Use AppKey in aiohttp 3.9 (#671)

Co-authored-by: Sam Bull <git@sambull.org>

aiohttp_security/api.py

@@ -5,8 +5,8 @@
 
 from aiohttp_security.abc import AbstractAuthorizationPolicy, AbstractIdentityPolicy
 
-IDENTITY_KEY = 'aiohttp_security_identity_policy'
-AUTZ_KEY = 'aiohttp_security_autz_policy'
+IDENTITY_KEY = web.AppKey("IDENTITY_KEY", AbstractIdentityPolicy)
+AUTZ_KEY = web.AppKey("AUTZ_KEY", AbstractAuthorizationPolicy)
 
 # _AIP/_AAP are shorthand for Optional[policy] when we retrieve from request.
 _AAP = Optional[AbstractAuthorizationPolicy]

requirements.txt

@@ -1,5 +1,5 @@
 -e .
-aiohttp==3.8.6
+aiohttp==3.9.0
 aiohttp-session==2.12.0
 async-timeout==4.0.3
 coverage==7.3.2

setup.py

@@ -16,7 +16,7 @@ def read(f):
     return open(os.path.join(os.path.dirname(__file__), f)).read().strip()
 
 
-install_requires = ['aiohttp>=3.2.0']
+install_requires = ["aiohttp>=3.9"]
 tests_require = install_requires + ['pytest']
 extras_require = {'session': 'aiohttp-session'}