Skip to main content

Django based app for Microsoft authentication of users.

Project description

Django microsoft authentication

It is a very simple app which uses Microsoft authentication for user login and admin panel login. It uses the Microsoft authentication library for Python (msal).

Installation

Standard pip install:

pip install django-microsoft-authentication

Configuration

MICROSOFT = {
    "app_id": "YOUR_APP_ID_HERE",
    "app_secret": "YOUR_APP_SECRET_HERE",
    "redirect": "http://localhost:8000/microsoft_authentication/callback",
    "scopes": ["user.read"],
    "authority": "https://login.microsoftonline.com/common",  # or using tenant "https://login.microsoftonline.com/{tenant}",
    "valid_email_domains": ["<list_of_valid_domains>"],
    "logout_uri": "http://localhost:8000/admin/logout"
}
  • Add the following line to settings.py to change the LOGIN_URL and LOGIN_REDIRECT_URL settings.
LOGIN_URL = "/microsoft_authentication/login"
LOGIN_REDIRECT_URL = "/admin"  # optional and can be changed to any other url
  • Add 'microsoft_authentication' to INSTALLED_APPS
  • Add the following to the project/urls.py
from django.contrib import admin
from django.urls import path, include

urlpatterns = [
    path('admin/', admin.site.urls),
    # Add the following line
    path('microsoft_authentication/', include('microsoft_authentication.urls'))
]

How it works?

  1. It authenticates the user using their microsoft email and microsoft authentication.
  2. It also verifies if the domain of the microsoft authenticated email is also in MICROSOFT["valid_email_domains"]
  3. After the first two steps of authentication, if the user is not found, it creates a new user but with no access to any apps in admin panel.
  4. Superusers can assign User Groups to the users for Group based access to views.

Quickstart

This app provides a decorator which can be used as follows:

from django.http import HttpResponse
from microsoft_authentication.auth.auth_decorators import microsoft_login_required


@microsoft_login_required()
def home(request):
    return HttpResponse("Logged in")

# If pages need to be restricted to certain groups of users.
@microsoft_login_required(groups=("SpecificGroup1", "SpecificGroup2"))  # Add here the list of Group names
def specific_group_access(request):
    return HttpResponse("You are accessing page which is accessible only to users belonging to SpecificGroup1 or SpecificGroup2")

Troubleshooting during development

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

File details

Details for the file django_microsoft_auth_sync-0.1.8-py3-none-any.whl.

File metadata

File hashes

Hashes for django_microsoft_auth_sync-0.1.8-py3-none-any.whl
Algorithm Hash digest
SHA256 e6b988f5e248f8f0d8f18b9f54547e38e405a161d13184cfda95ada10df5459a
MD5 c64cd2b6de713596b3b4dd35295e2fc0
BLAKE2b-256 2df74c2e82ec9f5ccf03de4be5484bf10108554be9ed2b103c0cc8d5e8517b80

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page