Skip to main content
This is a pre-production deployment of Warehouse. Changes made here affect the production instance of PyPI (
Help us improve Python packaging - Donate today!

An identity policy for morepath using itsdangerous.

Project Description


import morepath
from more.itsdangerous import IdentityPolicy

class App(morepath.App):

def get_identity_policy():
    return IdentityPolicy()

def verify_identity(identity):
    # trust the identity established by the identity policy (we could keep
    # checking if the user is really in the database here - or if it was
    # removed in the meantime)
    return True

See to learn more about Morepath’s security model and and have a look at the commented source code:

The IdentityPolicy class is meant to be extended because everyone has differing needs. It simply provides a way to store the identity as a signed cookie, using itsdangerous.

Usage in Development

By default, the cookies created by more.itsdangerous are HttpOnly and Secure.

If you have differing needs or if you are running a development server you might have to change the identity policy’s configuration:

def get_identity_policy():
    # make the cookies work under http, not just https
    return IdentityPolicy(secure=False)

Note that this should only be used in development. In this day and age you do not want to transmit cookies over http!

Run the Tests

Install tox and run it:

pip install tox

Limit the tests to a specific python version:

tox -e py27


More Itsdangerous follows PEP8 as close as possible. To test for it run:

tox -e pep8

More Itsdangerous uses Semantic Versioning

Build Status


Latests PyPI Release


more.itsdangerous is released under the revised BSD license


0.0.2 (2016-04-18)

  • Adds compatibility with Morepath 0.14+. [henri-hulski]

0.0.1 (2015-04-29)

  • Initial release [href]
Release History

Release History

This version
History Node


History Node


History Node


Download Files

Download Files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

File Name & Checksum SHA256 Checksum Help Version File Type Upload Date
more.itsdangerous-0.0.2-py2-none-any.whl (8.8 kB) Copy SHA256 Checksum SHA256 py2 Wheel Apr 18, 2016
more.itsdangerous-0.0.2.tar.gz (5.6 kB) Copy SHA256 Checksum SHA256 Source Apr 18, 2016

Supported By

WebFaction WebFaction Technical Writing Elastic Elastic Search Pingdom Pingdom Monitoring Dyn Dyn DNS Sentry Sentry Error Logging CloudAMQP CloudAMQP RabbitMQ Heroku Heroku PaaS Kabu Creative Kabu Creative UX & Design Fastly Fastly CDN DigiCert DigiCert EV Certificate Rackspace Rackspace Cloud Servers DreamHost DreamHost Log Hosting