python-social-auth
diff --git a/‎social_core/backends/base.py‎
Lines changed: 1 addition & 1 deletion b/‎social_core/backends/base.py‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎social_core/backends/box.py‎
Lines changed: 1 addition & 1 deletion b/‎social_core/backends/box.py‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎social_core/backends/cas.py‎
Lines changed: 6 additions & 3 deletions b/‎social_core/backends/cas.py‎
Lines changed: 6 additions & 3 deletions
diff --git a/‎social_core/backends/egi_checkin.py‎
Lines changed: 3 additions & 3 deletions b/‎social_core/backends/egi_checkin.py‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎social_core/backends/facebook.py‎
Lines changed: 3 additions & 3 deletions b/‎social_core/backends/facebook.py‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎social_core/backends/keycloak.py‎
Lines changed: 2 additions & 2 deletions b/‎social_core/backends/keycloak.py‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎social_core/backends/legacy.py‎
Lines changed: 10 additions & 6 deletions b/‎social_core/backends/legacy.py‎
Lines changed: 10 additions & 6 deletions
diff --git a/‎social_core/backends/linkedin.py‎
Lines changed: 10 additions & 3 deletions b/‎social_core/backends/linkedin.py‎
Lines changed: 10 additions & 3 deletions
diff --git a/‎social_core/backends/mediawiki.py‎
Lines changed: 4 additions & 3 deletions b/‎social_core/backends/mediawiki.py‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎social_core/backends/mineid.py‎
Lines changed: 3 additions & 3 deletions b/‎social_core/backends/mineid.py‎
Lines changed: 3 additions & 3 deletions
@@ -35,7 +35,7 @@ class BaseAuth:
     def __init__(
         self, strategy: BaseStrategy | None = None, redirect_uri: str | None = None
     ) -> None:
-        self.strategy: Any = (
+        self.strategy: BaseStrategy = (
             strategy if strategy is not None else REGISTRY.default_strategy
         )
         self.redirect_uri = redirect_uri
 
@@ -46,6 +46,6 @@ def get_user_details(self, response):
 
     def user_data(self, access_token: str, *args, **kwargs) -> dict[str, Any] | None:
         """Loads user data from service"""
-        params = self.setting("PROFILE_EXTRA_PARAMS", {})
+        params = cast("dict", self.setting("PROFILE_EXTRA_PARAMS", {}))
         params["access_token"] = access_token
         return self.get_json("https://api.box.com/2.0/users/me", params=params)
@@ -7,10 +7,13 @@
 implementation and the standard OIDC implementation in Python Social Auth.
 """
 
-from typing import Any, cast
+from typing import TYPE_CHECKING, Any, cast
 
 from .open_id_connect import OpenIdConnectAuth
 
+if TYPE_CHECKING:
+    from collections.abc import Iterable
+
 
 class CASOpenIdConnectAuth(OpenIdConnectAuth):
     """
@@ -30,7 +33,7 @@ class CASOpenIdConnectAuth(OpenIdConnectAuth):
     STATE_PARAMETER = True
 
     def oidc_endpoint(self):
-        endpoint = self.setting("OIDC_ENDPOINT", self.OIDC_ENDPOINT)
+        endpoint = super().oidc_endpoint()
         self.log_debug("endpoint: %s", endpoint)
         return endpoint
 
@@ -58,7 +61,7 @@ def get_user_details(self, response):
         }
 
     def auth_allowed(self, response, details):
-        allow_groups = set(self.setting("ALLOW_GROUPS", set()))
+        allow_groups = set(cast("Iterable", self.setting("ALLOW_GROUPS", set())))
         groups = set(response.get("groups", set()))
         return (
             super().auth_allowed(response, details)
 
@@ -5,11 +5,11 @@
 
 from __future__ import annotations
 
-from typing import Literal
+from typing import Literal, cast
 
 from social_core.backends.open_id_connect import OpenIdConnectAuth
 
-CHECKIN_ENV_ENDPOINTS = {
+CHECKIN_ENV_ENDPOINTS: dict[str, str] = {
     "prod": "https://aai.egi.eu/auth/realms/egi",
     "demo": "https://aai-demo.egi.eu/auth/realms/egi",
     "dev": "https://aai-dev.egi.eu/auth/realms/egi",
@@ -48,7 +48,7 @@ def oidc_endpoint(self):
         endpoint = self.setting("OIDC_ENDPOINT", self.OIDC_ENDPOINT)
         if endpoint:
             return endpoint
-        checkin_env = self.setting("CHECKIN_ENV", self.CHECKIN_ENV)
+        checkin_env = cast("str", self.setting("CHECKIN_ENV", self.CHECKIN_ENV))
         return CHECKIN_ENV_ENDPOINTS.get(checkin_env, "")
 
     def get_user_details(self, response):
 
@@ -8,7 +8,7 @@
 import hmac
 import json
 import time
-from typing import Any
+from typing import Any, cast
 
 from social_core.exceptions import (
     AuthCanceled,
@@ -49,10 +49,10 @@ def auth_params(self, state=None):
         return params
 
     def get_authorization_url_format(self) -> dict[str, str]:
-        return {"version": self.setting("API_VERSION", API_VERSION)}
+        return {"version": cast("str", self.setting("API_VERSION", API_VERSION))}
 
     def get_access_token_url_format(self) -> dict[str, str]:
-        return {"version": self.setting("API_VERSION", API_VERSION)}
+        return {"version": cast("str", self.setting("API_VERSION", API_VERSION))}
 
     def get_user_details(self, response):
         """Return user details from Facebook account"""
 
@@ -1,4 +1,4 @@
-from typing import Any
+from typing import Any, cast
 
 import jwt
 
@@ -123,7 +123,7 @@ def user_data(self, access_token: str, *args, **kwargs) -> dict[str, Any] | None
             key=self.public_key(),
             algorithms=self.algorithm(),
             audience=self.audience(),
-            leeway=self.setting("JWT_LEEWAY", default=0),
+            leeway=cast("int", self.setting("JWT_LEEWAY", default=0)),
         )
 
     def get_user_details(self, response):
 
@@ -1,17 +1,21 @@
+from typing import cast
+
 from social_core.exceptions import AuthMissingParameter
 
 from .base import BaseAuth
 
 
 class LegacyAuth(BaseAuth):
-    def auth_url(self):
-        return self.setting("FORM_URL")
+    def auth_url(self) -> str:
+        return cast("str", self.setting("FORM_URL"))
 
-    def auth_html(self):
-        return self.strategy.render_html(tpl=self.setting("FORM_HTML"))
+    def auth_html(self) -> str:
+        return self.strategy.render_html(tpl=cast("str", self.setting("FORM_HTML")))
 
-    def uses_redirect(self):
-        return self.setting("FORM_URL") and not self.setting("FORM_HTML")
+    def uses_redirect(self) -> bool:
+        return bool(cast("str", self.setting("FORM_URL"))) and not cast(
+            "str", self.setting("FORM_HTML")
+        )
 
     def auth_complete(self, *args, **kwargs):
         """Completes login process, must return user instance"""
 
@@ -7,7 +7,7 @@
 
 import datetime
 from calendar import timegm
-from typing import TYPE_CHECKING, Any, Literal
+from typing import TYPE_CHECKING, Any, Literal, cast
 
 from social_core.backends.open_id_connect import OpenIdConnectAuth
 from social_core.exceptions import AuthCanceled, AuthTokenError
@@ -75,7 +75,12 @@ class LinkedinOAuth2(BaseOAuth2):
     def user_details_url(self):
         # use set() since LinkedIn fails when values are duplicated
         fields_selectors = list(
-            {"id", "firstName", "lastName", *self.setting("FIELD_SELECTORS", [])}
+            {
+                "id",
+                "firstName",
+                "lastName",
+                *cast("list[str]", self.setting("FIELD_SELECTORS", [])),
+            }
         )
         # user sort to ease the tests URL mocking
         fields_selectors.sort()
@@ -90,7 +95,9 @@ def user_data(self, access_token: str, *args, **kwargs) -> dict[str, Any] | None
             self.user_details_url(), headers=self.user_data_headers(access_token)
         )
 
-        if "emailAddress" in set(self.setting("FIELD_SELECTORS", [])):
+        if "emailAddress" in set(
+            cast("list[str]", self.setting("FIELD_SELECTORS", []))
+        ):
             emails = self.email_data(access_token, *args, **kwargs)
             if emails:
                 response["emailAddress"] = emails[0]
 
@@ -5,6 +5,7 @@
 
 import re
 import time
+from typing import cast
 from urllib.parse import parse_qs, urlencode, urlparse
 
 import jwt
@@ -46,7 +47,7 @@ def unauthorized_token(self):
         params["title"] = "Special:OAuth/initiate"
         key, secret = self.get_key_and_secret()
         response = self.request(
-            self.setting("MEDIAWIKI_URL"),
+            cast("str", self.setting("MEDIAWIKI_URL")),
             params=params,
             auth=OAuth1(key, secret, callback_uri=self.setting("CALLBACK")),
             method=self.REQUEST_TOKEN_METHOD,
@@ -83,7 +84,7 @@ def access_token(self, token):
         auth_token = self.oauth_auth(token)
 
         response = self.request(
-            self.setting("MEDIAWIKI_URL"),
+            cast("str", self.setting("MEDIAWIKI_URL")),
             method="POST",
             params={"title": "Special:Oauth/token"},
             auth=auth_token,
@@ -116,7 +117,7 @@ def get_user_details(self, response):
         )
 
         req_resp = self.request(
-            self.setting("MEDIAWIKI_URL"),
+            cast("str", self.setting("MEDIAWIKI_URL")),
             method="POST",
             params={"title": "Special:OAuth/identify"},
             auth=auth,
 
@@ -1,4 +1,4 @@
-from typing import Any
+from typing import Any, cast
 
 from .oauth import BaseOAuth2
 
@@ -31,6 +31,6 @@ def get_access_token_url_format(self) -> dict[str, str]:
 
     def get_mineid_url_params(self) -> dict[str, str]:
         return {
-            "host": self.setting("HOST", "www.mineid.org"),
-            "scheme": self.setting("SCHEME", "https"),
+            "host": cast("str", self.setting("HOST", "www.mineid.org")),
+            "scheme": cast("str", self.setting("SCHEME", "https")),
         }
Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,7 @@ class BaseAuth:`
`35`	`35`	`def __init__(`
`36`	`36`	`self, strategy: BaseStrategy \| None = None, redirect_uri: str \| None = None`
`37`	`37`	`) -> None:`
`38`		`- self.strategy: Any = (`
	`38`	`+ self.strategy: BaseStrategy = (`
`39`	`39`	`strategy if strategy is not None else REGISTRY.default_strategy`
`40`	`40`	`)`
`41`	`41`	`self.redirect_uri = redirect_uri`