Merge pull request #2 from oshea00/v0.0.2

oshea00 · web-flow · commit 4b62cbc1d4ac · 2026-01-08T09:38:42.000-08:00
V0.0.2
diff --git a/.python-version b/.python-version
@@ -0,0 +1 @@
+3.11
diff --git a/CLAUDE.md b/CLAUDE.md
@@ -0,0 +1,100 @@
+# CLAUDE.md
+
+This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
+
+## Project Overview
+
+This is a Python CLI tool called `okta-saml` that authenticates users against Okta and retrieves temporary JWT credentials for SAML-enabled APIs. The tool performs SAML assertion-based authentication and stores the resulting JWT tokens for API access.
+
+## Architecture
+
+The codebase is organized into the `oktasamlcli` package with the following key modules:
+
+- **okta_samlcli.py**: Main CLI entry point using Click framework. Handles command-line arguments and orchestrates the authentication flow
+- **okta_auth.py**: Core Okta authentication logic - handles primary auth, session management, authorization code flow, and JWT token retrieval
+- **saml_auth.py**: SAML assertion processing and JWT token management - extracts client credentials from SAML assertions and manages credential storage
+- **okta_auth_config.py**: Configuration management for Okta profiles from `~/.okta-saml` file
+
+### Authentication Flow
+
+The application follows this flow:
+1. Authenticate with Okta using username/password
+2. Retrieve SAML assertion from configured app link
+3. Extract ClientID and ClientSecret from SAML assertion attributes
+4. Perform OAuth2 authorization code flow
+5. Obtain JWT access token
+6. Store credentials in `~/.saml/credentials` or output to console
+
+## Development Commands
+
+This project uses [uv](https://docs.astral.sh/uv/) for fast, reliable Python package management.
+
+### Installation
+```bash
+# Install dependencies and the package in development mode
+uv sync
+
+# Or install the package directly
+uv pip install .
+```
+
+### Running the CLI
+```bash
+# Run with uv
+uv run okta-saml --profile <profile_name>
+
+# Or if installed globally
+okta-saml --profile <profile_name>
+```
+
+### Configuration
+```bash
+okta-saml --config  # Initialize new Okta profile configuration
+```
+
+### Dependency Management
+```bash
+# Add a new dependency
+uv add <package-name>
+
+# Update dependencies
+uv lock --upgrade
+
+# Sync dependencies (install/update based on lockfile)
+uv sync
+```
+
+## Dependencies
+
+This project uses:
+- **requests**: HTTP client for Okta API calls
+- **click**: CLI framework for command-line interface
+- **beautifulsoup4**: HTML/XML parsing for SAML responses
+- **validators**: Input validation
+- **configparser**: Configuration file management (Python built-in)
+
+## Configuration Files
+
+- **~/.okta-saml**: Main configuration file containing Okta profiles with base-url, app-link, username, etc.
+- **~/.saml/credentials**: Stored JWT credentials organized by profile
+- **pyproject.toml**: Python packaging configuration using setuptools and uv
+- **uv.lock**: Dependency lockfile for reproducible installations
+- **.python-version**: Specifies Python 3.11+ requirement
+- **requirements.txt**: Legacy dependency list (maintained for backwards compatibility)
+
+## Key Classes and Methods
+
+- `OktaAuth.get_assertion()`: Retrieves SAML assertion from Okta
+- `OktaAuth.get_auth_code()`: Performs OAuth2 authorization code flow
+- `OktaAuth.get_jwt_token()`: Exchanges auth code for JWT access token
+- `SamlAuth.extract_clientid_from()`: Extracts client ID from SAML assertion
+- `SamlAuth.check_jwt_token()`: Validates existing JWT token expiration
+- `SamlAuth.write_jwt_token()`: Stores JWT token to credentials file
+
+## Security Considerations
+
+The application handles sensitive authentication data including:
+- Okta user credentials (optionally stored in config)
+- JWT access tokens (stored in ~/.saml/credentials)
+- Client secrets from SAML assertions
+- Session tokens during authentication flow
diff --git a/oktasamlcli/version.py b/oktasamlcli/version.py
@@ -1,2 +1,2 @@
 """ version string """
-__version__ = '0.0.1'
+__version__ = '0.0.2'
diff --git a/pyproject.toml b/pyproject.toml
@@ -1,22 +1,28 @@
 [build-system]
-requires = ["setuptools"]
+requires = ["setuptools>=61.0"]
 build-backend = "setuptools.build_meta"
 
 [project]
 name = "okta-saml"
 authors = [
-    {name="Mike Oshea",email="oshea00@gmail.com"}
+    {name="Mike Oshea", email="oshea00@gmail.com"}
 ]
 description = "Utility to obtain saml api jwt from OKTA"
 readme = "README.md"
-requires-python = ">=3.8"
-version = "0.0.1"
+requires-python = ">=3.11"
+version = "0.0.2"
 dependencies = [
-  "requests==2.27.1",
-  "click==7.0",
-  "beautifulsoup4==4.11.1",
-  "ConfigParser==3.5.0",
-  "validators==0.11.2",
+    "requests>=2.32.3",
+    "click>=8.0",
+    "beautifulsoup4>=4.12.0",
+    "validators>=0.22.0",
 ]
+
 [project.scripts]
 okta-saml = "oktasamlcli.okta_samlcli:main"
+
+[tool.uv]
+dev-dependencies = [
+    "build>=1.0.0",
+    "twine>=6.2.0",
+]
diff --git a/requirements.txt b/requirements.txt
@@ -1,8 +1,9 @@
-requests==2.27.1
-click==7.0
-beautifulsoup4==4.11.1
-ConfigParser==3.5.0
-validators==0.11.2
-setuptools
-build
+# This file is maintained for backwards compatibility.
+# The project now uses uv for dependency management.
+# See pyproject.toml for the canonical dependency list.
+
+requests>=2.32.3
+click>=8.0
+beautifulsoup4>=4.12.0
+validators>=0.22.0
 
diff --git a/uv.lock b/uv.lock

Original file line number	Diff line number	Diff line change
`@@ -1,2 +1,2 @@`
`1`	`1`	`""" version string """`
`2`		`-__version__ = '0.0.1'`
	`2`	`+__version__ = '0.0.2'`