Drop Python 3.8 support

Author: frankie567

.github/workflows/build.yml

@@ -8,7 +8,7 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        python_version: [3.8, 3.9, '3.10', '3.11', '3.12']
+        python_version: ['3.9', '3.10', '3.11', '3.12']
 
     steps:
     - uses: actions/checkout@v3
@@ -44,7 +44,7 @@ jobs:
     - name: Set up Python
       uses: actions/setup-python@v4
       with:
-        python-version: 3.8
+        python-version: '3.9'
     - name: Install dependencies
       shell: bash
       run: |

fief_client/client.py

@@ -1,8 +1,9 @@
 import contextlib
 import json
 import uuid
+from collections.abc import Mapping
 from enum import Enum
-from typing import Any, Dict, List, Mapping, Optional, Tuple, TypedDict, Union
+from typing import Any, Optional, TypedDict, Union
 from urllib.parse import urlencode, urlsplit, urlunsplit
 
 import httpx
@@ -87,11 +88,11 @@ class FiefAccessTokenInfo(TypedDict):
 
     id: uuid.UUID
     """ID of the user."""
-    scope: List[str]
+    scope: list[str]
     """List of granted scopes for this access token."""
     acr: FiefACR
     """Level of Authentication Context class Reference."""
-    permissions: List[str]
+    permissions: list[str]
     """List of [granted permissions](https://docs.fief.dev/getting-started/access-control/) for this user."""
     access_token: str
     """Access token you can use to call the Fief API."""
@@ -128,7 +129,7 @@ class FiefUserInfo(TypedDict):
     """
     ID of the [tenant](https://docs.fief.dev/getting-started/tenants/) associated to the user.
     """
-    fields: Dict[str, Any]
+    fields: dict[str, Any]
     """
     [User fields](https://docs.fief.dev/getting-started/user-fields/) values for this user, indexed by their slug.
     """
@@ -192,7 +193,7 @@ class BaseFief:
     encryption_key: Optional[jwk.JWK] = None
     """"""
 
-    _openid_configuration: Optional[Dict[str, Any]] = None
+    _openid_configuration: Optional[dict[str, Any]] = None
     _jwks: Optional[jwk.JWKSet] = None
 
     _verify: VerifyTypes
@@ -236,7 +237,7 @@ def __init__(
 
     def _get_endpoint_url(
         self,
-        openid_configuration: Dict[str, Any],
+        openid_configuration: dict[str, Any],
         field: str,
         *,
         absolute: bool = False,
@@ -261,11 +262,11 @@ def _get_endpoint_url(
 
     def _auth_url(
         self,
-        openid_configuration: Dict[str, Any],
+        openid_configuration: dict[str, Any],
         redirect_uri: str,
         *,
         state: Optional[str] = None,
-        scope: Optional[List[str]] = None,
+        scope: Optional[list[str]] = None,
         code_challenge: Optional[str] = None,
         code_challenge_method: Optional[str] = None,
         lang: Optional[str] = None,
@@ -303,9 +304,9 @@ def _validate_access_token(
         access_token: str,
         jwks: jwk.JWKSet,
         *,
-        required_scope: Optional[List[str]] = None,
+        required_scope: Optional[list[str]] = None,
         required_acr: Optional[FiefACR] = None,
-        required_permissions: Optional[List[str]] = None,
+        required_permissions: Optional[list[str]] = None,
     ) -> FiefAccessTokenInfo:
         try:
             decoded_token = jwt.JWT(jwt=access_token, algs=["RS256"], key=jwks)
@@ -325,7 +326,7 @@ def _validate_access_token(
                 if acr < required_acr:
                     raise FiefAccessTokenACRTooLow()
 
-            permissions: List[str] = claims["permissions"]
+            permissions: list[str] = claims["permissions"]
             if required_permissions is not None:
                 for required_permission in required_permissions:
                     if required_permission not in permissions:
@@ -406,7 +407,7 @@ def _get_auth_refresh_token_request(
         *,
         endpoint: str,
         refresh_token: str,
-        scope: Optional[List[str]] = None,
+        scope: Optional[list[str]] = None,
     ) -> httpx.Request:
         data = {
             "client_id": self.client_id,
@@ -433,7 +434,7 @@ def _get_update_profile_request(
         *,
         endpoint: str,
         access_token: str,
-        data: Dict[str, Any],
+        data: dict[str, Any],
     ) -> httpx.Request:
         return client.build_request(
             "PATCH",
@@ -521,7 +522,7 @@ def auth_url(
         redirect_uri: str,
         *,
         state: Optional[str] = None,
-        scope: Optional[List[str]] = None,
+        scope: Optional[list[str]] = None,
         code_challenge: Optional[str] = None,
         code_challenge_method: Optional[str] = None,
         lang: Optional[str] = None,
@@ -561,7 +562,7 @@ def auth_url(
 
     def auth_callback(
         self, code: str, redirect_uri: str, *, code_verifier: Optional[str] = None
-    ) -> Tuple[FiefTokenResponse, FiefUserInfo]:
+    ) -> tuple[FiefTokenResponse, FiefUserInfo]:
         """
         Return a `FiefTokenResponse` and `FiefUserInfo` in exchange of an authorization code.
 
@@ -589,8 +590,8 @@ def auth_callback(
         return token_response, userinfo
 
     def auth_refresh_token(
-        self, refresh_token: str, *, scope: Optional[List[str]] = None
-    ) -> Tuple[FiefTokenResponse, FiefUserInfo]:
+        self, refresh_token: str, *, scope: Optional[list[str]] = None
+    ) -> tuple[FiefTokenResponse, FiefUserInfo]:
         """
         Return fresh `FiefTokenResponse` and `FiefUserInfo` in exchange of a refresh token
 
@@ -632,9 +633,9 @@ def validate_access_token(
         self,
         access_token: str,
         *,
-        required_scope: Optional[List[str]] = None,
+        required_scope: Optional[list[str]] = None,
         required_acr: Optional[FiefACR] = None,
-        required_permissions: Optional[List[str]] = None,
+        required_permissions: Optional[list[str]] = None,
     ) -> FiefAccessTokenInfo:
         """
         Check if an access token is valid and optionally that it has a required list of scopes,
@@ -726,7 +727,7 @@ def userinfo(self, access_token: str) -> FiefUserInfo:
 
             return response.json()
 
-    def update_profile(self, access_token: str, data: Dict[str, Any]) -> FiefUserInfo:
+    def update_profile(self, access_token: str, data: dict[str, Any]) -> FiefUserInfo:
         """
         Update user information with the Fief API using a valid access token.
 
@@ -877,7 +878,7 @@ def _get_httpx_client(self):
         ) as client:
             yield client
 
-    def _get_openid_configuration(self) -> Dict[str, Any]:
+    def _get_openid_configuration(self) -> dict[str, Any]:
         if self._openid_configuration is not None:
             return self._openid_configuration
 
@@ -948,7 +949,7 @@ async def auth_url(
         redirect_uri: str,
         *,
         state: Optional[str] = None,
-        scope: Optional[List[str]] = None,
+        scope: Optional[list[str]] = None,
         code_challenge: Optional[str] = None,
         code_challenge_method: Optional[str] = None,
         lang: Optional[str] = None,
@@ -988,7 +989,7 @@ async def auth_url(
 
     async def auth_callback(
         self, code: str, redirect_uri: str, *, code_verifier: Optional[str] = None
-    ) -> Tuple[FiefTokenResponse, FiefUserInfo]:
+    ) -> tuple[FiefTokenResponse, FiefUserInfo]:
         """
         Return a `FiefTokenResponse` and `FiefUserInfo` in exchange of an authorization code.
 
@@ -1016,8 +1017,8 @@ async def auth_callback(
         return token_response, userinfo
 
     async def auth_refresh_token(
-        self, refresh_token: str, *, scope: Optional[List[str]] = None
-    ) -> Tuple[FiefTokenResponse, FiefUserInfo]:
+        self, refresh_token: str, *, scope: Optional[list[str]] = None
+    ) -> tuple[FiefTokenResponse, FiefUserInfo]:
         """
         Return fresh `FiefTokenResponse` and `FiefUserInfo` in exchange of a refresh token
 
@@ -1060,9 +1061,9 @@ async def validate_access_token(
         self,
         access_token: str,
         *,
-        required_scope: Optional[List[str]] = None,
+        required_scope: Optional[list[str]] = None,
         required_acr: Optional[FiefACR] = None,
-        required_permissions: Optional[List[str]] = None,
+        required_permissions: Optional[list[str]] = None,
     ) -> FiefAccessTokenInfo:
         """
         Check if an access token is valid and optionally that it has a required list of scopes,
@@ -1155,7 +1156,7 @@ async def userinfo(self, access_token: str) -> FiefUserInfo:
             return response.json()
 
     async def update_profile(
-        self, access_token: str, data: Dict[str, Any]
+        self, access_token: str, data: dict[str, Any]
     ) -> FiefUserInfo:
         """
         Update user information with the Fief API using a valid access token.
@@ -1309,7 +1310,7 @@ async def _get_httpx_client(self):
         ) as client:
             yield client
 
-    async def _get_openid_configuration(self) -> Dict[str, Any]:
+    async def _get_openid_configuration(self) -> dict[str, Any]:
         if self._openid_configuration is not None:
             return self._openid_configuration
 

fief_client/integrations/cli.py

@@ -179,13 +179,13 @@ def current_user(self, refresh: bool = False) -> FiefUserInfo:
 
     def authorize(
         self,
-        server_address: typing.Tuple[str, int] = ("localhost", 51562),
+        server_address: tuple[str, int] = ("localhost", 51562),
         redirect_path: str = "/callback",
         *,
-        scope: typing.Optional[typing.List[str]] = None,
+        scope: typing.Optional[list[str]] = None,
         lang: typing.Optional[str] = None,
         extras_params: typing.Optional[typing.Mapping[str, str]] = None,
-    ) -> typing.Tuple[FiefTokenResponse, FiefUserInfo]:
+    ) -> tuple[FiefTokenResponse, FiefUserInfo]:
         """
         Perform a user authentication with the Fief server.
 
@@ -217,7 +217,7 @@ def authorize(
         """
         redirect_uri = f"http://{server_address[0]}:{server_address[1]}{redirect_path}"
 
-        scope_set: typing.Set[str] = set(scope) if scope else set()
+        scope_set: set[str] = set(scope) if scope else set()
         scope_set.add("openid")
         scope_set.add("offline_access")
 
@@ -304,7 +304,7 @@ def render_success_page(self) -> str:
         </html>
         """
 
-    def render_error_page(self, query_params: typing.Dict[str, typing.Any]) -> str:
+    def render_error_page(self, query_params: dict[str, typing.Any]) -> str:
         """
         Generate the HTML page that'll be shown to the user when something goes wrong during redirection.
 

fief_client/integrations/fastapi.py

@@ -1,13 +1,10 @@
 """FastAPI integration."""
 
 import uuid
+from collections.abc import AsyncGenerator, Coroutine, Generator
 from inspect import Parameter, Signature, isawaitable
 from typing import (
-    AsyncGenerator,
     Callable,
-    Coroutine,
-    Generator,
-    List,
     Optional,
     Protocol,
     TypeVar,
@@ -126,9 +123,9 @@ def __init__(
     def authenticated(
         self,
         optional: bool = False,
-        scope: Optional[List[str]] = None,
+        scope: Optional[list[str]] = None,
         acr: Optional[FiefACR] = None,
-        permissions: Optional[List[str]] = None,
+        permissions: Optional[list[str]] = None,
     ):
         """
         Return a FastAPI dependency to check if a request is authenticated.
@@ -198,9 +195,9 @@ async def _authenticated(
     def current_user(
         self,
         optional: bool = False,
-        scope: Optional[List[str]] = None,
+        scope: Optional[list[str]] = None,
         acr: Optional[FiefACR] = None,
-        permissions: Optional[List[str]] = None,
+        permissions: Optional[list[str]] = None,
         refresh: bool = False,
     ):
         """
@@ -296,7 +293,7 @@ def _get_authenticated_call_signature(self, scheme: SecurityBase) -> Signature:
         with a dynamic security scheme dependency at runtime.
         This way, it's detected by the OpenAPI generator.
         """
-        parameters: List[Parameter] = [
+        parameters: list[Parameter] = [
             Parameter(
                 name="request",
                 kind=Parameter.POSITIONAL_OR_KEYWORD,
@@ -324,7 +321,7 @@ def _get_current_user_call_signature(self, authenticated: Callable) -> Signature
         with a dynamic security scheme dependency at runtime.
         This way, it's detected by the OpenAPI generator.
         """
-        parameters: List[Parameter] = [
+        parameters: list[Parameter] = [
             Parameter(
                 name="access_token_info",
                 kind=Parameter.POSITIONAL_OR_KEYWORD,

fief_client/integrations/flask.py

@@ -2,7 +2,7 @@
 
 import uuid
 from functools import wraps
-from typing import Callable, List, Optional
+from typing import Callable, Optional
 
 from flask import g, request
 
@@ -168,9 +168,9 @@ def authenticated(
         self,
         *,
         optional: bool = False,
-        scope: Optional[List[str]] = None,
+        scope: Optional[list[str]] = None,
         acr: Optional[FiefACR] = None,
-        permissions: Optional[List[str]] = None,
+        permissions: Optional[list[str]] = None,
     ):
         """
         Decorator to check if a request is authenticated.
@@ -239,9 +239,9 @@ def current_user(
         self,
         *,
         optional: bool = False,
-        scope: Optional[List[str]] = None,
+        scope: Optional[list[str]] = None,
         acr: Optional[FiefACR] = None,
-        permissions: Optional[List[str]] = None,
+        permissions: Optional[list[str]] = None,
         refresh: bool = False,
     ):
         """

pyproject.toml

@@ -7,7 +7,7 @@ module = "yaspin.*"
 ignore_missing_imports = true
 
 [tool.ruff]
-target-version = "py38"
+target-version = "py39"
 
 [tool.ruff.lint]
 extend-select = ["I", "UP", "TRY"]
@@ -88,15 +88,14 @@ license = "MIT"
 classifiers = [
     "License :: OSI Approved :: MIT License",
     "Intended Audience :: Developers",
-    "Programming Language :: Python :: 3.8",
     "Programming Language :: Python :: 3.9",
     "Programming Language :: Python :: 3.10",
     "Programming Language :: Python :: 3.11",
     "Programming Language :: Python :: 3.12",
     "Programming Language :: Python :: 3 :: Only",
 ]
 dynamic = ["version"]
-requires-python = ">=3.8"
+requires-python = ">=3.9"
 dependencies = [
     "httpx >=0.21.3,<0.28.0",
     "jwcrypto >=1.4,<2.0.0",