如何确定PyJWT的版本?

时间:2016-10-21 22:50:55

标签: python pyjwt

我有两种不同的软件环境(环境A 环境B ),我试图在两种环境下运行PyJWT。它在一个环境环境A 上运行良好,但在环境B 时失败。

当我使用jwt.encode() == algorithm致电ES时,我遇到环境B 的错误是:Algorithm not supported

我试图弄清楚它为什么适用于环境A 而不是环境B 。看起来这两个环境安装了不同版本的PyJWT。但是确定在环境B 上安装哪个版本的PyJWT对我来说很难。我该怎么办?

我在环境A 环境B 上运行了以下检测代码:

import jwt, cryptography, sys, pkg_resources

my_private_key = """XXXXX"""
my_public_key = """YYYYYY"""
original = {"Hello": "World"}
print "sys.version = {}".format(str(sys.version))

try:
    print "dir(jwt) = {}".format(str(dir(jwt)))
except Exception as e:
    print "Failed to get dir of jwt module: {}".format(e)

try:
    print "dir(cryptography) = {}".format(str(dir(cryptography)))
except Exception as e:
    print "Failed to get dir of cryptography module: {}".format(e)

try:
    print "jwt = {}".format(str(jwt.__version__))
except Exception as e:
    print "Failed to get version of jwt module using .__version: {}".format(e)
try:
    print "cryptography = {}".format(str(cryptography.__version__))
except Exception as e:
    print "Failed to get version of cryptography module using .__version: {}".format(e)

try:
    print "pkg_resources.require('jwt')[0].version = {}".format(str(pkg_resources.require("jwt")[0].version))
except Exception as e:
    print "Failed to get version of jwt module via pkg_resources: {}".format(e)

try:
    print "pkg_resources.require('cryptography')[0].version = {}".format(str(pkg_resources.require("cryptography")[0].version))
except Exception as e:
    print "Failed to get version of cryptography module via pkg_resources: {}".format(e)

try:
    print "original = {}".format(str(original))
    encoded = jwt.encode(original, my_private_key, algorithm='ES256')
except Exception as e:
    print "encoding exception = {}".format(str(e))
else:
    try:
        print "encoded = {}".format(str(encoded))
        unencoded = jwt.decode(encoded, my_public_key, algorithms=['ES256'])
    except Exception as e:
        print "decoding exception = {}".format(str(e))
    else:
        print "unencoded = {}".format(str(unencoded))

环境A 上,编码成功:

sys.version = 2.7.12 (default, Sep  1 2016, 22:14:00)
[GCC 4.8.3 20140911 (Red Hat 4.8.3-9)]
dir(jwt) = ['DecodeError', 'ExpiredSignature', 'ExpiredSignatureError', 'ImmatureSignatureError', 'InvalidAudience', 'InvalidAudienceError', 'InvalidIssuedAtError', 'InvalidIssuer', 'InvalidIssuerError', 'InvalidTokenError', 'MissingRequiredClaimError', 'PyJWS', 'PyJWT', '__author__', '__builtins__', '__copyright__', '__doc__', '__file__', '__license__', '__name__', '__package__', '__path__', '__title__', '__version__', 'algorithms', 'api_jws', 'api_jwt', 'compat', 'decode', 'encode', 'exceptions', 'get_unverified_header', 'register_algorithm', 'unregister_algorithm', 'utils']
dir(cryptography) = ['__about__', '__all__', '__author__', '__builtins__', '__copyright__', '__doc__', '__email__', '__file__', '__license__', '__name__', '__package__', '__path__', '__summary__', '__title__', '__uri__', '__version__', 'absolute_import', 'division', 'exceptions', 'hazmat', 'print_function', 'sys', 'utils', 'warnings']
jwt = 1.4.2
cryptography = 1.5.2
Failed to get version of jwt module via pkg_resources: jwt
pkg_resources.require('cryptography')[0].version = 1.5.2
original = {'Hello': 'World'}
encoded = eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJIZWxsbyI6IldvcmxkIn0.ciaXCcO2gTqsQ4JUEKj5q4YX6vfHu33XY32g2MNIVEDXHNllpuqDCj-cCrlGPf6hGNifAJbNI9kBaAyuCIwyJQ
unencoded = {u'Hello': u'World'}

环境B 上,编码失败。你可以看到我无法分辨出哪个版本的PyJWT正在运行。然而,这个版本的PyJWT没有我尝试使用的算法ES256

sys.version = 2.7.12 (default, Sep  1 2016, 22:14:00) 
[GCC 4.8.3 20140911 (Red Hat 4.8.3-9)]"
dir(jwt) = ['DecodeError', 'ExpiredSignature', 'Mapping', 'PKCS1_v1_5', 'SHA256', 'SHA384', 'SHA512', '__all__', '__builtins__', '__doc__', '__file__', '__name__', '__package__', '__path__', 'base64', 'base64url_decode', 'base64url_encode', 'binascii', 'constant_time_compare', 'datetime', 'decode', 'encode', 'hashlib', 'header', 'hmac', 'json', 'load', 'signing_methods', 'sys', 'timegm', 'unicode_literals', 'verify_methods', 'verify_signature']
dir(cryptography) = ['__about__', '__all__', '__author__', '__builtins__', '__copyright__', '__doc__', '__email__', '__file__', '__license__', '__name__', '__package__', '__path__', '__summary__', '__title__', '__uri__', '__version__', 'absolute_import', 'division', 'print_function', 'sys', 'warnings']
Failed to get version of jwt module using .__version: 'module' object has no attribute '__version__'
cryptography = 1.5.2
Failed to get version of jwt module via pkg_resources: jwt
pkg_resources.require('cryptography')[0].version = 1.5.2
original = {'Hello': 'World'}
encoding exception = Algorithm not supported

2 个答案:

答案 0 :(得分:3)

PyJWT .__version__属性出现在this提交的0.2.2中。

通常,要查找通过setuptools安装的软件包版本,您需要运行以下代码:

import pkg_resources
print pkg_resources.require("jwt")[0].version

如果使用pip来安装软件包,可以尝试使用linux shell:

pip show jwt | grep Version

来自python里面的东西:

import pip
print next(pip.commands.show.search_packages_info(['jwt']))['version']

答案 1 :(得分:0)

我用过

npm-force-resolutions

而且效果很好。

相关问题
最新问题