Skip to main content

A Django app for email verification.

Project description

Email-Verification for Django

Email verification for new signups or new user is a two step verification process and adds a layer for security for valid users.

verify_email is a django app that provides this functionality right of the bat without any complex implementation.

The app takes care of :

  • Settings user's is_active status to False.
  • Generate hashed token for each user.
  • Generate a verification link and sending it to user's email.
  • Recieve a request from verification link and verify for its validity.
  • Activating the user's account.

What you have to impliment is :

Note : The app is designed to be used right of the bat, but further customizations options are also provided in Advance section below.

Installation

NOTE : Don't forget to activate virtual environment if you have one.

pip install Django-Verify-Email

Quick start

The steps to getting started is very simple. Like any other app, this can be installed easyly by adding "verify_email" in your installed apps like:

Note : This documentation assumes that you already have a mail server configured for your project to send mails.

if Not, then your first step should be Step 0:

Step 0 :-

--- Bypass this step if you already have these things setup for your project. ---

In your settings.py :

EMAIL_BACKEND = 'django.core.mail.backends.smtp.EmailBackend'
EMAIL_HOST = 'smtp.gmail.com'
EMAIL_PORT = 587
EMAIL_USE_TLS = True
EMAIL_HOST_USER = os.environ.get('EMAIL_ID') 
EMAIL_HOST_PASSWORD = os.environ.get('EMAIL_PW')

DEFAULT_FROM_EMAIL = 'noreply<no_reply@domain.com>'

Main steps...

Step 1 :-

Add "verify_email" to your INSTALLED_APPS setting like this:

    INSTALLED_APPS = [
        ...
        "verify_email",
    ]

Step 2 :-

Include the "verify_email" URLconf in your project urls.py like this:


urlpatterns = [
	...
	path('verification/', include('verify_email.urls')),	

]

Step 3 :-

For sending email from a signup form, in your views.py import:

...
from verify_email.email_handler import send_verification_link

Now in the function where you are validation the form:

...

def register_user(request):
    ...

    if form.is_valid():

        inactive_user = send_verification_link(request, form)

Attention : "send_verification_link()" takes two arguments, requests and form in order to set user's active status.

The "inactive_user" is returned by "send_verification_link()" contains a saved user object just like form.save() would do.(with is_active status set as False) which you can further user to extract user information from cleaned_data dict, like :

inactive_user.cleaned_data['email']

# Output : test-user123@gmail.com

The user is already been saved as inactive and you don't have to .save() it explicitly.

If anything goes wrong in sending the verification link email, the user will not be saved, so that user can try again.

At this point, you are good to go...

Start the development server and signup with an email and you should be getting an email on the entered email with the default template for account activation. (You can provide your own html template. see Advance Section)

Note : The app comes with default email templates which can be overriden. See Custom Email Templates

Verifying User's email :

Nothing...


That's right ! , you don't have to impliment any other code for validating user with their respective unique tokens and emails.

The app takes care of everything in background.

  • When user click on the verification link, it comes to :
    path('verification/', include('verify_email')),
    
    which you defined in your project's urls.py in step 2 above.
  • This pattern is further extended in this app's urls.py where it accepts encoded email and encoded hashed token from the verification link.
  • It then checks for user by that email.
  • If user exist, it then checks for token if it is valid for that user or not.
  • If the token is valid, it activates the user's account by setting is_active attribute to True and last_login to timezone.now().
  • If the token is alredy been redeemed or modified, you'll be redirected to a verification failed page.

This whole process from generating HMAC hashed token for each user to verifying it for a unique user, is abstracted within the app 😃.

Advance

Custom Email Templates :

The app is packed with default html templates to handle the web pages but if you want to provide your own template you can do it by setting an attribute in settings.py :

HTML_MESSAGE_TEMPLATE = "path/to/html_template.html"

VERIFICATION_SUCCESS_TEMPLATE = "path/to/success.html"

VERIFICATION_FAILED_TEMPLATE = "path/to/failed.html"
SUBJECT = 'subject of email'

# default subject is : Email Verification Mail

Successful Verification :

After verification is successful, you might wanna redirect the user to login page. You can do this in two ways :

  • 1 Redirect from success webpage. The user will be prompted to show success page with a button on it to navigate to Login page.
    LOGIN_URL = 'name of your login pattern'
    
    Note: This variable is also used by django.
    
  • 2 Redirect directly to login page without stopping at success message page. The user will be directly sent to login page bypassing success page.
    VERIFICATION_SUCCESS_TEMPLATE = None
    

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

Django-Verify-Email-0.0.2.tar.gz (24.6 kB view hashes)

Uploaded source

Built Distributions

Supported by

AWS AWS Cloud computing Datadog Datadog Monitoring Facebook / Instagram Facebook / Instagram PSF Sponsor Fastly Fastly CDN Google Google Object Storage and Download Analytics Huawei Huawei PSF Sponsor Microsoft Microsoft PSF Sponsor NVIDIA NVIDIA PSF Sponsor Pingdom Pingdom Monitoring Salesforce Salesforce PSF Sponsor Sentry Sentry Error logging StatusPage StatusPage Status page