Packaging (#3)

There probably are better ways to do the includes / excludes.

Author: covracer

MANIFEST.in

@@ -0,0 +1,5 @@
+exclude .*
+exclude *
+exclude .github/workflows/*
+exclude demodj/*
+include pyproject.toml

README.md

@@ -0,0 +1,23 @@
+Authenticate to Django with JSON Web Tokens (JWTs) signed by Cloudflare Access. A Django reimplementation of https://developers.cloudflare.com/cloudflare-one/identity/authorization-cookie/validating-json/#python-example
+
+To run the demo, export these environment variables
+* `ALLOWEDFLARE_ACCESS_URL` https://your-organization.cloudflareaccess.com
+* `ALLOWEDFLARE_AUDIENCE` 64-character hexidecimal string
+* `ALLOWEDFLARE_PRIVATE_DOMAIN` your-domain.tld
+
+Then run
+```
+docker-compose up
+```
+
+Configure Cloudflare Tunnel public hostname demodj.your-domain.tld to http://localhost:8001 or equivalent.
+
+### TODO
+* Better login page
+* Django REST Framework (DRF) support
+* Grant users view permission to all models
+* (Re-) authenticating proxy for different-domain front-ends, like https://developers.cloudflare.com/cloudflare-one/identity/authorization-cookie/cors/#send-authentication-token-with-cloudflare-worker but
+    - Setting username so it can be logged by gunicorn
+    - Rewriting origin redirects
+    - Setting the XmlHttpRequest(?) header to avoid redirects to the sign-in page
+    - Will the original CF_Authorization cookie need to be copied, similar to X-Forwarded-For?

pyproject.toml

@@ -1,13 +1,42 @@
+[build-system]
+requires = ['setuptools>=61.0', 'setuptools_scm[toml]>=6.2', 'wheel']
+build-backend = 'setuptools.build_meta'
+
+[project]
+classifiers = [
+    'Programming Language :: Python :: 3',
+    'License :: OSI Approved :: BSD License',
+    'Operating System :: OS Independent',
+    'Topic :: Internet :: WWW/HTTP :: Session',
+]
+description = 'Authenticate to Django with JSON Web Tokens (JWTs) signed by Cloudflare Access'
+dependencies = [
+    'cryptography',
+    'pyjwt',
+    'requests',
+]
+dynamic = ['version']
+name = 'allowedflare'
+readme = 'README.md'
+
+[project.urls]
+Homepage = 'https://github.com/covracer/allowedflare'
+
 [tool.black]
 line-length = 100
 skip-magic-trailing-comma = true
 skip-string-normalization = true
 
+[tool.django-stubs]
+django_settings_module = 'demodj.settings'
+
 [tool.ruff]
 line-length = 100
 
 [tool.mypy]
 plugins = ['mypy_django_plugin.main']
 
-[tool.django-stubs]
-django_settings_module = 'demodj.settings'
+[tool.setuptools]
+packages = ['django_allowedflare']
+
+[tool.setuptools_scm]