Skip to main content

Django Integration with JustPass.me

Project description

Django Client for justpass.me

  1. Install the justpassme app

    • For django 2.2, use justpass-me-django<3.0.0
    • For django 3.1+, use justpass-me-django>3.0.0
    pip install justpass-me-django
    
  2. Add the following to your INSTALLED_APPS

    INSTALLED_APPS = [ 
    '....'
    'mozilla_django_oidc',
    'justpassme',
    '....'
    ]
    
  3. Add the following to settings.py

    AUTHENTICATION_BACKENDS = (
     'justpassme.OIDC_CLIENT.OIDCUserFinder',
     'django.contrib.auth.backends.ModelBackend',
     )
    
    
    SITE_URL = YOUR_SITE_URL   #Your full site url
    OIDC_USERNAME_FIELD = "username"   # The field to use to create users on justpass.me
    LOGIN_URL = "/accounts/login/"     # Your login view as usual
    
    OIDC_RP_CLIENT_ID = "app.client_id"      # client_id from justpass.me
    OIDC_RP_CLIENT_SECRET="app.client_secret" # client_secret from justpass.me
    OIDC_OP_URL= "https://organization_domain.accounts.justpass.me/openid/" #Put your organization domain on justpass.me
    
    OIDC_RP_SCOPES= "openid"
    OIDC_RP_SIGN_ALGO = 'HS256'
    OIDC_STORE_ID_TOKEN = True
    OIDC_OP_JWKS_ENDPOINT=OIDC_OP_URL  +"jwks"
    OIDC_OP_AUTHORIZATION_ENDPOINT=OIDC_OP_URL + "authorize/"
    OIDC_OP_TOKEN_ENDPOINT = OIDC_OP_URL +"token/"
    OIDC_OP_USER_ENDPOINT = OIDC_OP_URL + "userinfo/"
    OIDC_CALLBACK_CLASS= "justpassme.OIDC_CLIENT.Callback"
    OIDC_AUTHENTICATE_CLASS = "justpassme.OIDC_CLIENT.Authenticate"
    LOGIN_REDIRECT_URL_FAILURE="/justpass/failure/"
    LOGIN_REDIRECT_URL = "/justpass/success/"
    
    # If your application uses SSL.
    USE_X_FORWARDED_HOST = True
    SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
    
    
    # Provide the following functions that will be called when event is triggered, check example functions below
    REGISTRATION_SUCCESS = "Your_App.justpass.reg_success"
    REGISTRATION_FAILURE = "Your_App.justpass.reg_failure"
    AUTHENTICATION_SUCCESS = "Your_App.justpass.auth_success"
    AUTHENTICATION_FAILURE = "Your_App.justpass.auth_failure"
    
  4. Add justpass to your urls

    urls_patterns= [
    '...',
    path(r'justpass/', include('justpassme.urls')),
    path('oidc/',include('mozilla_django_oidc.urls')),
    '....',
     ]
    
  5. To start registration, redirct to justpass:start_reg

  6. To start login, redirect to justpass:start_login

    Note: For 2nd factor, The function expects the user's username to be in request.session["base_username"]

  7. Write 4 functions that handle the success and failure of registration and login, refer to them in the settings.py

    You can use the four functions below as a reference.

    def auth_success(request):
       return redirect('home')
          
    def auth_failure(request):
      return render(request, 'login.html', {"failed": True})
          
    def reg_success(request):
       request.user.mfa_enabled = True
       request.user.save()
       request.session["reg"] = True
       return redirect('home')
       
    def reg_failure(request):
       request.session["reg"] = False
       return redirect('home')
    

Note: If you use justpass.me as 2nd factor

Break your login function, Usually your login function will check for username and password, log the user in if the username and password are correct and create the user session, to support justpass.me, this has to change

  • authenticate the user
  • if username and password are correct , check if the user has mfa or not
    • if user has mfa then redirect to justpass.me
    • if user doesn't have mfa then call your function to create the user session

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

justpass-me-django-2.1.0.tar.gz (7.6 kB view details)

Uploaded Source

File details

Details for the file justpass-me-django-2.1.0.tar.gz.

File metadata

  • Download URL: justpass-me-django-2.1.0.tar.gz
  • Upload date:
  • Size: 7.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.2 CPython/3.10.6

File hashes

Hashes for justpass-me-django-2.1.0.tar.gz
Algorithm Hash digest
SHA256 0c15e187009c3087600211148466e2003f3dcd2617578ab4a77c3259176622a8
MD5 d512c2c4460af6ee01c7e2adad9f2f12
BLAKE2b-256 c77d028646a1e2ad423e87a52cc5e92184ac8b04a21d9c053e978e0376b683b4

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page