Django Auth0 authentication background

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Sultan.Imanhodjaev from gravatar.com Sultan.Imanhodjaev

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT

Author: Sultan Imanhodjaev

Tags django-auth0, auth0

Classifiers

Project description

https://codecov.io/gh/imanhodjaev/django-auth0/branch/master/graph/badge.svg https://travis-ci.org/imanhodjaev/django-auth0.png?branch=master Code Health

Django Auth0 authentication background

Quickstart

  • Install django-auth0

  • Add django_auth0 to INSTALLED_APPS

  • Add django_auth0.auth_backend.Auth0Backend to AUTHENTICATION_BACKENDS

AUTHENTICATION_BACKENDS = [
    "django_auth0.auth_backend.Auth0Backend",
    "django.contrib.auth.backends.ModelBackend"
]

  • Add django_auth0.context_processors.auth0 to CONTEXT_PROCESSORS so necessary template context will be provided

  • Include callback urls

Update AUTH0_CALLBACK_URL in settings.py to the following if want to use default authentication handler

  • Add Auth0 client side JavaScript and initialize it

Options:

  1. AUTH0_CLIENT_ID - Auth0 client app id,

  2. AUTH0_SECRET - Auth0 app secret,

  3. AUTH0_DOMAIN - Auth0 subdomain YOU_APP.auth0.com.

  4. AUTH0_CALLBACK_URL - Auth0 callback url is full url to your callback view like https://YOUR_DOMAIN/CALLBACK

  5. AUTH0_SUCCESS_URL - Url to redirect once you login successfully

Overriding callback view Default callback view looks like this so you can always write your own and set AUTH0_CALLBACK_URL to your custom view it should be url name.

def process_login(request):
    """
    Default handler to login user
    :param request: HttpRequest
    """
    code = request.GET.get('code', '')
    json_header = {'content-type': 'application/json'}
    token_url = 'https://%s/oauth/token' % settings.AUTH0_DOMAIN

    token_payload = {
        'client_id': settings.AUTH0_CLIENT_ID,
        'client_secret': settings.AUTH0_SECRET,
        'redirect_uri': reverse(settings.AUTH0_CALLBACK_URL),
        'code': code,
        'grant_type': 'authorization_code'
    }

    token_info = requests.post(token_url,
                               data=json.dumps(token_payload),
                               headers=json_header).json()

    url = 'https://%s/userinfo?access_token=%s'
    user_url = url % (settings.AUTH0_DOMAIN, token_info['access_token'])
    user_info = requests.get(user_url).json()

    # We're saving all user information into the session
    request.session['profile'] = user_info
    user = authenticate(**user_info)

    if user:
        login(request, user)
        return redirect(settings.AUTH0_SUCCESS_URL)

    return HttpResponse(status=400)

Features

TODO

  • Improve tests

  • Make a dummy Django project which uses this app

Running Tests

Does the code actually work?

source <YOURVIRTUALENV>/bin/activate
(myenv) $ pip install -r requirements-test.txt
(myenv) $ python runtests.py

Credits

Tools used in rendering this package:

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for Sultan.Imanhodjaev from gravatar.com Sultan.Imanhodjaev

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: MIT

Author: Sultan Imanhodjaev

Tags django-auth0, auth0

Classifiers

Release history Release notifications | RSS feed

0.0.3

0.0.2

This version

0.0.1

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page