
-                result: Union[BaseResponse, None] = await st.middleware(
-                    custom_request, response, user_context
-                )
-                if result is None:
-
-                    async def send_wrapper(message: Message):
-                        if message["type"] == "http.response.start":
-                            if hasattr(request.state, "supertokens") and isinstance(
-                                request.state.supertokens, SessionContainer
-                            ):
-                                starlette_response = StarletteResponse()
-                                starlette_response.raw_headers = message["headers"]
-                                response = LitestarResponse(
-                                    cast(LitestarResponseClass[Any], starlette_response)
-                                )
-                                manage_session_post_response(
-                                    request.state.supertokens, response, user_context
-                                )
-                                message["headers"] = starlette_response.raw_headers
-
-                        await send(message)
-
-                    await self.app(scope, receive, send_wrapper)
-                    return
-
+from litestar.middleware import DefineMiddleware
+from litestar.types import ASGIApp, Receive, Scope, Send
+
+
+class SupertokensSessionMiddleware:
+    """
+    Middleware to handle session management for non-auth routes.
+
+    This middleware applies session-related response mutators (like setting cookies)
+    for routes that use SuperTokens sessions but aren't auth routes.
+    """
+
+    def __init__(self, app: ASGIApp) -> None:
+        self.app = app
+
+    async def __call__(self, scope: Scope, receive: Receive, send: Send) -> None:
+        if scope["type"] != "http":
+            await self.app(scope, receive, send)
+            return
+
+        from litestar import Request
+        from litestar import Response as LitestarResponseObj
+        from litestar.types import Message
+
+        from supertokens_python.framework.litestar.litestar_request import (
+            LitestarRequest,
+        )
+        from supertokens_python.framework.litestar.litestar_response import (
+            LitestarResponse,
+        )
+        from supertokens_python.recipe.session import SessionContainer
+        from supertokens_python.supertokens import manage_session_post_response
+        from supertokens_python.utils import default_user_context
+
+        request = Request(scope, receive=receive, send=send)  # type: ignore
+        custom_request = LitestarRequest(request)
+        user_context = default_user_context(custom_request)
+
+        async def send_wrapper(message: Message) -> None:
+            if message["type"] == "http.response.start":
+                # Apply session mutators to response headers
                 if hasattr(request.state, "supertokens") and isinstance(
-                    request.state.supertokens, SessionContainer
+                    getattr(request.state, "supertokens", None), SessionContainer
                 ):
+                    # Create a temporary Litestar Response
+                    temp_response = LitestarResponseObj(content=None)
+
+                    # Convert raw ASGI headers to dict for Litestar Response
+                    for name, value in message.get("headers", []):  # type: ignore
+                        temp_response.headers[
+                            name.decode() if isinstance(name, bytes) else name
+                        ] = value.decode() if isinstance(value, bytes) else value
+
+                    # Wrap it for SuperTokens
+                    wrapped_response = LitestarResponse(temp_response)
+
+                    # Apply session mutators (this will modify temp_response)
                     manage_session_post_response(
-                        request.state.supertokens, result, user_context
+                        getattr(request.state, "supertokens"),
+                        wrapped_response,
+                        user_context,
                     )
 
-                if isinstance(result, LitestarResponse):
-                    resp_any = cast(Any, result.response)
-                    asgi_response = resp_any.to_asgi_response(app=None, request=request)
-                    await asgi_response(scope, receive, send)
-                    return
-
-                return
-
-            except SuperTokensError as e:
-                response = LitestarResponse(LitestarResponseClass[Any](content={}))
-                result: Union[BaseResponse, None] = await st.handle_supertokens_error(
-                    LitestarRequest(request), e, response, user_context
-                )
-                if isinstance(result, LitestarResponse):
-                    resp_any = cast(Any, result.response)
-                    asgi_response = resp_any.to_asgi_response(app=None, request=request)
-                    await asgi_response(scope, receive, send)
-                    return
-
-                async def send_wrapper(message: Message):
-                    if message["type"] == "http.response.start":
-                        if hasattr(request.state, "supertokens") and isinstance(
-                            request.state.supertokens, SessionContainer
-                        ):
-                            starlette_response = StarletteResponse()
-                            starlette_response.raw_headers = message["headers"]
-                            response = LitestarResponse(
-                                cast(LitestarResponseClass[Any], starlette_response)
-                            )
-                            manage_session_post_response(
-                                request.state.supertokens, response, user_context
-                            )
-                            message["headers"] = starlette_response.raw_headers
-                    await send(message)
-
-                await self.app(scope, receive, send_wrapper)
-
-    return ASGIMiddleware
+                    # Convert the Litestar Response to ASGI format to get cookies as Set-Cookie headers
+                    asgi_response = temp_response.to_asgi_response(
+                        app=None, request=None
+                    )  # type: ignore
+
+                    # Use the encoded headers which include Set-Cookie headers from cookies
+                    message["headers"] = asgi_response.encoded_headers
+
+            await send(message)
+
+        await self.app(scope, receive, send_wrapper)
+
+
+def create_supertokens_middleware() -> DefineMiddleware:
+    """
+    Create a DefineMiddleware instance for SuperTokens session management.
+
+    Returns:
+        A DefineMiddleware configured with SupertokensSessionMiddleware
+    """
+    return DefineMiddleware(SupertokensSessionMiddleware)

supertokens_python/framework/litestar/litestar_plugin.py

@@ -0,0 +1,156 @@
+# Copyright (c) 2021, VRAI Labs and/or its affiliates. All rights reserved.
+#
+# This software is licensed under the Apache License, Version 2.0 (the
+# "License") as published by the Apache Software Foundation.
+#
+# You may not use this file except in compliance with the License. You may
+# obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+# License for the specific language governing permissions and limitations
+# under the License.
+from typing import Union
+
+from litestar import asgi
+from litestar.config.app import AppConfig
+from litestar.plugins import InitPluginProtocol
+
+
+class SupertokensPlugin(InitPluginProtocol):
+    """
+    Litestar plugin for SuperTokens integration.
+
+    This plugin handles authentication routes by mounting a custom ASGI app
+    that processes SuperTokens authentication requests.
+    """
+
+    def __init__(self, api_base_path: str = "/auth"):
+        """
+        Initialize the SuperTokens plugin.
+
+        Args:
+            api_base_path: The base path for SuperTokens API routes (default: "/auth")
+        """
+        self.api_base_path = api_base_path.rstrip("/")
+
+    def on_app_init(self, app_config: AppConfig) -> AppConfig:
+        """
+        Called during app initialization to register the SuperTokens ASGI app.
+
+        Args:
+            app_config: The Litestar application configuration
+
+        Returns:
+            The modified application configuration
+        """
+        from litestar import Request, Response
+        from litestar.types import Receive, Scope, Send
+
+        from supertokens_python import Supertokens
+        from supertokens_python.exceptions import SuperTokensError
+        from supertokens_python.framework.litestar.litestar_request import (
+            LitestarRequest,
+        )
+        from supertokens_python.framework.litestar.litestar_response import (
+            LitestarResponse,
+        )
+        from supertokens_python.recipe.session import SessionContainer
+        from supertokens_python.supertokens import manage_session_post_response
+        from supertokens_python.utils import default_user_context
+
+        async def supertokens_asgi_app(
+            scope: Scope, receive: Receive, send: Send
+        ) -> None:
+            """
+            ASGI app that handles SuperTokens authentication requests.
+            """
+            if scope["type"] != "http":
+                # Pass through non-HTTP requests
+                not_found = Response(content=None, status_code=404)
+                await not_found.to_asgi_response(app=None, request=None)(
+                    scope, receive, send
+                )  # type: ignore
+                return
+
+            st = Supertokens.get_instance()
+
+            # Create Litestar request and wrap it for SuperTokens
+            litestar_request = Request(scope, receive=receive, send=send)
+            custom_request = LitestarRequest(litestar_request)
+            user_context = default_user_context(custom_request)
+
+            try:
+                # Create a response object for SuperTokens to use
+                litestar_response = Response(content=None)
+                response = LitestarResponse(litestar_response)
+
+                # Let SuperTokens middleware handle the request
+                result: Union[LitestarResponse, None] = await st.middleware(
+                    custom_request, response, user_context
+                )
+
+                if result is None:
+                    # Request was not handled by SuperTokens
+                    not_found_response = Response(content=None, status_code=404)
+                    await not_found_response.to_asgi_response(app=None, request=None)(
+                        scope, receive, send
+                    )  # type: ignore
+                    return
+
+                # Handle session management
+                if hasattr(litestar_request.state, "supertokens") and isinstance(
+                    litestar_request.state.supertokens, SessionContainer
+                ):
+                    manage_session_post_response(
+                        litestar_request.state.supertokens, result, user_context
+                    )
+
+                # Send the response
+                if isinstance(result, LitestarResponse):
+                    asgi_response = result.response.to_asgi_response(
+                        app=None, request=None
+                    )  # type: ignore
+                    await asgi_response(scope, receive, send)
+                    return
+
+            except SuperTokensError as e:
+                # Handle SuperTokens-specific errors
+                error_response_obj = Response(content=None)
+                error_response = LitestarResponse(error_response_obj)
+                result = await st.handle_supertokens_error(
+                    custom_request, e, error_response, user_context
+                )
+
+                if isinstance(result, LitestarResponse):
+                    asgi_response = result.response.to_asgi_response(
+                        app=None, request=None
+                    )  # type: ignore
+                    await asgi_response(scope, receive, send)
+                    return
+
+            # Fallback - this should not normally be reached
+            fallback_response = Response(content=None, status_code=500)
+            await fallback_response.to_asgi_response(app=None, request=None)(
+                scope, receive, send
+            )  # type: ignore
+
+        # Mount the SuperTokens ASGI app to handle auth routes
+        app_mount = asgi(self.api_base_path, is_mount=True)(supertokens_asgi_app)
+        app_config.route_handlers.append(app_mount)
+
+        return app_config
+
+
+def get_supertokens_plugin(api_base_path: str = "/auth") -> SupertokensPlugin:
+    """
+    Get a configured SuperTokens plugin for Litestar.
+
+    Args:
+        api_base_path: The base path for SuperTokens API routes (default: "/auth")
+
+    Returns:
+        A configured SupertokensPlugin instance
+    """
+    return SupertokensPlugin(api_base_path=api_base_path)