cqrenet/aoc - aoc - CQRE.NET Git

cqrenet/aoc

Fork 0

Commit Graph

Author	SHA1	Message	Date
Tomas Kracmar	ed310a06de	fix: replace python-jose with PyJWT for robust JWKS signature verification Some checks failed CI / lint-and-test (push) Has been cancelled Details python-jose failed to correctly construct RSA public keys from Microsoft JWKS entries lacking an explicit alg field, causing signature verification failures. Switch auth.py to PyJWT + jwt.algorithms.RSAAlgorithm.from_jwk() which handles Entra JWKS correctly. Add cryptography explicitly to deps. Update auth tests to remove unused python-jose fixture code.	2026-04-14 16:47:54 +02:00
Tomas Kracmar	9271b4e461	feat: implement Phase 2 stabilization Some checks failed CI / lint-and-test (push) Has been cancelled Details - Cache Graph API tokens with expiry-aware reuse in graph/auth.py - Add tenacity-based retry/backoff wrapper (utils/http.py) and apply to all Graph/source API calls - Add Pydantic request/response models (models/api.py) and FastAPI query constraints - Add unit tests for event_model, auth and integration tests for API endpoints - Configure ruff linter/formatter in pyproject.toml - Add GitHub Actions CI pipeline (.github/workflows/ci.yml) - Add requirements-dev.txt with pytest, mongomock, httpx, ruff - Clean up typing imports and fix ruff linting across codebase	2026-04-14 12:02:28 +02:00

Author

SHA1

Message

Date

Tomas Kracmar

ed310a06de

fix: replace python-jose with PyJWT for robust JWKS signature verification

CI / lint-and-test (push) Has been cancelled

Details

python-jose failed to correctly construct RSA public keys from Microsoft
JWKS entries lacking an explicit alg field, causing signature verification
failures. Switch auth.py to PyJWT + jwt.algorithms.RSAAlgorithm.from_jwk()
which handles Entra JWKS correctly. Add cryptography explicitly to deps.
Update auth tests to remove unused python-jose fixture code.

2026-04-14 16:47:54 +02:00

Tomas Kracmar

9271b4e461

feat: implement Phase 2 stabilization

CI / lint-and-test (push) Has been cancelled

Details

- Cache Graph API tokens with expiry-aware reuse in graph/auth.py
- Add tenacity-based retry/backoff wrapper (utils/http.py) and apply to all Graph/source API calls
- Add Pydantic request/response models (models/api.py) and FastAPI query constraints
- Add unit tests for event_model, auth and integration tests for API endpoints
- Configure ruff linter/formatter in pyproject.toml
- Add GitHub Actions CI pipeline (.github/workflows/ci.yml)
- Add requirements-dev.txt with pytest, mongomock, httpx, ruff
- Clean up typing imports and fix ruff linting across codebase

2026-04-14 12:02:28 +02:00

2 Commits