Skip to main content
Help the Python Software Foundation raise $60,000 USD by December 31st!  Building the PSF Q4 Fundraiser

Django-esteid is a package that provides Esteid based authentication for your Django applications.

Project description

django-esteid

pypi Status Build Status Coverage Status

Django-esteid is a package that provides Esteid based authentication for your Django applications.

Quickstart

Install django-esteid:

pip install django-esteid

Add esteid to installed apps:

INSTALLED_APPS = [
    # ...
    'esteid',
    # ...
]

There is currently no integration reference (work is in progress), but please take a look at the test page for some insight, and read the testing section below.

Static files such as the services' logos and helper JS are also shipped with this library.

SmartID

Detailed docs are here.

MobileID

Detailed docs are here.

Id Card

Detailed docs are here.

Service settings

You can

Context processors

esteid.context_processors.esteid_services adds service enabled/demo statuses to the template context. This way you can easily manage the necessary services displayed on the auth/signing page.

Testing

There is a possibility to test the signing flow with ID card, SmartID and Mobile ID (the demo services) with the test views coming with the library.

NOTE: you may not be able to use the live Esteid services even with live credentials. The live services keep an IP address whitelist which only contains IP addresses as specified in customer's contract.

To run the django-esteid test server with the test views,

  • install the virtual environment if not installed yet,
  • run ./manage.py migrate to create the SQLite DB for sessions,
  • run ./manage.py runserver 8765, where 8765 is a port of your liking

then visit the URL http://localhost:8765/ and follow the instructions on that page.

Mobile ID

To test Mobile ID signing, you will need test phone numbers and ID codes.

You can not use real phone numbers or ID codes with the demo service.

SmartID

To test signing with SmartID, yoy can use the test ID codes.

You can also register a demo SmartID account and use a demo SmartID app to enter the PINs; please visit the demo SmartID portal for the details.

ID card

ID card signing requires SSL to work, even in a testing enviorment.
Note that the signature will not be valid neither with the real certificates, nor with the test ones.

To perform signing with ID card, you would need the chrome-token-signing package installed. apt-get install chrome-token-signing

Testing with ssl

You can run an HTTPS webserver with ./manage.py runsslserver 127.0.0.1:8765. It will use a development certificate coming with the djangosslserver package.

Note that the cert is self-signed, so you will need to create a security exception in browser.

If you need to create your own cert using openssl:

openssl req -x509 -out localhost.crt -keyout localhost.key \
  -newkey rsa:2048 -nodes -sha256 \
  -subj '/CN=localhost' -extensions EXT -config <( \
   printf "[dn]\nCN=localhost\n[req]\ndistinguished_name = dn\n[EXT]\nsubjectAltName=DNS:localhost\nkeyUsage=digitalSignature\nextendedKeyUsage=serverAuth")

Then start the HTTPS webserver as follows:

python manage.py runsslserver 127.0.0.1:8765 --certificate localhost.crt --key localhost.key

A security exception is also necessary as marked above.

ngrok

If you don't want to use a self-signed cert you can route the test site through HTTPS with ngrok.

With ngrok installed, and the ./manage.py runserver 8765 started, run ngrok http http://127.0.0.1:8765 and it will create a tunnel with an HTTPS URL for your local site.

Verify demo containers with digidoc-tool

It's possible to use the command line utility digidoc-tool from the libdigidocpp library to verify containers with signatures created by demo services:

digidoc-tool open --tslurl=https://open-eid.github.io/test-TL/tl-mp-test-EE.xml --tslcert=trusted-test-tsl.crt <file>

Instructions on setting up the environment can be found here.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for django-esteid, version 3.0
Filename, size File type Python version Upload date Hashes
Filename, size django_esteid-3.0-py2.py3-none-any.whl (129.8 kB) File type Wheel Python version py2.py3 Upload date Hashes View
Filename, size django-esteid-3.0.tar.gz (93.2 kB) File type Source Python version None Upload date Hashes View

Supported by

Pingdom Pingdom Monitoring Google Google Object Storage and Download Analytics Sentry Sentry Error logging AWS AWS Cloud computing DataDog DataDog Monitoring Fastly Fastly CDN DigiCert DigiCert EV certificate StatusPage StatusPage Status page