Merge pull request #17 from IABTechLab/ian-UID2-970-publisher-sdk

Ian UI d2 970 publisher sdk

Author: Ian-Nara

Makefile

@@ -6,7 +6,7 @@ test:
 shell:
 	docker run -it -w $(PWD) -v $(PWD):$(PWD) -u `id -u`:`id -g` $(DOCKERIMAGE) /bin/bash
 
-examples: example_client example_auto_refresh example_sharing
+examples: example_client example_auto_refresh example_sharing example_publisher
 
 example_client:
 	docker run -w $(PWD) -v $(PWD):$(PWD) -u `id -u`:`id -g` -e PYTHONPATH=$(PWD) $(DOCKERIMAGE) python3 examples/sample_client.py "$(BASE_URL)" "$(AUTH_KEY)" "$(SECRET_KEY)" "$(AD_TOKEN)"
@@ -20,6 +20,8 @@ example_encryption:
 example_sharing:
 	docker run -w $(PWD) -v $(PWD):$(PWD) -u `id -u`:`id -g` -e PYTHONPATH=$(PWD) $(DOCKERIMAGE) python3 examples/sample_sharing.py "$(BASE_URL)" "$(AUTH_KEY)" "$(SECRET_KEY)" "$(RAW_UID)"
 
+example_publisher:
+	docker run -w $(PWD) -v $(PWD):$(PWD) -u `id -u`:`id -g` -e PYTHONPATH=$(PWD) $(DOCKERIMAGE) python3 examples/sample_token_generate_refresh.py "$(BASE_URL)" "$(AUTH_KEY)" "$(SECRET_KEY)"
 
 docker:
 	docker build -t $(DOCKERIMAGE) -f Dockerfile.dev .

README.md

@@ -7,13 +7,16 @@ This document includes:
 * [Requirements](#requirements)
 * [Install](#install)
 * [Usage for DSPs](#usage-for-dsps)
+* [Usage for Publishers](#usage-for-publishers)
+  * [Standard Integration](#standard-integration)
+  * [Server-Only Integration](#server-only-integration)
 * [Usage for UID2 Sharers](#usage-for-uid2-sharers)
 * [Development](#development)
   * [Example Usage](#example-usage)
 
 ## Who Is this SDK for?
 
-This SDK simplifies integration with UID2 for DSPs and UID Sharers, as described in [UID2 Integration Guides](https://unifiedid.com/docs/category/integration-guides).
+This SDK simplifies integration with UID2 for Publishers, DSPs and UID Sharers, as described in [UID2 Integration Guides](https://unifiedid.com/docs/category/integration-guides).
 
 ## Requirements
 
@@ -41,6 +44,58 @@ decrypted_token = client.decrypt(advertising_token)
 print(decrypted_token.uid2)
 ```
 
+## Usage for Publishers
+
+1. Create an instance of Uid2PublisherClient
+ 
+   `client = Uid2PublisherClient(UID2_BASE_URL, UID2_API_KEY, UID2_SECRET_KEY)`
+
+2. Call a function that takes the user's email address or phone number as input and generates a `TokenGenerateResponse` object. The following example uses an email address:
+ 
+   `token_generate_response = client.generate_token(TokenGenerateInput.from_email(emailAddress).do_not_generate_tokens_for_opted_out())`
+
+   >IMPORTANT: Be sure to call this function only when you have obtained legal basis to convert the user’s [directly identifying information (DII)](https://unifiedid.com/docs/ref-info/glossary-uid#gl-dii) to UID2 tokens for targeted advertising.
+   
+   >`do_not_generate_tokens_for_opted_out()` applies `policy=1` in the [/token/generate](https://unifiedid.com/docs/endpoints/post-token-generate#token-generation-policy) call. Without this, `policy` is omitted to maintain backwards compatibility.
+
+### Standard Integration
+
+If you're using standard integration (client and server) (see [UID2 SDK for JavaScript Integration Guide](https://unifiedid.com/docs/guides/publisher-client-side)), follow this step:
+
+* Send this identity as a JSON string back to the client (to use in the [identity field](https://unifiedid.com/docs/sdks/client-side-identity#initopts-object-void)) using the following:
+
+   `token_generate_response.get_identity_json_string()` //Note: this method returns `None` if the user has opted out, so be sure to handle that case.
+
+### Server-Only Integration
+
+If you're using server-only integration (see [Publisher Integration Guide, Server-Only](https://unifiedid.com/docs/guides/custom-publisher-integration)):
+
+1. Store this identity as a JSON string in the user's session, using the `token_generate_response.get_identity_json_string()` function. This method returns `None` if the user has opted out, so be sure to handle that case.
+2. To retrieve the user's UID2 token, use:
+
+   ```
+   identity = token_generate_response.get_identity()
+   if identity:
+      advertising_token = identity.get_advertising_token()
+   ```
+4. When the user accesses another page, or on a timer, determine whether a refresh is needed:
+   1. Retrieve the identity JSON string from the user's session, and then call the following function that takes the identity information as input and generates an `IdentityTokens` object:
+
+      `identity = IdentityTokens.from_json_string(identityJsonString)`
+   2. Determine if the identity can be refreshed (that is, the refresh token hasn't expired):
+
+      `if not identity or not identity.is_refreshable(): # we must no longer use this identity (for example, remove this identity from the user's session) `
+   3. Determine if a refresh is needed:
+
+      `if identity.is_due_for_refresh()):`
+5. If needed, refresh the token and associated values:
+ 
+   `token_refresh_response = client.refresh_token(identity)`
+ 
+6. Store `token_refresh_response.get_identity_json_string()` in the user's session. If the user has opted out, this method returns `None`, indicating that the user's identity should be removed from the session. To confirm optout, you can use the `token_refresh_response.is_optout()` function.
+
+
+
 ## Usage for Sharers
 
 A UID2 sharer is a participant that wants to share UID2s or EUIDs with another participant. Raw UID2s must be encrypted into UID2 tokens before sending them to another participant. 

examples/sample_encryption.py

@@ -5,7 +5,7 @@
 from uid2_client import encrypt_data, decrypt_data
 
 # THIS FILE IS DEPRECATED!
-# To learn how to encrypt and decrypt a UID2 advertising token, see sample_client.py.
+# To learn how to encrypt and decrypt a UID2 advertising token, see sample_sharing.py (For sharers. See sample_client.py for DSPs)
 
 def _usage():
     print('Usage: python3 sample_encryption.py <base_url> <auth_key> <secret_key> <ad_token> <data>', file=sys.stderr)

examples/sample_token_generate_refresh.py

@@ -0,0 +1,77 @@
+import sys
+
+from uid2_client import Uid2PublisherClient
+from uid2_client import TokenGenerateResponse
+from uid2_client import TokenGenerateInput
+
+
+def _usage():
+    print('Usage: python3 sample_token_generate_refresh.py <base_url> <auth_key> <secret_key>', file=sys.stderr)
+    sys.exit(1)
+
+
+if len(sys.argv) <= 3:
+    _usage()
+
+base_url = sys.argv[1]
+auth_key = sys.argv[2]
+secret_key = sys.argv[3]
+
+publisher_client = Uid2PublisherClient(base_url, auth_key, secret_key)
+
+print("Generating Token")
+try:
+    token_generate_response = publisher_client.generate_token(TokenGenerateInput.from_email("[email protected]").do_not_generate_tokens_for_opted_out())
+except Exception as e:
+    print(e)
+    # decide how to handle exception
+
+    exit(1)
+
+if(token_generate_response.is_optout()):
+    print("User has opted out")
+    exit(0)
+tokens = token_generate_response.get_identity()
+
+advertising_token = tokens.get_advertising_token()
+refresh_token = tokens.get_refresh_token()
+refresh_response_key = tokens.get_refresh_response_key()
+refresh_from = tokens.get_refresh_from()
+refresh_expires = tokens.get_refresh_expires()
+identity_expires = tokens.get_identity_expires()
+json_string = tokens.get_json_string()
+
+print('Status =', token_generate_response.status)
+print('Advertising Token =', advertising_token)
+print('Refresh Token =', refresh_token)
+print('Refresh Response Key =', refresh_response_key)
+print('Refresh From =', refresh_from)
+print('Refresh Expires =', refresh_expires)
+print('Identity Expires =', identity_expires)
+print('As Json String =', json_string, "\n")
+
+print("Refreshing Token")
+try:
+    token_refresh_response = publisher_client.refresh_token(tokens)
+except Exception as e:
+    print(e)
+    # decide how to handle exception
+
+    exit(1)
+
+
+if(token_refresh_response.is_optout()):
+    print("User has opted out")
+    exit(0)
+
+tokens = token_refresh_response.get_identity()
+advertising_token = tokens.get_advertising_token()
+refresh_token = tokens.get_refresh_token()
+refresh_response_key = tokens.get_refresh_response_key()
+refresh_from = tokens.get_refresh_from()
+refresh_expires = tokens.get_refresh_expires()
+identity_expires = tokens.get_identity_expires()
+json_string = tokens.get_json_string()
+
+print('Status =', token_generate_response.status)
+print('As Json String =', token_refresh_response.get_identity_json_string())

pyproject.toml

@@ -7,7 +7,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "uid2_client"
-version = "2.1.0"
+version = "2.2.0"
 authors = [
     { name = "UID2 team", email = "[email protected]" }
 ]

tests/test_normalization.py

@@ -0,0 +1,111 @@
+import json
+import unittest
+from unittest.mock import patch
+
+from uid2_client import TokenGenerateInput
+from uid2_client.input_util import *
+import random
+import string
+
+
+class InputNormalizationTests(unittest.TestCase):
+
+    def test_invalid_email_normalization(self):
+        invalid_test_cases = ["", " @", "@", "a@", "@b", "@b.com", "+", " ", "[email protected]", "[email protected]",
+                              "a@[email protected]"]
+        for s in invalid_test_cases:
+            print("Negative case " + s)
+            with self.assertRaises(ValueError) as context:
+                TokenGenerateInput.from_email(s).get_as_json_string()
+                self.assertTrue("invalid email address" in context.exception)
+
+    def test_valid_email_normalization(self):
+        valid_test_cases = [
+            ["[email protected] ", "[email protected]", "dvECjPKZHya0/SIhSGwP0m8SgTv1vzLxPULUOsm880M="],
+            ["[email protected]", "[email protected]", "dvECjPKZHya0/SIhSGwP0m8SgTv1vzLxPULUOsm880M="],
+            ["[email protected]", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["[email protected]", "[email protected]", "rQ4yzdOz4uG8N54326QyZD6/JwqrXn4lmy34cVCojB8="],
+            ["[email protected]", "[email protected]", "weFizOVVWKlLfyorbBU8oxYDv4HJtTZCPMyZ4THzUQE="],
+            ["[email protected]", "[email protected]", "h5JGBrQTGorO7q6IaFMfu5cSqqB6XTp1aybOD11spnQ="],
+            ["[email protected]", "[email protected]", "d1Lr/s4GLLX3SvQVMoQdIMfbQPMAGZYry+2V+0pZlQg="],
+            [" [email protected]", "[email protected]", "d1Lr/s4GLLX3SvQVMoQdIMfbQPMAGZYry+2V+0pZlQg="],
+            ["[email protected] ", "[email protected]", "d1Lr/s4GLLX3SvQVMoQdIMfbQPMAGZYry+2V+0pZlQg="],
+            [" [email protected] ", "[email protected]", "d1Lr/s4GLLX3SvQVMoQdIMfbQPMAGZYry+2V+0pZlQg="],
+            ["  [email protected]  ", "[email protected]", "d1Lr/s4GLLX3SvQVMoQdIMfbQPMAGZYry+2V+0pZlQg="],
+            [" [email protected]", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["[email protected] ", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            [" [email protected] ", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["  [email protected]  ", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["[email protected]  ", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["[email protected]  ", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            [" [email protected]  ", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["[email protected]", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["[email protected]", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["[email protected]", "[email protected]", "LkLfFrut8Tc3h/fIvYDiBKSbaMiau/DtaLBPQYszdMw="],
+            ["[email protected] ", "[email protected]", "dvECjPKZHya0/SIhSGwP0m8SgTv1vzLxPULUOsm880M="],
+            ["[email protected] ", "[email protected]", "dvECjPKZHya0/SIhSGwP0m8SgTv1vzLxPULUOsm880M="],
+            ["😊[email protected]", "😊[email protected]",
+             "fAFEUqApQ0V/M9mLj/IO54CgKgtQuARKsOMqtFklD4k="],
+            ["testtest@😊test.com", "testtest@😊test.com",
+             "tcng5pttf7Y2z4ylZTROvIMw1+IVrMpR4D1KeXSrdiM="],
+            ["[email protected]😊", "[email protected]😊",
+             "0qI21FPLkuez/8RswfmircHPYz9Dtf7/Nch1rSWEQf0="],
+        ]
+
+        for test_case in valid_test_cases:
+            print(f"Positive Test case {test_case[0]} Expected: {test_case[1]}")
+            normalized = normalize_email_string(test_case[0])
+            json_string = TokenGenerateInput.from_email(test_case[0]).get_as_json_string()
+            hashed = json.loads(json_string)["email_hash"]
+            self.assertEqual(test_case[1], normalized)
+            self.assertEqual(test_case[2], hashed)
+
+
+    def test_phone_number_is_normalized_negative(self):
+        test_cases = [
+            None,
+            "",
+            "asdaksjdakfj",
+            "DH5qQFhi5ALrdqcPiib8cy0Hwykx6frpqxWCkR0uijs",
+            "QFhi5ALrdqcPiib8cy0Hwykx6frpqxWCkR0uijs",
+            "06a418f467a14e1631a317b107548a1039d26f12ea45301ab14e7684b36ede58",
+            "0C7E6A405862E402EB76A70F8A26FC732D07C32931E9FAE9AB1582911D2E8A3B",
+            "+",
+            "12345678",
+            "123456789",
+            "1234567890",
+            "+12345678",
+            "+123456789",
+            "+ 12345678",
+            "+ 123456789",
+            "+ 1234 5678",
+            "+ 1234 56789",
+            "+1234567890123456",
+            "+1234567890A",
+            "+1234567890 ",
+            "+1234567890+",
+            "+12345+67890",
+            "555-555-5555",
+            "(555) 555-5555"
+        ]
+
+        for s in test_cases:
+            print(f"Testing phone number '{s}'")
+            with self.assertRaises(ValueError) as context:
+                TokenGenerateInput.from_phone(s).get_as_json_string()
+                self.assertTrue("phone number is not normalized" in context.exception)
+
+    def test_phone_number_is_normalized_positive(self):
+        test_cases = [
+            "+1234567890",
+            "+12345678901",
+            "+123456789012",
+            "+1234567890123",
+            "+12345678901234",
+            "+123456789012345"
+        ]
+
+        for s in test_cases:
+            print(f"Testing phone number '{s}'")
+            self.assertTrue(is_phone_number_normalized(s))
+