Skip to main content

Extra security for your sensitive pages

Project description

https://img.shields.io/pypi/v/django-elevate.svg https://travis-ci.org/justinmayer/django-elevate.svg?branch=main https://coveralls.io/repos/github/justinmayer/django-elevate/badge.svg?branch=main
Elevate mode offers an extra layer of security for your most sensitive pages.
This is an implementation of GitHub’s Sudo Mode for Django.

What is this for?

Elevate provides an extra layer of security beyond initial user authentication. Views can be decorated with @elevate_required, and then users must re-authenticate to access that resource. This might be useful for deleting objects, canceling subscriptions, and other sensitive operations. After re-authentication, the user has elevated permissions for the duration of ELEVATE_COOKIE_AGE. This duration is independent of the normal session duration, allowing for short elevated permission durations while still retaining long user sessions.

Installation

$ pip install django-elevate

Compatibility

  • Django 2.2, 3.1, and 3.2
  • Python 3.5 - 3.9
  • pypy3

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for django-elevate, version 2.0.2
Filename, size File type Python version Upload date Hashes
Filename, size django_elevate-2.0.2-py2.py3-none-any.whl (10.5 kB) File type Wheel Python version py2.py3 Upload date Hashes View
Filename, size django-elevate-2.0.2.tar.gz (7.6 kB) File type Source Python version None Upload date Hashes View

Supported by

AWS AWS Cloud computing Datadog Datadog Monitoring DigiCert DigiCert EV certificate Facebook / Instagram Facebook / Instagram PSF Sponsor Fastly Fastly CDN Google Google Object Storage and Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Salesforce Salesforce PSF Sponsor Sentry Sentry Error logging StatusPage StatusPage Status page