Roomz Documentation

Real-time chatroom web service with magic link authentication

What is Roomz?

Roomz is a real-time chat application with secure magic link authentication. Built with modern async technology (Quart + SocketIO), it provides:

• Passwordless authentication via magic links sent by email

• Real-time messaging with instant delivery across all connected clients

• WebSocket-powered communication using Socket.IO

• User-owned private channels for secure, isolated messaging

• Session management with JWT tokens stored in httpOnly cookies

• CLI and Python client libraries for programmatic access

Key Features

• Magic Link Authentication: Passwordless login via email

• Instant Messaging: Messages appear instantly across all connected users

• Real-time Updates: See when users join or leave

• Connection Status: Visual indicator shows when disconnected

• Session Caching: Client library caches sessions for automatic reconnection

• Rate Limiting: Protection against magic link spam

• Private Channels: Each user gets their own isolated messaging channel

Installation

pip install roomz

For development:

pip install roomz[dev]

Quick Start

Running the Server

# Set required environment variables
export JWT_SECRET_KEY="your-256-bit-secret-key-here"
export ALLOWED_EMAILS="user@example.com,other@example.com"

# Start the server
roomz

# Or with gunicorn for production
gunicorn -k uvicorn.workers.UvicornWorker app:asgi_app

Open http://localhost:8000 in your browser.

Using the Python Client

from roomz import AsyncClient

# Create client with session caching
client = AsyncClient(
  server_url="http://localhost:8000",
  session_cache_file="~/.roomz/session.json"
)

# Register event handlers
client.on("message", lambda data: print(f"{data['user']['email']}: {data['content']}"))
client.on("user_joined", lambda data: print(f"{data['user']['email']} joined"))

# Connect and authenticate
await client.connect(token="magic-link-token")

# Send a message
result = await client.send("Hello, world!")

Using the CLI

# Start the CLI
roomz-cli

# Or with a custom server
roomz-cli --server http://your-server:8000

CLI Commands:

• /login <email> - Request a magic link

• /token <token> - Connect with magic link token

• /logout - Disconnect and clear session

• /quit - Exit the CLI

Architecture

Browser (Vue 3 + Vuetify 4)
    | HTTP POST /auth/request-magic-link
    v
Magic Link Email (or console in dev)
    | HTTP GET /auth/verify?token=...
    v
JWT Cookie Set (httpOnly, SameSite=Strict)
    | WebSocket with JWT cookie auth
    v
Quart Server + SocketIO
    | JWT Validation + ALLOWED_EMAILS check
    v
User's Private Channel (user:{email})

Key Security Features:

• Stateless authentication with JWT tokens

• httpOnly, SameSite=Strict cookies

• Magic links are single-use and expire in 15 minutes

• Rate limiting on magic link requests (5 per email per hour)

• Server-side validation of ALLOWED_EMAILS on every request

Contents

Documentation

• Installation
  • Requirements
  • Installing from PyPI
  • Installing from Source
  • Development Installation
  • Documentation Dependencies
  • Dependencies
  • Verifying Installation
• Quick Start
  • Prerequisites
  • Step 1: Configuration
  • Step 2: Start the Server
  • Step 3: Authentication
  • Step 4: Chatting
  • Using the Python Client
  • Using the CLI
  • Multiple Users
  • Environment Variables Reference
  • Next Steps
• API Reference
  • Module: roomz
  • AsyncClient
  • SyncClient
  • ConnectionState Enum
  • Exceptions
  • Events
  • CLI Commands
• Server Deployment Guide
  • Server Entry Points
  • Running the Server
  • Configuration Reference
  • Integration into Other Applications
  • Security Considerations
  • Reverse Proxy Configuration
  • Monitoring and Logging
  • Scaling Considerations
  • Troubleshooting
• Configuration Reference
  • Environment Variables
  • Client Configuration
  • Server Configuration
  • .env File Example
  • Configuration Validation
  • Security Best Practices

Development

• Contributing
• Changelog

Links

• Repository: https://github.com/christophevg/roomz

• Issues: https://github.com/christophevg/roomz/issues

• PyPI: https://pypi.org/project/roomz/

License

MIT License - See LICENSE for details.