Integrate Clerk with Django

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for jmitchel3 from gravatar.com jmitchel3

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python >=3.12
  • Provides-Extra: drf
Classifiers
Report project as malware

Project description

Django Clerk Users

Integrate Clerk authentication with Django.

Note: This package is in early development (v0.0.2). APIs may change.

Features

  • Custom user model (ClerkUser) with Clerk integration
  • JWT token validation via Clerk SDK
  • Session-based authentication middleware (validates once, caches in session)
  • Webhook handling with Svix signature verification
  • Optional organizations support (separate sub-app)
  • Django REST Framework authentication (optional)

Installation

pip install django-clerk-users

For Django REST Framework support:

pip install django-clerk-users[drf]

Quick Start

1. Add to installed apps

INSTALLED_APPS = [
    # ...
    "django_clerk_users",
    # Optional: for organization support
    # "django_clerk_users.organizations",
]

2. Configure settings

# Required
CLERK_SECRET_KEY = "sk_live_..."  # From Clerk Dashboard
CLERK_WEBHOOK_SIGNING_KEY = "whsec_..."  # From Clerk Webhooks
CLERK_FRONTEND_HOSTS = ["https://your-app.com"]  # Your frontend URLs

# Optional
CLERK_SESSION_REVALIDATION_SECONDS = 300  # Re-validate JWT every 5 minutes
CLERK_CACHE_TIMEOUT = 300  # Cache timeout for user lookups

3. Set the user model

AUTH_USER_MODEL = "django_clerk_users.ClerkUser"

Or extend the abstract model for custom fields:

# myapp/models.py
from django_clerk_users.models import AbstractClerkUser


class CustomUser(AbstractClerkUser):
    company = models.CharField(max_length=255, blank=True)

    class Meta(AbstractClerkUser.Meta):
        swappable = "AUTH_USER_MODEL"


# settings.py
AUTH_USER_MODEL = "myapp.CustomUser"

4. Add middleware

MIDDLEWARE = [
    "django.middleware.security.SecurityMiddleware",
    "django.contrib.sessions.middleware.SessionMiddleware",
    "django.middleware.common.CommonMiddleware",
    "django.middleware.csrf.CsrfViewMiddleware",
    "django.contrib.auth.middleware.AuthenticationMiddleware",
    "django_clerk_users.middleware.ClerkAuthMiddleware",  # Add after AuthenticationMiddleware
    # ...
]

5. Add authentication backend

For Clerk-only authentication:

AUTHENTICATION_BACKENDS = [
    "django_clerk_users.authentication.ClerkBackend",
]

For hybrid authentication (Clerk + Django admin):

If you want to support both Clerk authentication (JWT) and traditional Django admin login (username/password), use both backends:

AUTHENTICATION_BACKENDS = [
    "django.contrib.auth.backends.ModelBackend",  # For Django admin
    "django_clerk_users.authentication.ClerkBackend",  # For Clerk JWT
]

This allows:

  • Admin users to log in via Django admin with username/password
  • Frontend users to authenticate via Clerk JWT tokens
  • The middleware automatically detects which authentication method was used

6. Run migrations

python manage.py migrate

7. Configure webhooks

Add the webhook URL to your urls.py:

from django_clerk_users.webhooks import clerk_webhook_view

urlpatterns = [
    # ...
    path("webhooks/clerk/", clerk_webhook_view, name="clerk_webhook"),
]

Then configure your Clerk Dashboard to send webhooks to https://your-app.com/webhooks/clerk/.

8. Create admin users (for hybrid authentication)

If you're using hybrid authentication, create an admin user for Django admin access:

python manage.py createsuperuser

This creates a user with:

  • Username/password authentication (for Django admin)
  • No clerk_id (since they're not Clerk users)
  • Access to Django admin panel

Note: Regular Clerk users are created automatically via webhooks when they sign up through your frontend.

Usage

Accessing the user in views

def my_view(request):
    if request.user.is_authenticated:
        # Access Clerk user attributes
        print(request.user.clerk_id)
        print(request.user.email)
        print(request.user.full_name)

        # Access organization (if using organizations)
        print(request.org)  # Organization ID from JWT

Decorators

from django_clerk_users.decorators import clerk_user_required


@clerk_user_required
def protected_view(request):
    # Only authenticated Clerk users can access
    return HttpResponse(f"Hello, {request.user.email}")

Django REST Framework

# settings.py
REST_FRAMEWORK = {
    "DEFAULT_AUTHENTICATION_CLASSES": [
        "django_clerk_users.authentication.ClerkAuthentication",
    ],
}

Hybrid Authentication (Clerk + Django Admin)

The package supports hybrid authentication, allowing you to use both Clerk (JWT-based) authentication for your frontend users and traditional Django admin authentication for internal staff.

How it works

  1. Frontend users: Authenticate via Clerk JWT tokens (handled by ClerkAuthMiddleware)
  2. Admin users: Authenticate via username/password (handled by Django's ModelBackend)
  3. The middleware automatically detects which authentication method was used and respects existing sessions

Configuration

# settings.py
AUTHENTICATION_BACKENDS = [
    "django.contrib.auth.backends.ModelBackend",  # For Django admin
    "django_clerk_users.authentication.ClerkBackend",  # For Clerk JWT
]

Creating admin users

Admin users don't need a clerk_id (it's optional in hybrid mode):

python manage.py createsuperuser
# Email: admin@example.com
# Password: ********

This creates a user with:

  • Username/password authentication (no Clerk integration)
  • Access to Django admin panel at /admin/
  • Standard Django permissions (is_staff, is_superuser)

Session handling

  • Django admin sessions: Traditional session cookies (set by Django's auth system)
  • Clerk sessions: JWT validated once, then cached in session with last_clerk_check marker
  • The middleware checks for last_clerk_check to distinguish between the two types

Use cases

This is particularly useful when:

  • Your admin panel is on a different domain than your frontend
  • You want internal staff to access Django admin without Clerk accounts
  • You need traditional Django auth features (permissions, groups, etc.)
  • You're migrating from Django auth to Clerk gradually

Organizations (Optional)

For Clerk organization support:

# settings.py
INSTALLED_APPS = [
    # ...
    "django_clerk_users",
    "django_clerk_users.organizations",
]

MIDDLEWARE = [
    # ...
    "django_clerk_users.middleware.ClerkAuthMiddleware",
    "django_clerk_users.organizations.middleware.ClerkOrganizationMiddleware",
]

Management Commands

# Sync users from Clerk
python manage.py sync_clerk_users

# Sync organizations from Clerk
python manage.py sync_clerk_organizations

Configuration Reference

Setting Required Default Description
CLERK_SECRET_KEY Yes - Your Clerk secret key
CLERK_WEBHOOK_SIGNING_KEY Yes* - Webhook signing secret (*required for webhooks)
CLERK_FRONTEND_HOSTS Yes [] Authorized frontend URLs
CLERK_AUTH_PARTIES No [] Alias for CLERK_FRONTEND_HOSTS
CLERK_SESSION_REVALIDATION_SECONDS No 300 JWT revalidation interval (seconds)
CLERK_CACHE_TIMEOUT No 300 User cache timeout (seconds)
CLERK_ORG_CACHE_TIMEOUT No 900 Organization cache timeout (seconds)
CLERK_WEBHOOK_DEDUP_TIMEOUT No 45 Webhook deduplication cache timeout (seconds)

License

MIT

Contributing

Contributions are welcome! Please open an issue or PR on GitHub.

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for jmitchel3 from gravatar.com jmitchel3

Unverified details

These details have not been verified by PyPI
Meta
  • Requires: Python >=3.12
  • Provides-Extra: drf
Classifiers

Release history Release notifications | RSS feed

0.2.4

0.2.3

0.2.2

This version

0.2.1

0.2.0

0.1.4

0.1.3

0.1.2

0.1.1

0.1.0

0.0.2

0.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

django_clerk_users-0.2.1.tar.gz (164.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

django_clerk_users-0.2.1-py3-none-any.whl (53.7 kB view details)

Uploaded Python 3

File details

Details for the file django_clerk_users-0.2.1.tar.gz.

File metadata

  • Download URL: django_clerk_users-0.2.1.tar.gz
  • Upload date:
  • Size: 164.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for django_clerk_users-0.2.1.tar.gz
Algorithm Hash digest
SHA256 6eb8ee2c2d04e43f2f2a23df0c7694e78bdbd0e2c06a389bce98b7e1ee391f1e
MD5 10f44dceb9213105710de88d7d119c9b
BLAKE2b-256 4e0be524bba608fb9a58c1cda2396f4bd789051f73df03378c34b892b7d189bb

See more details on using hashes here.

Provenance

The following attestation bundles were made for django_clerk_users-0.2.1.tar.gz:

Publisher: main.yaml on jmitchel3/django-clerk-users

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file django_clerk_users-0.2.1-py3-none-any.whl.

File metadata

File hashes

Hashes for django_clerk_users-0.2.1-py3-none-any.whl
Algorithm Hash digest
SHA256 e4f2ec510910c9aa71f548c024519d948f7c806b9d3382189329ad92261bcee6
MD5 a986667576f4bd773b06d16315239687
BLAKE2b-256 c29c3da40877dca9d1adbade0ab5912b8b492a45f4761a2921e6dd79b696483a

See more details on using hashes here.

Provenance

The following attestation bundles were made for django_clerk_users-0.2.1-py3-none-any.whl:

Publisher: main.yaml on jmitchel3/django-clerk-users

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page