Improve stubs for oauthlib.oauth2.rfc6749 (#13752)

Author: donbarbos

stubs/oauthlib/oauthlib/oauth2/__init__.pyi

@@ -57,3 +57,4 @@ from .rfc6749.grant_types import (
 from .rfc6749.request_validator import RequestValidator as RequestValidator
 from .rfc6749.tokens import BearerToken as BearerToken, OAuth2Token as OAuth2Token
 from .rfc6749.utils import is_secure_transport as is_secure_transport
+from .rfc8628.clients import DeviceClient as DeviceClient

stubs/oauthlib/oauthlib/oauth2/rfc6749/__init__.pyi

@@ -1,4 +1,4 @@
-from typing import Any
+from logging import Logger
 
 from .endpoints.base import BaseEndpoint as BaseEndpoint, catch_errors_and_unavailability as catch_errors_and_unavailability
 from .errors import (
@@ -8,4 +8,4 @@ from .errors import (
     TemporarilyUnavailableError as TemporarilyUnavailableError,
 )
 
-log: Any
+log: Logger

stubs/oauthlib/oauthlib/oauth2/rfc6749/clients/base.pyi

@@ -1,97 +1,122 @@
-from _typeshed import Incomplete
-from typing import Any
+from _typeshed import ConvertibleToInt, Incomplete
+from collections.abc import Callable
+from typing import Final, Literal
+from typing_extensions import TypeAlias
 
-AUTH_HEADER: str
-URI_QUERY: str
-BODY: str
-FORM_ENC_HEADERS: Any
+from oauthlib.common import _HTTPMethod
+from oauthlib.oauth2.rfc6749.tokens import OAuth2Token
+
+_TokenPlacement: TypeAlias = Literal["auth_header", "query", "body"]
+
+AUTH_HEADER: Final[_TokenPlacement]
+URI_QUERY: Final[_TokenPlacement]
+BODY: Final[_TokenPlacement]
+FORM_ENC_HEADERS: Final[dict[str, str]]
 
 class Client:
     refresh_token_key: str
-    client_id: Any
-    default_token_placement: Any
-    token_type: Any
-    access_token: Any
-    refresh_token: Any
-    mac_key: Any
-    mac_algorithm: Any
-    token: Any
-    scope: Any
-    state_generator: Any
-    state: Any
-    redirect_url: Any
-    code: Any
-    expires_in: Any
-    code_verifier: str
-    code_challenge: str
-    code_challenge_method: str
+    client_id: str
+    default_token_placement: _TokenPlacement
+    token_type: str
+    access_token: str | None
+    refresh_token: str | None
+    mac_key: str | bytes | bytearray | None
+    mac_algorithm: str | None
+    token: dict[str, Incomplete]
+    scope: str | set[object] | tuple[object] | list[object]
+    state_generator: Callable[[], str]
+    state: str | None
+    redirect_url: str | None
+    code: Incomplete
+    expires_in: ConvertibleToInt | None
+    code_verifier: str | None
+    code_challenge: str | None
+    code_challenge_method: str | None
     def __init__(
         self,
-        client_id,
-        default_token_placement="auth_header",
+        client_id: str,
+        default_token_placement: _TokenPlacement = "auth_header",
         token_type: str = "Bearer",
-        access_token: Incomplete | None = None,
-        refresh_token: Incomplete | None = None,
-        mac_key: Incomplete | None = None,
-        mac_algorithm: Incomplete | None = None,
-        token: Incomplete | None = None,
-        scope: Incomplete | None = None,
-        state: Incomplete | None = None,
-        redirect_url: Incomplete | None = None,
-        state_generator=...,
+        access_token: str | None = None,
+        refresh_token: str | None = None,
+        mac_key: str | bytes | bytearray | None = None,
+        mac_algorithm: str | None = None,
+        token: dict[str, Incomplete] | None = None,
+        scope: str | set[object] | tuple[object] | list[object] | None = None,
+        state: str | None = None,
+        redirect_url: str | None = None,
+        state_generator: Callable[[], str] = ...,
         code_verifier: str | None = None,
         code_challenge: str | None = None,
         code_challenge_method: str | None = None,
         **kwargs,
     ) -> None: ...
     @property
-    def token_types(self): ...
+    def token_types(
+        self,
+    ) -> dict[
+        Literal["Bearer", "MAC"],
+        Callable[
+            [str, str, str | None, dict[str, str] | None, str | None, Incomplete], tuple[str, dict[str, str] | None, str | None]
+        ],
+    ]: ...
     def prepare_request_uri(self, *args, **kwargs) -> str: ...
     def prepare_request_body(self, *args, **kwargs) -> str: ...
     def parse_request_uri_response(self, *args, **kwargs) -> dict[str, str]: ...
     def add_token(
         self,
-        uri,
-        http_method: str = "GET",
-        body: Incomplete | None = None,
-        headers: Incomplete | None = None,
-        token_placement: Incomplete | None = None,
+        uri: str,
+        http_method: _HTTPMethod = "GET",
+        body: str | None = None,
+        headers: dict[str, str] | None = None,
+        token_placement: _TokenPlacement | None = None,
         **kwargs,
-    ): ...
+    ) -> tuple[str, dict[str, str] | None, str | None]: ...
     def prepare_authorization_request(
         self,
-        authorization_url,
-        state: Incomplete | None = None,
-        redirect_url: Incomplete | None = None,
-        scope: Incomplete | None = None,
+        authorization_url: str,
+        state: str | None = None,
+        redirect_url: str | None = None,
+        scope: str | set[object] | tuple[object] | list[object] | None = None,
         **kwargs,
-    ): ...
+    ) -> tuple[str, dict[str, str], str]: ...
     def prepare_token_request(
         self,
-        token_url,
-        authorization_response: Incomplete | None = None,
-        redirect_url: Incomplete | None = None,
-        state: Incomplete | None = None,
+        token_url: str,
+        authorization_response: str | None = None,
+        redirect_url: str | None = None,
+        state: str | None = None,
         body: str = "",
         **kwargs,
-    ): ...
+    ) -> tuple[str, dict[str, str], str]: ...
     def prepare_refresh_token_request(
-        self, token_url, refresh_token: Incomplete | None = None, body: str = "", scope: Incomplete | None = None, **kwargs
-    ): ...
+        self,
+        token_url: str,
+        refresh_token: str | None = None,
+        body: str = "",
+        scope: str | set[object] | tuple[object] | list[object] | None = None,
+        **kwargs,
+    ) -> tuple[str, dict[str, str], str]: ...
     def prepare_token_revocation_request(
         self,
         revocation_url,
         token,
-        token_type_hint: str = "access_token",
+        token_type_hint: Literal["access_token", "refresh_token"] | None = "access_token",
         body: str = "",
-        callback: Incomplete | None = None,
+        callback: Callable[[Incomplete], Incomplete] | None = None,
         **kwargs,
     ): ...
-    def parse_request_body_response(self, body, scope: Incomplete | None = None, **kwargs): ...
+    def parse_request_body_response(
+        self, body: str, scope: str | set[object] | tuple[object] | list[object] | None = None, **kwargs
+    ) -> OAuth2Token: ...
     def prepare_refresh_body(
-        self, body: str = "", refresh_token: Incomplete | None = None, scope: Incomplete | None = None, **kwargs
-    ): ...
+        self,
+        body: str = "",
+        refresh_token: str | None = None,
+        scope: str | set[object] | tuple[object] | list[object] | None = None,
+        **kwargs,
+    ) -> str: ...
     def create_code_verifier(self, length: int) -> str: ...
     def create_code_challenge(self, code_verifier: str, code_challenge_method: str | None = None) -> str: ...
-    def populate_code_attributes(self, response) -> None: ...
-    def populate_token_attributes(self, response) -> None: ...
+    def populate_code_attributes(self, response: dict[str, Incomplete]) -> None: ...
+    def populate_token_attributes(self, response: dict[str, Incomplete]) -> None: ...

stubs/oauthlib/oauthlib/oauth2/rfc6749/errors.pyi

@@ -1,11 +1,13 @@
 from _typeshed import Incomplete
-from typing import Any
+from typing import Any, NoReturn
+
+from oauthlib.common import Request
 
 class OAuth2Error(Exception):
-    error: Any
+    error: str | None
     status_code: int
     description: str
-    uri: Any
+    uri: str | None
     state: Any
     redirect_uri: Any
     client_id: Any
@@ -15,21 +17,21 @@ class OAuth2Error(Exception):
     grant_type: Any
     def __init__(
         self,
-        description: Incomplete | None = None,
-        uri: Incomplete | None = None,
+        description: str | None = None,
+        uri: str | None = None,
         state: Incomplete | None = None,
-        status_code: Incomplete | None = None,
-        request: Incomplete | None = None,
+        status_code: int | None = None,
+        request: Request | None = None,
     ) -> None: ...
-    def in_uri(self, uri): ...
+    def in_uri(self, uri: str) -> str: ...
     @property
-    def twotuples(self): ...
+    def twotuples(self) -> list[tuple[str, Incomplete | str | None]]: ...
     @property
-    def urlencoded(self): ...
+    def urlencoded(self) -> str: ...
     @property
-    def json(self): ...
+    def json(self) -> str: ...
     @property
-    def headers(self): ...
+    def headers(self) -> dict[str, str]: ...
 
 class TokenExpiredError(OAuth2Error):
     error: str
@@ -135,7 +137,14 @@ class LoginRequired(OAuth2Error):
     error: str
 
 class CustomOAuth2Error(OAuth2Error):
-    error: Any
-    def __init__(self, error, *args, **kwargs) -> None: ...
+    def __init__(
+        self,
+        error: str,
+        description: str | None = None,
+        uri: str | None = None,
+        state: Incomplete | None = None,
+        status_code: int | None = None,
+        request: Request | None = None,
+    ) -> None: ...
 
-def raise_from_error(error, params: Incomplete | None = None) -> None: ...
+def raise_from_error(error: str, params: dict[str, Incomplete] | None = None) -> NoReturn: ...

stubs/oauthlib/oauthlib/oauth2/rfc6749/parameters.pyi

@@ -1,23 +1,44 @@
 from _typeshed import Incomplete
+from collections.abc import Callable
+from typing import Literal
+
+from .tokens import OAuth2Token
 
 def prepare_grant_uri(
-    uri,
-    client_id,
-    response_type,
-    redirect_uri: Incomplete | None = None,
-    scope: Incomplete | None = None,
-    state: Incomplete | None = None,
+    uri: str,
+    client_id: str,
+    response_type: Literal["code", "token"],
+    redirect_uri: str | None = None,
+    scope: str | set[object] | tuple[object] | list[object] | None = None,
+    state: str | None = None,
     code_challenge: str | None = None,
     code_challenge_method: str | None = "plain",
     **kwargs,
-): ...
+) -> str: ...
 def prepare_token_request(
-    grant_type, body: str = "", include_client_id: bool = True, code_verifier: str | None = None, **kwargs
-): ...
+    grant_type: str,
+    body: str = "",
+    include_client_id: bool = True,
+    code_verifier: str | None = None,
+    *,
+    scope: str | set[object] | tuple[object] | list[object] | None = None,
+    client_id: str | None = None,
+    client_secret: str | None = None,
+    **kwargs,
+) -> str: ...
 def prepare_token_revocation_request(
-    url, token, token_type_hint: str = "access_token", callback: Incomplete | None = None, body: str = "", **kwargs
-): ...
-def parse_authorization_code_response(uri, state: Incomplete | None = None): ...
-def parse_implicit_response(uri, state: Incomplete | None = None, scope: Incomplete | None = None): ...
-def parse_token_response(body, scope: Incomplete | None = None): ...
-def validate_token_parameters(params) -> None: ...
+    url: str,
+    token: str,
+    token_type_hint: Literal["access_token", "refresh_token"] | None = "access_token",
+    callback: Callable[[Incomplete], Incomplete] | None = None,
+    body: str = "",
+    **kwargs,
+) -> tuple[str, dict[str, str], str]: ...
+def parse_authorization_code_response(uri: str, state: str | None = None) -> dict[str, str]: ...
+def parse_implicit_response(
+    uri: str, state: str | None = None, scope: str | set[object] | tuple[object] | list[object] | None = None
+) -> OAuth2Token: ...
+def parse_token_response(
+    body: str | bytes | bytearray, scope: str | set[object] | tuple[object] | list[object] | None = None
+) -> OAuth2Token: ...
+def validate_token_parameters(params: dict[str, Incomplete]) -> None: ...

stubs/oauthlib/oauthlib/oauth2/rfc6749/request_validator.pyi

@@ -1,5 +1,6 @@
 from collections.abc import Mapping
-from typing import Any, Literal, TypedDict
+from logging import Logger
+from typing import Literal, TypedDict
 from typing_extensions import NotRequired
 
 from oauthlib.common import Request
@@ -18,7 +19,7 @@ class _AuthorizationCode(TypedDict):
     state: NotRequired[str]
     nonce: NotRequired[str]
 
-log: Any
+log: Logger
 
 class RequestValidator:
     def client_authentication_required(self, request: Request, *args, **kwargs) -> bool: ...