Extra security for your sensitive pages
Project description
What is this for?
Elevate provides an extra layer of security beyond initial user authentication. Views can be decorated with @elevate_required, and then users must re-authenticate to access that resource. This might be useful for deleting objects, canceling subscriptions, and other sensitive operations. After re-authentication, the user has elevated permissions for the duration of ELEVATE_COOKIE_AGE. This duration is independent of the normal session duration, allowing for short elevated permission durations while still retaining long user sessions.
Installation
$ pip install django-elevate
Compatibility
Django 1.7 - 1.11
Python 2.7 - 3.6
pypy
Resources
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
django-elevate-1.0.0a1.tar.gz
(8.8 kB
view hashes)
Built Distribution
Close
Hashes for django_elevate-1.0.0a1-py2.py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 339c77e2286beb86010d23367feaa55e02570079a3da9e328bd599b7ae12f611 |
|
MD5 | 2bfb94ff6adbda943ced3e3f63ba8a35 |
|
BLAKE2b-256 | de1b056da560fc5323e0db9ddbf8ff421ead5c2e63b846cb10fa2ec9607b7519 |