The official Python library for the Picket API (https://picketapi.com/)
Project description
picket-python
The official Python library for the Picket API
Installation
pip install -U picketapi
Usage - Quick Start
Use the Picket class to create the Picket API client. It takes a secret API key as a parameter.
from picketapi import Picket
picket = new Picket("YOU_SECRET_API_KEY")
Nonce
A nonce is random value generated by the Picket API to that user must sign to prove ownership a wallet address. The nonce function can be used to implement your own wallet authentication flow.
A nonce is unique to a project and wallet address. If a nonce doesn't exist for the project and wallet address, Picket will generate a new nonce; otherwise, Picket will return the existing nonce. A nonce is valid for two minutes before self-destructing.
resp = picket.nonce(chain="solana", wallet_address="wAlLetTAdDress")
# resp is of type NonceResponse
print(resp.nonce)
Auth
auth is the server-side equivalent of login. auth should only be used in a trusted server environment. The most common use-case for auth is linking a wallet to an existing application account.
resp = picket.auth(chain="ethereum", wallet_address="0x1234567890", signature="abcdefghijklmnop")
# resp is of type AuthResponse
print(resp.user)
print(resp.access_token)
Authz (Authorize)
authz stands for authorization. Unlike Auth, which handles both authentication and authorization, Authz only handles authorization.
Given an authenticated user's access token and authorization requirements, authz will issue a new access token on success (user is authorized) or, on failure, it will return a 4xx HTTP error code.
resp = picket.authz(access_token="xxx.yyy.zzz", requirements={ "contractAddress": "0xContract" })
# resp is of type AuthResponse
print(resp.user)
print(resp.access_token)
Validate
validate validates an access token. validate should be called, or manually access token validation should be done, server-side before trusting a request's access token. It's common to move access token validation and decoding logic to a shared middleware across API endpoints.
If the access token is valid, validate returns the decoded claims of the access token.
resp, err := picket.validate(access_token="xxx.yyy.zzz", requirements={"contractAddress": "0xContract", "minTokenBalance": "100"})
# Response is the decoded access token (AuthorizedUser)
print(resp)
Verify Token Ownership
If you only want to verify token ownership server side for a given wallet, tokenOwnership allows you to do just that.
resp = picket.token_ownership(
chain="solana",
wallet_address="waLLETaddRess",
requirements={
"collection": "METAPLEX_COLLECTION",
"minTokenBalance": "3",
}
)
# Response is of type TokenOwnershipResponse
print(resp.allowed)
print(resp.tokenBalances)
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for picketapi-0.1.1-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | cabf07a2ba72524c72e160b77f234f096afef6c2e7f96b2049d052db965fd822 |
|
| MD5 | f9ff68b91f82bbada42eed3782c5dd3f |
|
| BLAKE2b-256 | 696768835fd44d26d4e025f4192e4fd8d0de6c5edff2a75eac8a2067125f2b28 |
