django-auth-tutorial
djangoExample
django-auth-tutorial | djangoExample | |
---|---|---|
2 | 1 | |
249 | 2 | |
- | - | |
3.5 | 3.9 | |
25 days ago | 6 months ago | |
Python | Python | |
MIT License | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
django-auth-tutorial
-
Django Authentication Tutorial: Login, Logout, Signup, Password Change, and Password Reset
The source code is available on Github if you need a reference or spot any issues with this tutorial. Please give the repo a star if you found it helpful.
-
I am trying to use CBVs for SignUp view. Tutorials were showing that I can replace my 30 lines of code with "method approach" with several lines of "class based view approach" but it seems that it is not working at all unless I manually add all the exceptions. Am I missing a point of CBVs?
I don't think you need that post function, especially if you're following William Vincent's tutorials. You should look into the source code that he provides to see if you've followed it to the letter. My concerns would be how you set up your own settings.py file and the template (whether the CSRF token was set, if you missed the "POST" attribute, etc.)
djangoExample
-
Krptn: User Auth and Encryption of data at rest, derived from users’ credentials
Hello, all!
Encryption and user authentication are crucial to cybersecurity.
Encryption can be implemented at various levels. I believe that handling encryption at the application level is the most secure since it decreases the attack surface. For example, the SQL server doesn’t get to see the plaintext.
Krptn is a piece of software I’m currently building which could be used as a user authentication service, which also handles encryption (at the application level) of the user’s associated data (e.g.: the users’ phone number).
(Krptn only has a Python API right now.)
It would run in the same server instance as your Python code, so no need to host anything new (decreased complexity) - just install the Python module and call the APIs.
For additional security, I designed the system to derive the encryption keys from the users’ credentials. This prevents an attacker who gains access to the database from being able to decrypt all the data since the encryption keys aren’t stored anywhere. Additionally, each user gets an asymmetric keypair. This enables users to share specific pieces of information with each other.
I know that, for many projects, this level of encryption is not required to secure their system and hence not everyone would benefit from using this. But I hope that for the people who do wish to have such security, this project will help.
It would be much appreciated if you would try this out. Please let me know what you think of this! Also please provide some feedback if you have any!
Here is an example Django integration: https://github.com/krptn/djangoExample
Here is an example Flask integration: https://github.com/krptn/flaskExample
GitHub repo: https://github.com/krptn/krypton
What are some alternatives?
django-sesame - "Magic Links" - URLs with authentication tokens for one-click login
krypton - Data encryption at rest and IAM for Python
dj-rest-auth - Authentication for Django Rest Framework
flaskExample - Example Krptn Integration with Django
django-crash-starter - The Cookiecutter template for the Django Crash Course tutorial by Daniel and Audrey Feldroy.
django-graphql-auth - Django registration and authentication with GraphQL.