Extra security for your sensitive pages
Project description
What is this for?
Elevate provides an extra layer of security beyond initial user authentication. Views can be decorated with @elevate_required, and then users must re-authenticate to access that resource. This might be useful for deleting objects, canceling subscriptions, and other sensitive operations. After re-authentication, the user has elevated permissions for the duration of ELEVATE_COOKIE_AGE. This duration is independent of the normal session duration, allowing for short elevated permission durations while still retaining long user sessions.
Installation
$ pip install django-elevate
Compatibility
Django 2.2, 3.1, and 3.2
Python 3.5 - 3.9
pypy3
Resources
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
django-elevate-2.0.1.tar.gz
(7.6 kB
view hashes)
Built Distribution
Close
Hashes for django_elevate-2.0.1-py2.py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 9891c4ec535c3d4c3bdc41af025414b64d6460d31a8f469e9d3521bab9126285 |
|
MD5 | 0701947b877385e6136e20e94b223f0c |
|
BLAKE2b-256 | f6c6fcb10223f3b94fb9cb538d869ec233f80a2a1bdf400a26c1265f45a91c72 |