User profile management app

These details have not been verified by PyPI

Project links

Project description

django-sso-app

User profile management app built upon django-allauth library and cookiecutter-django as scaffold. Optionally integrates with kong API gateway.

(This is alpha software and is under heavy development)

Tech

Design decisions

After login both JWT and Session Token will be sent to the requesting browser
Single e-mail address for each user
Django staff users (is_staff and is_superuser) must login through django admin view
User logout on password change
New users username is set to email
While profile completed_at is None user can update username
When apigateway is enabled, users with completed_at set to None are on "incomplete" group
User login on email confirmation

Available configurations (Shapes)

Backend only:

Users profile informations are saved into django project with django-sso-app installed.
```
DJANGO_SSO_APP_SHAPE = 'backend_only'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]
```
Backend + Api Gateway

As point 1 but with an api gateway (i.e. kong) proxying authenticated requests to backend. By logging in the client receives a JWT crafted by backend with the api gateway generated secret.
```
DJANGO_SSO_APP_SHAPE = 'backend_only_apigateway'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]
DJANGO_SSO_APP_APIGATEWAY_HOST = 'kong'
```
Backend + App

User profile informations are saved into a django-sso-app instance, all protected django projects have django-sso-app installed and configured to authenticate users by django-sso-app generated JWT. By logging in the client receives a JWT crafted by backend.
```
# Backend config
DJANGO_SSO_APP_SHAPE = 'backend_app'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ..]

# App config
DJANGO_SSO_APP_SHAPE = 'app'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]
```

Backend + App + Persistence

As point 3 but protected projects keep user profiles aligned with django-sso-app instance.

# Backend config
DJANGO_SSO_APP_SHAPE = 'backend_app'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]

# App config
DJANGO_SSO_APP_SHAPE = 'app_persistence'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]

Backend + App + Api Gateway

As point 3 but with an api gateway proxying authenticated requests to django projects.

Protected projects authenticate users by the X-Consumer-Username header set by api gateway. By logging in the client receives a JWT crafted by backend with the api gateway generated secret. All requests to protected services are authenticated by the JWT included in cookie (or header).
```
# Backend config
DJANGO_SSO_APP_SHAPE = 'backend_app_apigateway'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]
DJANGO_SSO_APP_APIGATEWAY_HOST = 'http://kong:8001'

# App config
DJANGO_SSO_APP_SHAPE = 'app_apigateway'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]
```

Backend + App + Persistence + Api Gateway

As point 5 but protected projects keep user profiles aligned with django-sso-app instance.

# Backend config
DJANGO_SSO_APP_SHAPE = 'backend_app_apigateway'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]
DJANGO_SSO_APP_APIGATEWAY_HOST = 'http://kong:8001'

# App config
DJANGO_SSO_APP_SHAPE = 'app_persistence_apigateway'
DJANGO_SSO_APP_BACKEND_DOMAINS = ['1.accounts.domain', ...]

Note

Seamless switch between aforementioned configurations is mandatory in order to simplify scaling.

Setup

Config vars

Required

APP_DOMAIN

i.e. accounts.example.com (default='localhost:8000')
DJANGO_SSO_APP_SHAPE

One of backend_only, backend_only_apigateway, backend_app, app, app_persistence, app_apigateway, app_persistence_apigateway (default='backend_only').

Custom (Shape related)

COOKIE_DOMAIN

JWT cookie domain (default=APP_DOMAIN)
I18N_PATH_ENABLED

Enables i18n paths (default=True)
DJANGO_SSO_APP_APIGATEWAY_HOST

Api gateway instance url (default='http://kong:8001')
DJANGO_SSO_APP_BACKEND_CUSTOM_FRONTEND_APP

Custom frontend package (default=None)
DJANGO_SSO_APP_BACKEND_DOMAINS

List of backend domains (default=[APP_DOMAIN])

Behaviours

DJANGO_SSO_APP_LOGOUT_DELETES_ALL_PROFILE_DEVICES

Either delete or not other profile devices on logout (default=True)

Django

backend.users.models

from django.contrib.auth.models import AbstractUser
from django_sso_app.core.apps.users.models import DjangoSsoAppUserModelMixin

class User(AbstractUser, DjangoSsoAppUserModelMixin):
    pass

backend.users.forms

from django_sso_app.backend.users.forms import (UserCreationForm as DjangoSsoAppUserCreationForm,
                                                UserChangeForm as DjangoSsoAppUserChangeForm)

class UserChangeForm(DjangoSsoAppUserChangeForm):
    pass

class UserCreationForm(DjangoSsoAppUserCreationForm):
    pass

backend.users.admin

from django.contrib import admin
from django.contrib.auth import get_user_model

from django_sso_app.core.apps.users.admin import UserAdmin

User = get_user_model()

admin.site.register(User, UserAdmin)

settings.py

from django_sso_app.settings import *

DJANGO_SSO_APP_SHAPE = env('DJANGO_SSO_APP_SHAPE', default='backend_only')
DJANGO_SSO_APP_APIGATEWAY_HOST = env('DJANGO_SSO_APP_APIGATEWAY_HOST', default='kong')
BACKEND_CUSTOM_FRONTEND_APP = env('BACKEND_CUSTOM_FRONTEND_APP', default=None)

LOCAL_APPS = ["backend.users.apps.UsersConfig"]  # ...

LOCAL_APPS += DJANGO_SSO_APP_DJANGO_APPS

MIDDLEWARE = [
    ...
    'django_sso_app.core.authentication.backends.DjangoSsoAppLoginAuthenticationBackend',

    'django_sso_app.core.authentication.middleware.DjangoSsoAppAuthenticationMiddleware',
    ...
]

AUTHENTICATION_BACKENDS = [
    'django.contrib.auth.backends.ModelBackend',
] + DJANGO_SSO_APP_DJANGO_AUTHENTICATION_BACKENDS


AUTH_USER_MODEL = 'users.User'
LOGIN_URL = '/login/'

DRF_DEFAULT_AUTHENTICATION_CLASSES = [
    'rest_framework.authentication.TokenAuthentication'
    'django_sso_app.core.api.authentication.DjangoSsoApiAuthentication'
]

REST_FRAMEWORK = {
    'DEFAULT_AUTHENTICATION_CLASSES': DRF_DEFAULT_AUTHENTICATION_CLASSES,
    'DEFAULT_PERMISSION_CLASSES': (
        'rest_framework.permissions.IsAuthenticated',
    ),
}

urls.py

urlpatterns = []
api_urlpatterns = []
_I18N_URLPATTERNS = []

from django_sso_app.urls import (urlpatterns as django_sso_app__urlpatterns,
                                 api_urlpatterns as django_sso_app__api_urlpatterns,
                                 i18n_urlpatterns as django_sso_app_i18n_urlpatterns)
from django_sso_app.core.mixins import WebpackBuiltTemplateViewMixin

urlpatterns += django_sso_app__urlpatterns
api_urlpatterns += django_sso_app__api_urlpatterns
_I18N_URLPATTERNS += django_sso_app_i18n_urlpatterns

urlpatterns += [
    url(r'^i18n/', include('django.conf.urls.i18n')),
    url(r'^jsi18n/$', ...
]

_I18N_URLPATTERNS += [
    path('', WebpackBuiltTemplateViewMixin.as_view(template_name='pages/home.html'), name='home'),

    # Django Admin, use {% url 'admin:index' %}
    path(settings.ADMIN_URL, admin.site.urls),
]

if settings.I18N_PATH_ENABLED:
    urlpatterns += i18n_patterns(
        *_I18N_URLPATTERNS
    )
else:
    urlpatterns += _I18N_URLPATTERNS

Project details

These details have not been verified by PyPI

Project links

Release history Release notifications | RSS feed

0.12.0

Oct 11, 2021

0.11.13

Jul 27, 2023

0.11.12

Jun 15, 2022

0.11.11

Apr 29, 2022

0.11.9

Sep 15, 2021

0.11.8

Aug 5, 2021

0.11.7

Jun 15, 2021

This version

0.11.6

May 12, 2021

0.11.5

May 5, 2021

0.11.4

May 5, 2021

0.11.3

May 4, 2021

0.11.2

Apr 2, 2021

0.11.1

Apr 2, 2021

0.11.0

Apr 1, 2021

0.10.1

Mar 19, 2021

0.10.0

Mar 18, 2021

0.9.6

Mar 9, 2021

0.9.4

Feb 22, 2021

0.9.3

Feb 22, 2021

0.9.2

Feb 10, 2021

0.9.1

Feb 9, 2021

0.9.0

Feb 9, 2021

0.8.19

Feb 3, 2021

0.8.18

Feb 2, 2021

0.8.17

Jan 29, 2021

0.8.16

Jan 11, 2021

0.8.15

Jan 9, 2021

0.8.14

Jan 7, 2021

0.8.13

Dec 18, 2020

0.8.12

Dec 18, 2020

0.8.11

Dec 14, 2020

0.8.9

Dec 9, 2020

0.8.8

Oct 27, 2020

0.8.5

Sep 16, 2020

0.8.4

Sep 7, 2020

0.8.2

Jul 27, 2020

0.8.1

Jul 9, 2020

0.8.0

Jul 3, 2020

0.7.4

Apr 28, 2020

0.7.3

Apr 24, 2020

0.7.0

Apr 21, 2020

0.6.6

Apr 10, 2020

0.6.4

Apr 8, 2020

0.6.3

Apr 7, 2020

0.6.1

Apr 5, 2020

0.6.0

Apr 4, 2020

0.5.34

Mar 11, 2020

0.3.21

Oct 3, 2019

0.3.20

Sep 25, 2019

0.3.19

Sep 18, 2019

0.3.18

Sep 16, 2019

0.3.17

Sep 16, 2019

0.3.16

Sep 16, 2019

0.3.15

Sep 16, 2019

0.3.14

Sep 16, 2019

0.3.13

Sep 16, 2019

0.3.12

Sep 13, 2019

0.3.11

Sep 13, 2019

0.3.10

Sep 13, 2019

0.3.9

Sep 13, 2019

0.3.8

Sep 13, 2019

0.3.7

Sep 13, 2019

0.3.6

Sep 13, 2019

0.3.5

Sep 13, 2019

0.3.4

Sep 13, 2019

0.3.3

Sep 13, 2019

0.3.2

Sep 13, 2019

0.3.1

Sep 13, 2019

0.3.0

Sep 12, 2019

0.3.0.dev5 pre-release

Sep 11, 2019

0.3.0.dev4 pre-release

Sep 10, 2019

0.3.0.dev3 pre-release

Sep 10, 2019

0.3.0.dev2 pre-release

Sep 10, 2019

0.3.0.dev1 pre-release

Sep 10, 2019

0.3.0.dev0 pre-release

Sep 10, 2019

0.2.4

Sep 2, 2019

0.2.3

Jul 30, 2019

0.2.2

Jul 8, 2019

0.2.1

Jun 25, 2019

0.2.0

Jun 21, 2019

0.2.0.dev2 pre-release

Jun 20, 2019

0.2.0.dev1 pre-release

Jun 20, 2019

0.1.1

May 20, 2019

0.1.0

May 16, 2019

0.0.3

Mar 11, 2019

0.0.2

Feb 14, 2019

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

django-sso-app-0.11.6.tar.gz (234.9 kB view details)

Uploaded May 12, 2021 Source

Built Distribution

django_sso_app-0.11.6-py2.py3-none-any.whl (306.3 kB view details)

Uploaded May 12, 2021 Python 2 Python 3

File details

Details for the file django-sso-app-0.11.6.tar.gz.

File metadata

Download URL: django-sso-app-0.11.6.tar.gz
Upload date: May 12, 2021
Size: 234.9 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.4.1 importlib_metadata/4.0.1 pkginfo/1.7.0 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.60.0 CPython/3.9.2

File hashes

Hashes for django-sso-app-0.11.6.tar.gz
Algorithm	Hash digest
SHA256	`4cf6702ffb9531dd3e068917dca7b743861274957f113b01f2ab2d916124a25c`
MD5	`9864eaa2aa9f75a8f1482a94125bb818`
BLAKE2b-256	`cde8e244de8a3445c19c6d8a09222f13f70d1694594c3da120c181dac7d92fcc`

See more details on using hashes here.

File details

Details for the file django_sso_app-0.11.6-py2.py3-none-any.whl.

File metadata

Download URL: django_sso_app-0.11.6-py2.py3-none-any.whl
Upload date: May 12, 2021
Size: 306.3 kB
Tags: Python 2, Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.4.1 importlib_metadata/4.0.1 pkginfo/1.7.0 requests/2.25.1 requests-toolbelt/0.9.1 tqdm/4.60.0 CPython/3.9.2

File hashes

Hashes for django_sso_app-0.11.6-py2.py3-none-any.whl
Algorithm	Hash digest
SHA256	`ead1c2da9bba823d98144ae3826e5b28c037138dcaa12e214e57c2c9d870b1c6`
MD5	`8048abcf774bfc7249a5efb213f46c64`
BLAKE2b-256	`eb513a92dee5bc34bc3f1d613ace237d8d369d4db90f43f474f6715c17fe4232`