# POC using authlib for oauth dance

## Goal

We're looking for a convenient solution for handling the oauth dance in our app. We will use this page to test out the authlib module. We will use the Aircall API for our test, calling one of our smaller data collections.

## Some assumptions

Even though we use Flask in our laputa project, we will not use anything Flask-related here. We want to remain as flexible as possible.

We will also examine the use of asynchronous code rather than synchronous code since authlib proposes both. If we were to use the synchronous part of authlib, we'd be using the `requests` version.

## Requirements

In order to use the Aircall API for our tests, we need to have a valid Aircall account set up and have a `client_id` and `client_secret` in order to do the oauth dance.

## Dependencies

Authlib, httpx

### Installing the dependencies

In [1]:
pip install Authlib httpx

Note: you may need to restart the kernel to use updated packages.


# Start setting up oauth client

We need to read our configuration file for sensitive information pertaining to our account at Aircall and then handing it to the oauth1 client.

This is the first step of the oauth dance

NB: Aircall uses oauth2

In [13]:
from authlib.integrations.httpx_client import AsyncOAuth2Client
import json


def opener():
    with open('./config.json') as f:
        f_json = f.read()
    f_info = json.loads(f_json)
    return f_info['client_id'], f_info['client_secret'], f_info['redirection_url'], f_info['port']
    

client_id, client_secret, partial_redirect_uri, port = opener()
client = AsyncOAuth2Client(client_id, client_secret)

### Set up redirection uri and create uri to call
We need to have the authentication server speak to ours so that we can start the dance

In [16]:

redirect_uri = f'https://{partial_redirect_uri}:{port}'

authorization_endpoint = f'https://dashboard-v2.aircall.io/oauth/authorize?client_id={client_id}&redirect_uri={redirect_uri}&response_type=code&scope=public_api'
print('request token url ', request_token_url)
uri, state = client.create_authorization_url(authorization_endpoint)
print('state ', state)

request token url  https://dashboard-v2.aircall.io/oauth/authorize?client_id=Li6HcSFkH3FUlKEGvf3nFL8lSo_KjjwSIbQ8XGWRzWs&redirect_uri=https://92.169.232.4:8888&response_type=code&scope=public_api
state  vNTgD3xzb8ogtqPzfGsxR4psQ5Q684


Unfortunately this is where our test ends because we can't have an auth window popup in jupyter notebook