a signing key extension for flask
Project description
Flask-Signing
a signing key extension for flask
About
The Flask-Signing library is a useful tool for Flask applications that require secure and robust management of signing keys. Do you need to generate single-use tokens for one-time actions like email verification or password reset? Flask-Signing can handle that. Are you looking for a simple method for managing API keys? Look no further.
Installation
First, install the flask_signing package. You can do this with pip:
pip install flask_signing
Basic Usage
After you've installed the flask_signing package, you can use it in your Flask application. Here's an example of how you might do this:
from flask import Flask
from flask_sqlalchemy import SQLAlchemy
from flask_signing import (
Signatures,
RateLimitExceeded
)
app = Flask(__name__)
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite://' # Use your actual database URI
app.secret_key = "Your_Key_Here"
with app.app_context():
signatures = Signatures(app, byte_len=24)
@app.route('/sign')
def sign():
key = signatures.write_key(scope='test', expiration=1, active=True, email='test@example.com')
return f'Key generated: {key}'
@app.route('/verify/<key>')
def verify(key):
try:
valid = signatures.verify_key(signature=key, scope='test')
return f'Key valid: {valid}'
except RateLimitExceeded:
return "Rate limit exceeded"
@app.route('/expire/<key>')
def expire(key):
expired = signatures.expire_key(key)
return f'Key expired: {expired}'
@app.route('/all')
def all():
all = signatures.get_all()
return f'Response: {all}'
In this basic example, a new signing key is generated and written to the database when you visit the /sign route, and the key is displayed on the page. Then, when you visit the /verify/<key> route (replace with the actual key), the validity of the key is checked and displayed. You can expire a key using the /expire/<key> route, and view all records with the /all route.
This is a rather basic example and your actual use of the flask_signing package may be more complex depending on your needs. It's important to secure your signing keys and handle them appropriately according to your application's security requirements. Further usage examples can be found in the examples directory of the Flask-Signing Github repository.
Developers
Contributions are welcome! You can read the developer docs at https://signebedi.github.io/Flask-Signing. If you're interested, review (or add to) the feature ideas at https://github.com/signebedi/Flask-Signing/issues.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for flask_signing-0.9.0-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 9ab3f54f3d1fd86e644079a07d2d01be687b9f6528da6b3cabac432da428ad50 |
|
| MD5 | ef8e55c642835515490e93c6693ca947 |
|
| BLAKE2b-256 | 99e3024d7b88ecf675b904a2951b66719c80edd2607eb2b2256cbbb85596709e |
