Site-wide perimeter access control for Django projects.

Navigation

Verified details

These details have been verified by PyPI
Owner

Unverified details

These details have not been verified by PyPI
Project links
Meta
Classifiers
Report project as malware

Project description

Perimeter is a Django app that provides middleware that allows you to ‘secure the perimeter’ of your django site outside of any existing auth process that you have.

Why?

Most django sites have some kind of user registration and security model - a login process, decorators to secure certain URLs, user accounts - everything that comes with django.contrib.auth and associated apps (django-registration).

Sometimes, however, you want to simply secure the entire site to prevent prying eyes - the classic example being before a site goes live. You want to erect a secure perimeter fence around the entire thing. If you have control over your front-end web server (e.g. Apache, Nginx) then this can be used to do this using their in-built access control features. However, if you are running your app on a hosting platform you may not have admin access to these parts. Even if you do have control over your webserver, you may not want to be re-configuring it every time you want to grant someone access.

That’s when you need Perimeter.

Perimeter provides simple tokenised access control over your entire Django site (everything, including the admin site and login pages).

How does it work?

Once you have installed and enabled Perimeter, everyone requiring access will need an authorisation token (not authentication - there is nothing inherent in Perimeter to prevent people swapping / sharing tokens - that is an accepted use case).

Perimeter runs as middleware that will inspect the user’s session for a token. If they have a valid token, then they continue to use the site uninterrupted. If they do not have a token, or the token is invalid (expired or set to inactive), then they are redirected to the Perimeter ‘Gateway’, where they must enter a valid token, along with their name and email (for auditing purposes - this is stored in the database).

To create a new token you need to head to the admin site, and create a new token under the Perimeter app. If you have PERIMETER_ENABLED set to True already you won’t be able to access the admin site (as Perimeter covers everything except for the perimeter ‘gateway’ form), and so there is a management command (create_access_token) that you can use to create your first token. (This is analagous to the Django setup process where it prompts you to create a superuser.)

Setup

  1. Add ‘perimeter’ to your installed apps.

  2. Add ‘perimeter.middleware.PerimeterAccessMiddleware’ to the list of MIDDLEWARE_CLASSES

  3. Add the perimeter urls - NB must use the ‘perimeter’ namespace

  4. Add PERIMETER_ENABLED=True to your settings file. This setting can be used to enable or disable Perimeter in different environments.

Settings:

PERIMETER_ENABLED = True

INSTALLED_APPS = (
    ...
    'perimeter',
    ...
)

# perimeter must appear after sessions middleware as it relies on there
# being a valid request.session
MIDDLEWARE_CLASSES = [
    ...
    'django.contrib.sessions.middleware.SessionMiddleware',
    'perimeter.middleware.PerimeterAccessMiddleware',
    ...
]

Site urls:

# in site urls
urlpatterns = patterns(
    '',
    ...
    # NB you must include the namespace, as it is referenced in the app
    url(r'^perimeter/', include('perimeter.urls', namespace='perimeter')),
    ...
)

Tests

The app has a suite of tests, and a tox.ini file configured to run them when using tox (recommended).

Project details

Verified details

These details have been verified by PyPI
Owner

Unverified details

These details have not been verified by PyPI
Project links
Meta
Classifiers

Release history Release notifications | RSS feed

0.18.0

0.17.0

0.16.0

0.15.1

0.15.0

0.14.2

0.14.1

0.14

0.12.1

0.12

0.11

0.10

0.9.1

0.9

0.8.1

0.8

0.7.1

0.7

0.6.7

0.6.6

0.6.5

0.6.4

0.6.3

0.6.2

This version

0.6.1

0.6

0.5.1

0.5

0.4.2

0.4.1

0.4

0.3.7

0.3.6

0.3.5

0.3

0.2.1

0.2

0.1.1

0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

django-perimeter-0.6.1.tar.gz (13.9 kB view details)

Uploaded Source

Built Distributions

If you're not sure about the file name format, learn more about wheel file names.

django_perimeter-0.6.1-py2-none-any.whl (21.8 kB view details)

Uploaded Python 2

django-perimeter-0.6.1.macosx-10.10-x86_64.tar.gz (25.0 kB view details)

Uploaded Source

File details

Details for the file django-perimeter-0.6.1.tar.gz.

File metadata

File hashes

Hashes for django-perimeter-0.6.1.tar.gz
Algorithm Hash digest
SHA256 02dac4849aaf3f9e752deb8899f263fd11deb3de72a9ccc7d3f9d1c1af4547ae
MD5 d658e94d461ccce39562890641150fe8
BLAKE2b-256 4d6529cf774c3cd024dea1e56854e1f30668c1e9db0bd0d643615513b64041c5

See more details on using hashes here.

File details

Details for the file django_perimeter-0.6.1-py2-none-any.whl.

File metadata

File hashes

Hashes for django_perimeter-0.6.1-py2-none-any.whl
Algorithm Hash digest
SHA256 b1ffefb107ff1f609df8b596fe74f9fe9090383f5e2bef9a9485c2d43c9c0971
MD5 eaf120ea70258ad1994b0189fa81919e
BLAKE2b-256 5fd185d9a12c19f618ea5ec94a250bf7a01559a1856cba04d807f47868ad0abd

See more details on using hashes here.

File details

Details for the file django-perimeter-0.6.1.macosx-10.10-x86_64.tar.gz.

File metadata

File hashes

Hashes for django-perimeter-0.6.1.macosx-10.10-x86_64.tar.gz
Algorithm Hash digest
SHA256 f68eab082f701cc813f9d8c2f09ab4f7ac126e2d8dd4ed07fc1d4192eea05c7d
MD5 90f8ad3a7bb324990dbf4d6ad357e2b9
BLAKE2b-256 8a0399549a03f59f076cd9be500617b559fcf168fb834feaf149bb2f0c45b895

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page