Extra security for your sensitive pages
Project description
What is this for?
Elevate provides an extra layer of security beyond initial user authentication. Views can be decorated with @elevate_required, and then users must re-authenticate to access that resource. This might be useful for deleting objects, canceling subscriptions, and other sensitive operations. After re-authentication, the user has elevated permissions for the duration of ELEVATE_COOKIE_AGE. This duration is independent of the normal session duration, allowing for short elevated permission durations while still retaining long user sessions.
Installation
$ pip install django-elevate
Compatibility
Django 1.8 - 2.2
Python 2.7 - 3.7
pypy
Resources
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
django-elevate-1.0.1.tar.gz
(7.5 kB
view hashes)