GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → justinmayer → django-elevate

justinmayer / django-elevate

Licence: BSD-3-Clause license
Protect your sensitive Django views by requiring re-authentication

Programming Languages

python
139335 projects - #7 most used programming language

Labels

securitydjangoauthentication

django-elevate

PyPI Version Build Status Documentation Status Code Coverage

Elevate mode offers an extra layer of security for your most sensitive pages.
This is an implementation of GitHub's Sudo Mode for Django.

What is this for?

Elevate provides an extra layer of security beyond initial user authentication. Views can be decorated with @elevate_required, and then users must re-authenticate to access that resource. This might be useful for deleting objects, canceling subscriptions, and other sensitive operations. After re-authentication, the user has elevated permissions for the duration of ELEVATE_COOKIE_AGE. This duration is independent of the normal session duration, allowing for short elevated permission durations while still retaining long user sessions.

Installation

$ pip install django-elevate

Compatibility

  • Django 2.2, 3.2, and 4.0
  • Python 3.7 - 3.10
  • pypy3

Resources

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].