Summer 2025 FOSS contributions from by the Yaal Coop team

Sponsoring

• Marco 'Lubber' Wienkoop for his work on Fomantic-UI, a nice CSS framework we use in canaille. Fomantic-UI is used on other tools we rely on, like Forgejo.
• Hsiaoming Yang for his work on authlib, a python authentication library we use in canaille.
• Bronze tier sponsoring for the PyConFR convention.

Magic-Wormhole

Get files from one computer to another, safely

• Remove warnings about invalid escape sequence in strings
• Replace formatted strings to f-strings for the mailbox server and the relay server
• Git ignores files generated when the tests run
• Update syntax to 3.9+ Python versions, done with pyupgrade-directories, for the client, the mailbox server and the relay server
• Replace deprecated pkg_resources.resource_string() call by importlib.resources.file() for the mailbox server and the relay server
• Set environment variable to fix a test by having the same stdout output

authlib

The ultimate Python library in building OAuth, OpenID Connect clients and servers. JWS,JWE,JWK,JWA,JWT included.

• Temporarily restore OAuth2Request body parameter
• Fix id_token generation with EdDSA alg
• Sign OIDC id_token according to id_token_signed_response_alg client metadata
• Add diff-cover check in GHA
• Move from pre-commit to prek
• Run GHA unit tests with uv
• Fix InsecureTransportError raising
• Add conventional-commits pre-commit hook
• Fix response_mode=form_post with Starlette client
• Migrate tests to pytest paradigm
• Use explicit *.test urls in unit tests
• Add a request param to RFC7591 generate_client_info and generate_client_secret methods

pytest-iam

A lightweight and fully functional OAuth2 / OpenID Connect (OIDC) / SCIM server to be used in test suites.

• Fix fake_users and fake_groups exceptions

scim2-client

Pythonically build SCIM requests and parse SCIM responses

• Support for PATCH operations
• Allow testing resources with multiple extensions

scim2-models

SCIM resources serialization and validation with Pydantic

• Ensure PatchOp.path is set for remove operations
• Implement proper path validation for SearchRequest attributes
• Implement PatchOp validation checks
• Implement PatchOp.patch
• Ignore invalid attributes and excluded_attributes on serialization
• Don't normalize fields typed with Any
• Allow non canonical values for Enums
• Only allow one primary complex attribute value to be true
• Explicit ComplexAttribute sub-attributes

scim2-server

Lightweight SCIM2 server prototype

• Fix an error happening when PUT-ing an extension field to an instance
• Fix behavior when patch removes null uneditable fields
• Fix extension root patching

scim2-tester

SCIM RFCs server compliance checker

• Implement PATCH checks
• Implement check filtering
• Implement a resource manager to take care of garbages objects
• Implement additional tests on the core resources
• Handle empty response of PATCH operations
• Correctly handle value generation in sub-attributes