Flask Simple Login - Login Extension for Flask
Project description
|Travis| |PyPI| |PyPI| |PyPI| |Flask|
Login Extension for Flask
=========================
There are good and recommended options to deal with web authentication
in Flask.
**I recommend you use:**
- `Flask-Login <https://flask-login.readthedocs.io>`__
- `Flask-Security <https://pythonhosted.org/Flask-Security/>`__
Those extensions are really complete and **production ready**!
So why **Flask Simple Login**?
However sometimes you need something **simple** for that small project
or for prototyping.
Flask Simple Login
------------------
What it provides:
- Login and Logout forms and pages
- Function to check if user is logged-in
- Decorator for views
- Easy and customizable ``login_checker``
What it does not provide: (but of course you can easily implement by
your own)
- [STRIKEOUT:Database Integration]
- [STRIKEOUT:Password management]
- [STRIKEOUT:API authentication]
- [STRIKEOUT:Role or user based access control]
Hot it works
------------
First install it from
`PyPI <https://pypi.org/project/flask_simplelogin/>`__.
``pip install flask_simplelogin``
.. code:: python
from flask import Flask
from flask_simplelogin import SimpleLogin
app = Flask(__name__)
SimpleLogin(app)
That's it! now you have ``/login`` and ``/logout`` routes in your
application.
The username defaults to ``admin`` and the password defaults to
``secret`` (yeah that's not clever, let's see how to change it)
Configuring
-----------
Simple way
.. code:: python
from flask import Flask
from flask_simplelogin import SimpleLogin
app = Flask(__name__)
app.config['SECRET_KEY'] = 'something-secret'
app.config['SIMPLELOGIN_USERNAME'] = 'chuck'
app.config['SIMPLELOGIN_PASSWORD'] = 'norris'
SimpleLogin(app)
That works, but is not so clever, lets use env vars.
.. code:: bash
$ export SIMPLELOGIN_USERNAME=chuck
$ export SIMPLELOGIN_PASSWORD=norris
then ``SimpleLogin`` will read those env vars automatically.
.. code:: python
from flask import Flask
from flask_simplelogin import SimpleLogin
app = Flask(__name__)
app.config['SECRET_KEY'] = 'something-secret'
SimpleLogin(app)
But what if you have more users and more complex auth logic? **write a
custom login checker**
Using a custom login checker
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
.. code:: python
from flask import Flask
from flask_simplelogin import SimpleLogin
app = Flask(__name__)
app.config['SECRET_KEY'] = 'something-secret'
def only_chuck_norris_can_login(user):
"user = {'username': 'foo', 'password': 'bar'}"
# do the authentication here, it is up to you!
# query your database, check your user/passwd file
# connect to external service.. anything.
is user.get('username') == 'chuck' and user.get('password') == 'norris':
return True # Allowed
return False # Denied
SimpleLogin(app, login_checker=only_chuck_norris_can_login)
Checking if user is logged in
-----------------------------
.. code:: python
from flask_simplelogin import is_logged_in
if is_logged_in():
# do things if anyone is logged in
if is_logged_in('admin'):
# do things only if admin is logged in
Decorating your views
---------------------
.. code:: python
from flask_simplelogin import login_required
@app.route('/it_is_protected')
@login_required # < --- simple decorator
def foo():
return 'secret'
Protecting Flask Admin views
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
.. code:: python
from flask_admin.contrib.foo import ModelView
from flask_simplelogin import is_logged_in
class AdminView(ModelView)
def is_accessible(self):
return is_logged_in('admin')
Customizing templates
---------------------
There are only one template to customize and it is called ``login.html``
Example is:
.. code:: html
{% extends 'base.html' %}
{% block title %}Login{% endblock %}
{% block messages %}
{{super()}}
{%if form.errors %}
<ul class="alert alert-danger">
{% for field, errors in form.errors.items() %}
<li>{{field}} {% for error in errors %}{{ error }}{% endfor %}</li>
{% endfor %}
</ul>
{% endif %}
{% endblock %}
{% block page_body %}
<form action="{{ url_for('simplelogin.login', next=request.args.get('next', '/')) }}" method="post">
<div class="form-group">
{{ form.csrf_token }}
{{form.username.label}}<div class="form-control">{{ form.username }}</div><br>
{{form.password.label}}<div class="form-control"> {{ form.password }}</div><br>
</form>
<input type="submit" value="Send">
</form>
{% endblock %}
Take a look at the `example
app <https://github.com/rochacbruno/flask_simplelogin/blob/master/example/app.py>`__.
And you can customize it in anyway you want and need, it receives a
``form`` in context and it is a ``WTF form`` the submit should be done
to ``request.path`` which is the same ``/login`` view.
You can also use ``{% if is_logged_in %}`` in your template if needed.
Requirements
------------
- Flask-WTF and WTForms
- having a ``SECRET_KEY`` set in your ``app.config``
.. |Travis| image:: https://img.shields.io/travis/rochacbruno/flask_simplelogin.svg?style=flat-square
:target: https://travis-ci.org/rochacbruno/flask_simplelogin
.. |PyPI| image:: https://img.shields.io/pypi/v/flask_simplelogin.svg?style=flat-square
:target: https://pypi.org/project/flask_simplelogin/
.. |PyPI| image:: https://img.shields.io/pypi/pyversions/flask_simplelogin.svg?style=flat-square
:target:
.. |PyPI| image:: https://img.shields.io/pypi/format/flask_simplelogin.svg?style=flat-square
:target:
.. |Flask| image:: https://img.shields.io/badge/Flask-Extension-blue.svg?style=flat-square
:target:
Login Extension for Flask
=========================
There are good and recommended options to deal with web authentication
in Flask.
**I recommend you use:**
- `Flask-Login <https://flask-login.readthedocs.io>`__
- `Flask-Security <https://pythonhosted.org/Flask-Security/>`__
Those extensions are really complete and **production ready**!
So why **Flask Simple Login**?
However sometimes you need something **simple** for that small project
or for prototyping.
Flask Simple Login
------------------
What it provides:
- Login and Logout forms and pages
- Function to check if user is logged-in
- Decorator for views
- Easy and customizable ``login_checker``
What it does not provide: (but of course you can easily implement by
your own)
- [STRIKEOUT:Database Integration]
- [STRIKEOUT:Password management]
- [STRIKEOUT:API authentication]
- [STRIKEOUT:Role or user based access control]
Hot it works
------------
First install it from
`PyPI <https://pypi.org/project/flask_simplelogin/>`__.
``pip install flask_simplelogin``
.. code:: python
from flask import Flask
from flask_simplelogin import SimpleLogin
app = Flask(__name__)
SimpleLogin(app)
That's it! now you have ``/login`` and ``/logout`` routes in your
application.
The username defaults to ``admin`` and the password defaults to
``secret`` (yeah that's not clever, let's see how to change it)
Configuring
-----------
Simple way
.. code:: python
from flask import Flask
from flask_simplelogin import SimpleLogin
app = Flask(__name__)
app.config['SECRET_KEY'] = 'something-secret'
app.config['SIMPLELOGIN_USERNAME'] = 'chuck'
app.config['SIMPLELOGIN_PASSWORD'] = 'norris'
SimpleLogin(app)
That works, but is not so clever, lets use env vars.
.. code:: bash
$ export SIMPLELOGIN_USERNAME=chuck
$ export SIMPLELOGIN_PASSWORD=norris
then ``SimpleLogin`` will read those env vars automatically.
.. code:: python
from flask import Flask
from flask_simplelogin import SimpleLogin
app = Flask(__name__)
app.config['SECRET_KEY'] = 'something-secret'
SimpleLogin(app)
But what if you have more users and more complex auth logic? **write a
custom login checker**
Using a custom login checker
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
.. code:: python
from flask import Flask
from flask_simplelogin import SimpleLogin
app = Flask(__name__)
app.config['SECRET_KEY'] = 'something-secret'
def only_chuck_norris_can_login(user):
"user = {'username': 'foo', 'password': 'bar'}"
# do the authentication here, it is up to you!
# query your database, check your user/passwd file
# connect to external service.. anything.
is user.get('username') == 'chuck' and user.get('password') == 'norris':
return True # Allowed
return False # Denied
SimpleLogin(app, login_checker=only_chuck_norris_can_login)
Checking if user is logged in
-----------------------------
.. code:: python
from flask_simplelogin import is_logged_in
if is_logged_in():
# do things if anyone is logged in
if is_logged_in('admin'):
# do things only if admin is logged in
Decorating your views
---------------------
.. code:: python
from flask_simplelogin import login_required
@app.route('/it_is_protected')
@login_required # < --- simple decorator
def foo():
return 'secret'
Protecting Flask Admin views
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
.. code:: python
from flask_admin.contrib.foo import ModelView
from flask_simplelogin import is_logged_in
class AdminView(ModelView)
def is_accessible(self):
return is_logged_in('admin')
Customizing templates
---------------------
There are only one template to customize and it is called ``login.html``
Example is:
.. code:: html
{% extends 'base.html' %}
{% block title %}Login{% endblock %}
{% block messages %}
{{super()}}
{%if form.errors %}
<ul class="alert alert-danger">
{% for field, errors in form.errors.items() %}
<li>{{field}} {% for error in errors %}{{ error }}{% endfor %}</li>
{% endfor %}
</ul>
{% endif %}
{% endblock %}
{% block page_body %}
<form action="{{ url_for('simplelogin.login', next=request.args.get('next', '/')) }}" method="post">
<div class="form-group">
{{ form.csrf_token }}
{{form.username.label}}<div class="form-control">{{ form.username }}</div><br>
{{form.password.label}}<div class="form-control"> {{ form.password }}</div><br>
</form>
<input type="submit" value="Send">
</form>
{% endblock %}
Take a look at the `example
app <https://github.com/rochacbruno/flask_simplelogin/blob/master/example/app.py>`__.
And you can customize it in anyway you want and need, it receives a
``form`` in context and it is a ``WTF form`` the submit should be done
to ``request.path`` which is the same ``/login`` view.
You can also use ``{% if is_logged_in %}`` in your template if needed.
Requirements
------------
- Flask-WTF and WTForms
- having a ``SECRET_KEY`` set in your ``app.config``
.. |Travis| image:: https://img.shields.io/travis/rochacbruno/flask_simplelogin.svg?style=flat-square
:target: https://travis-ci.org/rochacbruno/flask_simplelogin
.. |PyPI| image:: https://img.shields.io/pypi/v/flask_simplelogin.svg?style=flat-square
:target: https://pypi.org/project/flask_simplelogin/
.. |PyPI| image:: https://img.shields.io/pypi/pyversions/flask_simplelogin.svg?style=flat-square
:target:
.. |PyPI| image:: https://img.shields.io/pypi/format/flask_simplelogin.svg?style=flat-square
:target:
.. |Flask| image:: https://img.shields.io/badge/Flask-Extension-blue.svg?style=flat-square
:target:
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
flask_simplelogin-0.0.1.tar.gz
(26.9 kB
view hashes)
Built Distribution
Close
Hashes for flask_simplelogin-0.0.1-py2.py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 16c0fb605b7636db984d7a6ef8323780d2cb874329a8ac145a2f9618d348ef20 |
|
| MD5 | aec6b2eedac58b33e4ab40d44cc53be7 |
|
| BLAKE2b-256 | b6c8433b98b91eb6a9f5b20de22e9e79c36b0485b148bbdd2ecfa36b67f1c246 |
