Complete Two-Factor Authentication for Django
Project description
Complete Two-Factor Authentication for Django. Built on top of django.contrib.auth for providing the easiest integration into most Django projects. Inspired by the user experience of Google’s Two-Step Authentication, allowing users to authenticate through call, text messages (SMS) or by using an app like Google Authenticator.
This project is in alpha state. Although there are no known problems, the project has not yet received a lot of real life experience. If you run into problems, please file an issue on GitHub, or contribute to the project by forking the repository and sending some pull requests.
Demo
The repository on GitHub includes a demo app, which can be used for testing purposes. Please have a look at this demo app if you are thinking about giving this app a spin.
Installation
Installation with pip:
$ pip install django-two-factor-auth
Add 'two_factor' to the INSTALLED_APPS
INSTALLED_APPS = (
...
'two_factor',
)
Configure the authentication backends like so:
AUTHENTICATION_BACKENDS = (
'django.contrib.auth.backends.ModelBackend',
'two_factor.auth_backends.TokenBackend',
'two_factor.auth_backends.VerifiedComputerBackend',
)
Configure the login url:
from django.core.urlresolvers import reverse_lazy
LOGIN_URL = reverse_lazy('tf:login')
Add the url routes:
urlpatterns = patterns('',
...
url(r'^tf/', include('two_factor.urls', 'tf')),
)
Be sure to remove any other login routes, otherwise the two-factor authentication might be circumvented. The admin interface should be automatically patched to use the new login method.
Settings
- TF_SMS_GATEWAY
Which module should be used to send text messages. It defaults to two_factor.sms_gateways.Fake, which echoes the text messages to the console. A gateway for Twilio comes prepackaged, see the settings below.
- TF_CALL_GATEWAY
Which module should be used for calls. It defaults to two_factor.call_gateways.Fake, which echoes the call message to the console. A gateway for Twilio comes prepackaged, see the settings below.
Twilio
Gateways for sending text message and initiating calls trough Twilio come prepackaged. All you need is your Twilio Account SID and Token, as shown in your Twilio account dashboard.
TF_CALL_GATEWAY = 'two_factor.call_gateways.Twilio' TF_SMS_GATEWAY = 'two_factor.sms_gateways.Twilio' TWILIO_ACCOUNT_SID = '***' TWILIO_AUTH_TOKEN = '***' TWILIO_CALLER_ID = '[verified phone number]' TWILIO_SMS_CALLER_ID = '[verified phone number]'
Todo / Wish List
Test suite
More extensive documentation
Different security levels, only requiring two-factor authentication for very sensitive parts of applications
Contributing
Fork the repository on GitHub and start hacking
Send a pull request with your changes
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file django-two-factor-auth-0.1.2.tar.gz.
File metadata
- Download URL: django-two-factor-auth-0.1.2.tar.gz
- Upload date:
- Size: 15.3 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
bf40814871810d4befa157ff6f71fabde1c5a539d30282768fe258fcacfaf8e4
|
|
| MD5 |
ef1d9fd044b20b89946d31db9371ddd7
|
|
| BLAKE2b-256 |
1386143a5a6134f58661c9e44cc024f6ab3e3e867bceae46270b6041044cdb6e
|
