feat: add sso

gotrue/_async/gotrue_base_api.py

@@ -112,6 +112,7 @@ async def _request(
             )
             response.raise_for_status()
             result = response if no_resolve_json else response.json()
+            print(response)
             if xform:
                 return xform(result)
         except Exception as e:

gotrue/_async/gotrue_client.py

@@ -246,6 +246,32 @@ async def sign_in_with_password(
             self._notify_all_subscribers("SIGNED_IN", response.session)
         return response
 
+    async def sign_in_with_sso(self, credentials: SignInWithSSOCredentials):
+        await self._remove_session()
+        provider_id = credentials.get("provider_id")
+        domain = credentials.get("domain")
+        options = credentials.get("options", {})
+        redirect_to = options.get("redirect_to")
+        captcha_token = options.get("captcha_token")
+        if domain:
+            return await self._request(
+                "POST",
+                "sso",
+                body={"domain": domain},
+                redirect_to=redirect_to,
+                xform=parse_auth_response,
+            )
+        if provider_id:
+            return await self._request(
+                "POST" "sso",
+                body={"provider_id": provider_id},
+                redirect_to=redirect_to,
+                xform=parse_auth_response,
+            )
+        raise AuthInvalidCredentialsError(
+            "You must provide either a domain or provider_id"
+        )
+
     async def sign_in_with_oauth(
         self,
         credentials: SignInWithOAuthCredentials,

gotrue/_sync/gotrue_base_api.py

@@ -112,6 +112,7 @@ def _request(
             )
             response.raise_for_status()
             result = response if no_resolve_json else response.json()
+            print(response)
             if xform:
                 return xform(result)
         except Exception as e:

gotrue/_sync/gotrue_client.py

@@ -246,6 +246,32 @@ def sign_in_with_password(
             self._notify_all_subscribers("SIGNED_IN", response.session)
         return response
 
+    def sign_in_with_sso(self, credentials: SignInWithSSOCredentials):
+        self._remove_session()
+        provider_id = credentials.get("provider_id")
+        domain = credentials.get("domain")
+        options = credentials.get("options", {})
+        redirect_to = options.get("redirect_to")
+        captcha_token = options.get("captcha_token")
+        if domain:
+            return self._request(
+                "POST",
+                "sso",
+                body={"domain": domain},
+                redirect_to=redirect_to,
+                xform=parse_auth_response,
+            )
+        if provider_id:
+            return self._request(
+                "POST" "sso",
+                body={"provider_id": provider_id},
+                redirect_to=redirect_to,
+                xform=parse_auth_response,
+            )
+        raise AuthInvalidCredentialsError(
+            "You must provide either a domain or provider_id"
+        )
+
     def sign_in_with_oauth(
         self,
         credentials: SignInWithOAuthCredentials,

gotrue/types.py

@@ -321,6 +321,17 @@ class SignInWithOAuthCredentials(TypedDict):
     options: NotRequired[SignInWithOAuthCredentialsOptions]
 
 
+class SignInWithSSOCredentials(TypedDict):
+    provider_id: NotRequired[str]
+    domain: NotRequired[str]
+    options: NotRequired[SignInWithSSOOptions]
+
+
+class SignInWithSSOOptions(TypedDict):
+    redirect_to: NotRequired[str]
+    captcha_token: NotRequired[str]
+
+
 class VerifyOtpParamsOptions(TypedDict):
     redirect_to: NotRequired[str]
     captcha_token: NotRequired[str]