django-duo-auth

A Django middleware that adds 2-factor authentication via Duo.

These details have not been verified by PyPI

Project links

Homepage

Project description

A Django middleware that adds 2-factor authentication via Duo.

django-duo-auth is designed to be easily integrated into an existing Django project to quickly add 2-factor authentication. It supports one or more Duo applications and uses the configured AUTHENTICATION_BACKENDS to select which users it should authenticate under which circumstance.

Installation

django-duo-auth can be installed from PyPI, and only depends on duo-web.

?> pip install django-duo-auth

Configuration

To enable Duo authentication, first add the following to settings.py:

# Add duo_auth to the list of installed apps
INSTALLED_APPS = [
    # ...
    'duo_auth',
]

# The DuoAuthMiddleware requires and must come after the SessionMiddleware
# and AuthenticationMiddleware
MIDDLEWARE = [
    # ...
    'duo_auth.middleware.DuoAuthMiddleware',
]

DUO_CONFIG = {
    'DEFAULT': {
        'HOST': '<api-host-url>',
        'IKEY': '<integration_key>',
        'AKEY': '<app_secret_key>',
        'SKEY': '<secret_key>',
        'FIRST_STAGE_BACKENDS': [
            'django.contrib.auth.backends.ModelBackend',
        ]
    }
}

Then include the URLs in urls.py:

from django.urls import path, include

urlpatterns = [
    # ...
    path('duo/',  include('duo_auth.urls')),
]

First Stage Backends

The FIRST_STAGE_BACKENDS key for each entry in DUO_CONFIG should be a list of the authentication backends that the Duo application should act as a second factor for. If an authentication backend isn’t listed in any FIRST_STAGE_BACKENDS list, then Duo is disabled.

Overloading the Default Template

The Duo login view loads a template named duo_auth_form.html which must minimally include the following to properly render the Duo I-Frame:

<form method="POST" id="duo_form">
  {% csrf_token %}
  {% if next %}
    <input type="hidden" name="next" value="{{ next }}"/>
  {% endif %}
  {% if app_name %}
    <input type="hidden" name="app_name" value="{{ app_name }}"/>
  {% endif %}
 </form>

 <link rel="stylesheet" type="text/css" href="{{ duo_css_src }}">
 <script src="{{ duo_js_src }}"></script>
 <iframe id="duo_iframe"
         title="Two-Factor Authentication"
         frameborder="0"
         data-host="{{ duo_host }}"
         data-sig-request="{{ sig_request }}"
         data-post-action="{{ post_action }}"
         >
 </iframe>

Project details

These details have not been verified by PyPI

Project links

Homepage

Release history Release notifications | RSS feed

1.0.0

May 17, 2023

0.1.6

Aug 29, 2021

0.1.5

Oct 20, 2020

0.1.4

Mar 18, 2020

0.1.3

Nov 17, 2019

This version

0.1.2

Nov 10, 2019

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

django_duo_auth-0.1.2-py2.py3-none-any.whl (14.0 kB view details)

Uploaded Nov 10, 2019 Python 2 Python 3

File details

Details for the file django_duo_auth-0.1.2-py2.py3-none-any.whl.

File metadata

Download URL: django_duo_auth-0.1.2-py2.py3-none-any.whl
Upload date: Nov 10, 2019
Size: 14.0 kB
Tags: Python 2, Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/2.0.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/28.8.0 requests-toolbelt/0.9.1 tqdm/4.38.0 CPython/3.6.6

File hashes

Hashes for django_duo_auth-0.1.2-py2.py3-none-any.whl
Algorithm	Hash digest
SHA256	`3ec38f912af3310b3ce13b6b24e443815d9eed99177cff94ec8e0bdc343c8b06`
MD5	`16d07754bd5aa2d518ec408560950731`
BLAKE2b-256	`b62cb23ba3b48305be42b374256141b9ecbe45aae77176a811acadfc2ac6d24e`